Cool News Story Bro! Week of 3-17-2017

by Otakun
Categories: News
Tags: No Tags
Comments: Leave a Comment

Hi Guys,

Sorry for the lack of news post last week. I got rather sick, so I spent my weekend sleeping and generally cursing my stomach which I was pretty sure was trying to kill me. But we are back, so let’s get to it.

News Stories:

  1. Google Points to Another POS Vendor Breach

    1. First news of the week is of another PoS system breach, brought to us by Krebs. This time it looks like the PoS software vendor “24×7 Hospitality Technology” was breached. Breach seems to have occurred from October 2016 to January 2017, and based on early reports all of their PoS systems were potentially affected.
    2. Read More @ https://krebsonsecurity.com/2017/03/google-points-to-another-pos-vendor-breach/
  2. WikiLeaks Won’t Disclose CIA Exploits To Companies Until Certain Demands Are Met

    1. Wikileaks said before that they want to work with tech companies in order to fix the vulnerabilities identified in the Vault 7 leaks, however it seems like Wikileaks has some “conditions” it has placed on these companies prior to revealing the technical details.
    2. Read More @ http://thehackernews.com/2017/03/wikileaks-cia-hacking-exploits.html
  3. New MagikPOS Malware Targets Point-of-Sale Systems In US & Canada

    1. Keeping up with the theme of Point of Sale malware this week, Trend Micro has disclosed a new piece of PoS malware named “MagikPoS”. Check it out.
    2. Read More @ http://www.darkreading.com/attacks-breaches/new-magikpos-malware-targets-point-of-sale-systems-in-us-and-canada-/d/d-id/1328434
  4. Mandiant: Financial Cybercriminals Looking More Like Nation-States

    1. Next, some interesting news by Mandiant, that claim that these days financially motivated cyber attacks are starting to resemble nation state APT campaigns more and more. Showing that the days of “Smash and grab” financial cyber crime are coming to an end.
    2. Read More @ http://www.darkreading.com/mandiant-financial-cybercriminals-looking-more-like-nation-states/d/d-id/1328426
  5. Symantec: North Korean hacking group behind attacks in 31 countries

    1. Next, Symantec is claiming that a North Korean hacking group known as “Lazarus” is behind several high profile hacks including “SPE”, Bangladesh Bank and others. For anyone interested in a very detailed technical report on the Lazarus group please check out https://www.operationblockbuster.com/. Absolutely fantastic read. Highly recommended.
    2. Read More @ www.tnp.sg/news/world/symantec-north-korean-hacking-group-behind-attacks-31-countries
  6. Russia, security industry responds to indictments in Yahoo breach case

    1. Lastly, responses from Russia and the industry at large to the indictment of 4 people responsible for the Yahoo breach. Interesting part here being the fact that 2 of the four were previous Russian FSB officers.
    2. Read More @ https://www.scmagazine.com/russia-security-industry-responds-to-indictments-in-yahoo-breach-case/article/644541/


  1. Wrangling Unicorns – A Skills Shortage Survival Guide

    1. First webcast of the week is about the skills shortage in InfoSec, which has been well publicized. With that in mind, this webcast takes a look at the ways to attract talent, as well as how to keep the people you already have.
    2. Watch @ https://www.brighttalk.com/webcast/13225/228993
  2. When Hackers Use Your Security Tools Against You

    1. Next, a very interesting webcast by the folks at Dell SecureWorks that takes a look at a few use cases where the companies’ security tools were actually used against them during an attack. Interesting watch.
    2. Watch @ https://www.brighttalk.com/webcast/5416/230607
– Otakun –

Leave a Reply

Your email address will not be published. Required fields are marked *

Today is Tuesday