A selection of this week’s more interesting vulnerability disclosures and cyber security news. A news busy week this has been, from a catastrophic malware hit against an global manufacturer to startling breaches from the usual players. Which to pick out then? OK, a wonderful article by Krebs that caught my attention today. I find it interesting that we seem to latch on to certain technologies that as they become so entwined in our lives, we then find it hard to admit that they are flawed when we stretch their use to areas where they were never intended to go:
A rather scary near miss this one!
And to lighten the mood, and to feed the inner geek over the weekend:
If you want to dive back in, then here is the rest of the news…
- Norsk Hydro Calls Ransomware Attack ‘Severe’ When asked if the company plans to pay the ransom, its CFO said its main strategy is to use the backup data stored in the system.
- Bad cup of Java leaves nasty taste in IBM Watson”s “AI” mouth: Five security bugs to splat in analytics gear (The Register)
- Carolina coward fesses up: I was a tech support scambag, and I made millions out of defrauding the elderly
- Fourth Major Credential Spill in a Month Hits DreamMarket Gnosticplayers has released about 26 million records from what he said are breaches of six new companies.
- Old Tech Spills Digital Dirt on Past Owners Researcher buys old computers, flash drives, phones and hard drives and finds only two properly wiped devices out of 85 examined.
- PuTTY in your hands: SSH client gets patched after RSA key exchange memory vuln spotted (The Register)
- Uber Deployed ‘Surfcam’ Spyware in Australia to Crush the Competition Until a report this week, Uber’s Surfcam’s use was thought to be limited to incidents uncovered in Singapore in 2017.
- What was that P word? Ah. Privacy. Yes, we”ll think about privacy, says FCC mulling cellphone location data overhaul