It’s been a few weeks of no news posts, so I would like to apologize for that. I have been extremely busy moving and have simply not had the time to make the posts. Things are finally slowing down a bit so it’s time to get back to recapping the security going-ons! Few rather major stories this week so lets get going!
- First, and the biggest story of the day is about a major breach of a controversial Italian company known as “Hacking Team”. They are known for making and selling spyware to governments and police for surveillance purposes. An unknown hacker group that breached the company has taken and released over 500GB worth of data.
- Read More @ http://thehackernews.com/2015/07/Italian-hacking-team-software.html
- Continuing from the above story, despite the devastating breach that affected the “Hacking Team” they are planning on continuing operations, While this seems rather hard to believe, they are insistent that this will not take the company under.
- Read More @ https://threatpost.com/hacking-team-plans-to-continue-operations/113662
- Last story for now in relation to the above, it looks like the flash Zero Day from the Hacking Team breach is now being integrated into exploit kits, and used in other targeted campaigns as well.
- Read More @ http://thehackernews.com/2015/07/Hacking-Team-Flash-Zero-Day.html
- It’s been a bad few year for SSL and it seems to be continuing as another bug was found in Open SSL that allows attackers to bypass the certificate verification chain, enabling transparent MITM attacks if the bug is exploited. The good news is that the exposure is fairly limited so the scope of the bug is not as widespread as first thought and the four major web browsers are not affected.
- Read More @ https://nakedsecurity.sophos.com/2015/07/09/the-openssl-cve-2015-1793-certificate-verification-bug-what-you-need-to-know
- Next, on a bit of a different note, some good news for the Pirate Bay founders, as they have been acquitted of copyright infringement charges in Belgium. The case fell apart due to lack of evidence.
- Read More @ https://torrentfreak.com/pirate-bay-founders-acquitted-in-criminal-copyright-case-150710/
- Next, more data has been unearthed about the NSA’s infamous “XKeyscore” system. New information has revealed that it also was used to collect router data, Skype conversations, webcam images and more. Hardly surprising but interesting anyway,
- Read More @ https://nakedsecurity.sophos.com/2015/07/07/nsas-xkeyscore-collects-router-data-skype-conversations-webcam-images/
- For the last story of the week something that has been a long time coming but has finally occurred. It looks like North America has finally run out of IPv4 addresses. This has already happen in several other regions but it has happened to North America finally as well.
- Read More @ http://thehackernews.com/2015/07/america-IPv4-addresses.html