Sorry for the no show for the past few weeks, but life gets busy. However, we are back and let’s get right to it.
- Starting off the week with some not-so-good news for Microsoft as a massive trove of data containing Internal Windows 10 builds and partial source code leaked online. The suspicion is that the leak came from an OEM that Microsoft shares the data with. Curious to see if this ends up leading to discovery of new vulnerabilities in Windows 10 as a result.
- Read More @ http://thehackernews.com/2017/06/windows10-builds-source-code.html
- In what is probably a move at least partially brought on by WannaCry Microsoft will be removing SMBv1 in the next version of Windows 10 (RedStone 3). This is welcome news given the EternalBlue exploit being made public.
- Read More @ http://thehackernews.com/2017/06/windows-10-redstone3-smb.html
- New TrustWave report brings some good news when it comes to the detection time for intrusions. The average time dropped from 80 days to 49, which is quite an improvement given that merely few years ago those numbers were significantly higher. However, this is primarily a North America focused report and I think Asia especially is still quite far behind the curve.
- Read More @ https://www.infosecurity-magazine.com/news/median-dwell-time-for-hackers/
- In a rather interesting story, a New Your Supreme Court Justice ended up a victim of a phishing scam that saw her hand over $1.1M to scammers. She ended up sending the money over to who she thought was her lawyer.
- Read More @ https://www.scmagazine.com/new-york-state-supreme-court-justice-lori-sattler-phished-for-1m/article/670070/
- Just when we thought that WannaCry news have passed it turns out that it’s still causing problems. A Honda production plant was taken offline due to a WannaCry infection, showing that it’s still alive and kicking.
- Read More @ http://www.darkreading.com/attacks-breaches/wannacry-forces-honda-to-take-production-plant-offline-/d/d-id/1329192?_mc=sm_dr&hootPostID=5f47eb4da4b805417af3658e13db74d6
- This weeks webcast by Dell Secureworks is about the dangers of PowerShell. Given the massive rise in malware using powershell in recent years, it’s becoming increasingly important for security professionals to understand how PowerShell is being used by malware and how to detect and help stop misuse. This is a great introduction. Give it a watch.
- Watch @ https://www.brighttalk.com/webcast/10979/255561