A selection of this week’s more interesting vulnerability disclosures and cyber security news. Going for a theme this week and ignoring the NAS devices spewing data and amusingly named new malware. The theme is Bluetooth.
Just for a moment let these two completely separate articles sink in…
- Security Watch: Elon Musk’s NeuraLink Links Brains to iPhones via Bluetooth Directly linking thoughts to a phone via Bluetooth- what could go wrong?
Or instead of a subtle zombie apocalypse; how about an absolutely terrifying bomb hoax?
And what new IoT hell can we finish with Bluetooth themed you ask? Yep. Hair straighteners. Some wonderful marketing idea gone wrong of course:
Here goes the rest of it…
- Blah blah Blaha: Slovak infosec firm ESET sues politico who called them “outrageous fascists” (The Register)
- Malicious code ousted from PureScript”s npm installer but who put it there in the first place? (The Register)
- Threatlist: 68% of Overwhelmed IT Managers Can’t Keep Up with Cyberattacks Most respondents in a recent survey say they’re losing the battle despite having up-to-date protections in place.
- Turla APT Returns with New Malware, Anti-Censorship Angle A dropper called Topinambour_ is the first-stage implant, which in turn fetches a spy trojan built in several coding languages.
- Massive Malvertising Campaign Reaches 100M Ads, Manipulates Supply Chain A sophisticated and growing malvertising attacker is partnering with legitimate ad tech platforms to drop malware at scale.