Cool News Story Bro! Week of 3-03-2017

by Otakun
Categories: News
Tags: No Tags
Comments: Leave a Comment

Hi Guys!

Some pretty interesting stuff this week, hope you enjoy reading !

News Stories:

  1. Yahoo says forged cookie attack accessed about 32M accounts

    1. It wouldn’t be news without Yahoo. News has surfaced that the “forged cookie” attack disclosed by Yahoo recently was used to access about 32M accounts. Yahoo claims it’s the same actor that was responsible for the prior breach that resulted in 500 million accounts being breached.
    2. Read More @ https://www.cnet.com/news/yahoo-says-forged-cookie-attack-accessed-about-32m-accounts/
  2. Amazon admits that a typo took the internet down this week

    1. I am sure you all have heard about the Amazon Web Services outage, as it took down some quite big services for about 3 hours. Now the company has revealed that this was a result of an engineer mistyping a command and not due to an attack of any sort. Just good ol’ human error.
    2. Read More @ https://www.engadget.com/2017/03/02/amazon-admits-that-a-typo-took-the-internet-down-this-week/
  3. New Fileless Attack Using DNS Queries to Carry Out PowerShell Commands

    1. Next, an interesting new attack was discovered by Cisco Talos research team that was using the DNS Txt records to carry out PowerShell commands. This is a very interesting use of DNS as a way to ensure the attack is as stealthy as possible. Good read.
    2. Read More  @ https://threatpost.com/new-fileless-attack-using-dns-queries-to-carry-out-powershell-commands/124078/
  4. CloudPets Breached and Kids’ Voice Messages Exposed

    1. The company behind the connected toy line “CloudPets” was breached as an exposed DB exposed something like 800, 000 user accounts and as many as 2.2M voice messages.
    2. Read More @ https://www.infosecurity-magazine.com/news/cloudpets-breached-kids-voice-2/?utm_source=dlvr.it&utm_medium=twitter


  1. Exploit kits: getting in by any means necessary

    1. The webcast for this week is on one of my favorite topics, which is of course “Exploit Kits”. The folks at Palo Alto Networks give a good introduction to EKs, and how they work. For those not familiar with the topic, it’s a good watch. Enjoy !
    2. Watch @ https://www.brighttalk.com/webcast/10903/240613?utm_campaign=viewing-history


– Otakun –

Leave a Reply

Your email address will not be published. Required fields are marked *

Today is Tuesday