First of all, Happy New Year everyone! I hope you all had a great New Year’s eve, and that you will have a fantastic 2016. With the start of a new year, we also felt the time would be right for us to also add something new to this feature. As of this week our “Cool News Story” posts will begin to include interesting webcasts/presentations/videos. I go through a good amount of interesting videos and figured some of you might also be interested so we would like to start bringing attention to some of the most interesting ones we have seen the previous week. I hope you enjoy this addition, and as always feedback is welcome and appreciated.
- A misconfigured database has resulted in an exposure of 191 million voter records. Personal information like full names, addresses, phone numbers, and voter IDs. So far noone has taken responsibility but that’s a lot of info outed to the public.
- Read More @ http://thehackernews.com/2015/12/us-voter-database-hacked.html
- Next, a new spin on the tech support call scam has been discovered by researchers at Malwarebytes. This one takes advantage of the “safe browsing” warnings in order to direct users to a tech support scammer. The attacker takes advantage of AWS amazon cloud services, and later Rackspace cloud platform to spread the scam. Interesting take, on an old formula.
- Read More @ https://blog.malwarebytes.org/fraud-scam/2015/12/safebrowsing-scam-from-amazon-to-rackspace/
- Following in the footsteps of other tech giants like Google, Facebook and Twitter Microsoft has said they will inform users if their platforms are targeted by government hackers. Good news, and a good trend.
- Read More @ http://thehackernews.com/2015/12/hacking-microsoft-spying.html
- Completely counterpoint to the above article, the UK seems to be trying to take the opposite approach, and is currently attempting to push a bill through that would make it a criminal offense for tech companies to inform users about government spying punishable by up to two years in prison.
- Read More @ news.slashdot.org/story/15/12/31/0339255/tech-companies-face-criminal-charges-if-they-notify-users-of-uk-government-spying
- Next, an interesting though hardly surprising story about Windows 10. A researcher has said that if you use Windows 10 your encryption key is automatically backed up to Microsoft servers. While you have the options to delete it, once it’s in the cloud you hardly can be sure of it’s fate. Yet another reason I am not terribly interested in upgrading to Windows 10 anytime soon.
- Read More @ tech.slashdot.org/story/15/12/29/0212222/microsoft-has-your-encryption-key-if-you-use-windows-10
- Next, an interesting opinion piece on the paradox of Grey Hat hackers, and it uses the VTech hack as an example of the argument. It’s an interesting discussion to be had, where exactly is the line and when is it ok to cross it?
- Read More @ http://windowsitpro.com/troy-hunts-security-sense/security-sense-paradox-grey-hat-hackers
- And to close off the first news post of the year, it’s a post about news posts. Meta, eh? Naked Security has posted an article on their top 10 most popular stories of the year and I found it interesting. Do you agree with their list?
- Read More @ https://nakedsecurity.sophos.com/2015/12/31/naked-securitys-top-10-most-popular-stories-of-2015/
- Our inaugural video is a very interesting one. A German security researcher has gotten hold of and taken apart the code for the North Korea’s “Official” Operating System, named the “Red Star OS”. Very interesting to get a glimpse into that aspect of North Korea’s technology.
- Watch @ https://youtu.be/j_9QOgg0GRE