It’s DefCon week, and I am bummed that I am not able to be in Vegas for this year’s conference, but given that I am living on another continent, it would be a bit more expensive than going from Arizona. Non the less, I wish I could have gone, as I generally tend to really enjoy DefCon. However, there is still news to be covered, so let’s get going.
- First, a privacy related story in regards to the ever unpopular (with the cable companies, at least) “net neutrality” rules. It looks like these ISPs will not rest in their attempts to reverse these rulings and have again urged the U.S court to do so. Their arguments are basically that the rules will hinder investment into the broadband infrastructure as a result, and cause “consumer harm”. However, let’s face it, we all know what this is about. They enjoy their monopoly and price gouging and want to keep it that way. Let’s hope the court sticks with their original ruling.
- Read More @ http://www.reuters.com/article/us-usa-internet-idUSKCN1091OS
- And following up from the above story. Pretty much proving my point. Comcast is now saying that they should be able to charge consumers more for protecting their privacy. Basically saying, for those wanting to opt-out of invasive advertising practices should pay for for the privilege. Absolutely ridiculous, and shows exactly why the ‘net neutrality’ rules are necessary.
- Read More @ https://yro.slashdot.org/story/16/08/03/180205/comcast-wants-to-charge-broadband-users-more-for-privacy
- Next, a news of the 3rd largest BitCoin exchange site “Bitfinex” being breached, which resulted in a loss of around $72 million worth of bitcoins. This has subsequently caused the BitCoin prices to drop almost 20%. There are not many details on the breach as of yet, but again just shows that keeping your bitcoin in exchanges like this, is hardly a safe option.
- Read More @ http://thehackernews.com/2016/08/bitcoin-exchange-price.html
- Next, the Department of Homeland Security has released guidelines on reporting Cyber Incidents for US organizations. Guidelines break down to which agency the crime should be reported, based on the type of incident that occurred.
- Read More @ http://www.securityweek.com/dhs-details-cyber-incident-reporting-process
- Next, Kaspersky Lab has announced at BlackHat 2016 that they are launching a bug bounty program, aimed at improving the security of their flagship products. Many companies have started similar programs in recent months but this is the first one I’ve seen by an AV vendor. Good on them.
- Read More @ https://threatpost.com/kaspersky-lab-launches-bug-bounty-program/119586/
- Next, another massive batch of user credentials is up for sale on the dark web, by the same hacker who did the same with LinkedIn, and MySpace credentials in recent months. This time he claims to have put up for sale some 200 million Yahoo user credentials for about $1800. Yahoo has not confirmed this breach yet.
- Read More @ http://www.scmagazine.com/hacker-peace-purportedly-selling-200-million-yahoo-user-credentials-on-dark-web/article/513430/
- Next, some bad news for BitTorrent fans. The largest torrent search engine “Torrentz.eu” has shut down as of this week. Following the closure of “KickassTorrents”, this is a bad week for BT users. List of good sites is getting shorter and shorter.
- Read More @ https://www.hackread.com/torrentz-eu-down-quits-operation/
- Next, news of another breach. Arizona based Banner Health has been breached leaving data of 3.7 million exposed as a result. Initial breach on June 23, was of their payment card processing systems, but later it was also discovered that attacks gained deeper access, to patient data as well.
- Read More @ http://www.securityweek.com/37-million-exposed-banner-health-breach
- Last for the week, an Isareli security firm has said to have hacked an ISIS forum, hosted on the dark web. Some of the data discovered included information on past attacks the group was responsible for, as well as plans for some of their future attacks as well.
- Read More @ https://www.grahamcluley.com/2016/08/israeli-security-firm-hacks-isis-forum-discloses-future-targets/