Weekly Cyber Security News 01/12/2017

A selection of this week’s more interesting vulnerability disclosures and cyber security news. Been a quiet week for interesting news really, the most exciting has to be for macOS ‘root’ login issue  followed by the patch breaking something else. I would say that is a bit of an embarrassment, but hats off to at least trying to address the problem quickly:

• macOS Bug Allows Root Access With No Password

• Patch for macOS Root Access Flaw Breaks File Sharing

This could be handy, though I could be cynical and say just put a static flag up say you are on the list would sav a lot of work….

• Firefox to collaborate with HaveIBeenPwned to alert users on data breach HackRead reports

Yet another S3 leak. Obviously people are not paying any attention or have very short memories:

• Florida-based credit firm left 111GB of sensitive customer data exposed on AWS server Patrick Howell O’Neill reports

The left overs:

• Imgur: Email addresses and passwords stolen from 1.7 million accounts in 2014 hack

• Massive Malaysian telco data breach might be an inside job A. Azim Idris reports

• Patch of Dirty COW Vulnerability Incomplete, Researchers Claim

• Thoma Bravo Acquires Barracuda Networks for $1.6 Billion

• Linux antivirus and anti malware: 8 top tools

• Cobalt Hackers Exploit 17-Year-Old Vulnerability in Microsoft Office

• Facebook Flaw Allowed Removal of Any Photo