sec

Dark Reading:

• Even A False Positive Can Be Valuable
• Yahoo Reveals Nation State-Borne Data Breach Affecting A Half-Billion Users
• Biometric Skimmers Pose Emerging Threat To ATMs
• SWIFT CISO: Cyber Threat 'Persistent'
• 10 Ways To Lock Down Third-Party Risk
• 7 Factors That Make Security Organizations More Effective
• NYSE Deals Blow To John McAfee's MGT Capital
• Snowden: Hollywood Highlights 2 Persistent Privacy Threats

Office of Inadequate Security

• Notice of Data Incident at Stallcup & Associates, CPAs
• Teenager to appear in court over alleged hack and data theft

Penetration Testing

• Recon Europe 2017 Call For Papers - January 27 - 29, 2017 - Brussels, Belgium
• Welcome Faraday 2.1! Collaborative Penetration Test & Vulnerability Management Platform
• IE11 is not following CORS specification for local files

SANS Internet Storm Center, InfoCON: green

• OpenSSL Update Released, (Thu, Sep 22nd)
• The era of big DDOS?, (Thu, Sep 22nd)
• YAHDD! (Yet another HUGE data Breach!), (Thu, Sep 22nd)
• ISC Stormcast For Friday, September 23rd 2016 https://isc.sans.edu/podcastdetail.html?id=5179, (Thu, Sep 22nd)

Full Disclosure

• SEC Consult SA-20160922-0 :: Potential backdoor access through multiple vulnerabilities in Kerio Control Unified Threat Management

Naked Security

• Don’t rely on Cortana to make your emergency calls
• Eleven US cities to crack down on warrantless surveillance
• Mr. Robot season 2 finale eps2.9_pyth0n-pt2.p7z – the security review
• Siri opens “smart” lock to let neighbor walk into a locked house