A selection of this week’s more interesting vulnerability disclosures and cyber security news. I don’t often play games, and until this issue below appeared on my feed due to the self inflicted data breach I was blissfully unaware. Apart from the horrific appearing customer service, the breach is deeply unfortunate. What can we learn from it? Perhaps when under a lot of stress make sure you configure (was it a thread configuration issue or bug?) anything customer facing correctly:
Why, oh why is Flash still a thing?
- Adobe Patches Zero-Day Vulnerability in Flash Player The vulnerability could lead to arbitrary code execution.
Usually I skip WordPress issues as they seem to be part of the furniture, but this one is nasty, and I have a new found hatred for WordPress due to having to use the new editor to write this blog article:
The other possibly annoying things to look at:
- Giraffe hacks printers worldwide to promote God-awful YouTuber. Did we read that one right?; (The Register)
- Magecart Group Ups Ante: Now Goes After Admin Credentials The group’s skimmer has added some capabilities that steals credentials from admins.
- Kubernetes Flaw is a ‘Huge Deal’, Lays Open Cloud Deployments Hackers can steal data, sabotage cloud deployments and more.