sec
Naked Security
- Concern and confusion over privacy and security of AR technology
- Get root on Linux: learn the secret password
- Shanghai surprise as cheap Android devices ‘phone home’ to China
- WhatsApp tightens user privacy with encrypted video calls
- Barclays mulls letting customers check balances via Facebook
Office of Inadequate Security
- In: Data of 34 million Keralites leaked in massive data breach; govt had ignored vulnerability reports
- Miami-Dade County, Florida, Man Charged With Conspiracy To Commit Health Care Fraud
- NHS patients being put ‘at risk’ because of cybersecurity flaws
- Protenus’s October Breach Barometer is available
- Teenage Birmingham brothers quizzed over £1million credit card fraud
- TX: Fourth Defendant Convicted in Scheme that Defrauded Electronic Arts of More Than $16 Million Worth of Virtual Currency
- UK signs order to extradite Lauri Love to U.S.
- WindhamCountyVT.gov site hacked, data dumped
SANS Internet Storm Center, InfoCON: green
- Infocon: green
- VMWare Fusion Advisory VMSA-2016-0020: https://www.vmware.com/security/advisories/VMSA-2016-0020.html, (Wed, Nov 16th)
- Example of Getting Analysts & Researchers Away, (Wed, Nov 16th)
- ISC Stormcast For Thursday, November 17th 2016 https://isc.sans.edu/podcastdetail.html?id=5257, (Thu, Nov 17th)
Full Disclosure
- Nginx (Debian-based distros) - Root Privilege Escalation Vulnerability (CVE-2016-1247)
- Cross-Site Scripting in All In One WP Security & Firewall WordPress Plugin
- Re: QUANTUMSQUIRREL - attrition.org unmasked as NSA TAO OP
- Re: [oss-security] CVE-2016-4484: - Cryptsetup Initrd root Shell
Dark Reading:
- Digital Shadows Narrows Down Causes Of Tesco Hack
- How To 'PoisonTap' A Locked Computer Using A $5 Raspberry Pi
- Internet Of Things 'Pollutants' & The Case For A Cyber EPA
- 'Snoopers' Charter' Set To Become Law In UK
- Thank Ransomware For Next-Gen Endpoint Security Momentum
- Windows 10 Updates Target Ransomware Threats
- Security Experts Call For Regulation On IoT Cybersecurity
- Adobe To Pay $1 Million Compensation In Data Breach Case
- Active Defense Framework Can Help Businesses Defend Against Cyberattacks