A selection of this week’s more interesting vulnerability disclosures and cyber security news. I feel like Billy-no-mates this week, I somehow missed out on the Google Docs scam email storm.
- Google Docs Phishing Attack Abuses Legitimate Third-Party Sharing Phishing messages appear nearly identical to legitimate requests to share Google documents, because in many ways, they are.
However, a pretty concerning issue has been seen that I don’t think is particularly uncommon for some websites I’ve been to:
The rest of the scary stuff….
- IP Freely? Mr IP Freely? VoIP-for-suits firm battens down hatches after PBX data breach (The Register)
- Confirmed: Intel patches remote execution hole that’s been hidden in its chips since 2008 (The Register)
- Google, Facebook Swindled in $100M Payment Scam Lithuanian man impersonated an Asian-based manufacturer to trick Facebook and Google into paying him $100 million.
- After years of warnings, mobile network hackers exploit SS7 flaws to drain bank accounts (The Register)
Weekly Cyber Security News 05/05/2017