2019 Week 1 and 2 Security Summary



It turns out if you are willing to pay, most cell carriers besides Verizon are willing to sell your location data including real time. The idea is that they sell it to aggregators, but they include the code for the phone, meaning it is trivial to recombine the data and figure out who is who and where they go.

Microsofts monthly patch had several issues:
Iran was found to be behind the massive DNS Hijack attack that has been reported on for about 20 months now. Looks like they have been harvesting credentials of government agencies/entities, telco’s, and network infrastructure companies

Several of us have noticed that the government did some pretty strange things with their web servers. Not sure if the idea was to make things so inconvenient that pressure was put on politicians. For me it was frustrating as I was wanting to link a vendors suggestions to the NIST document it was based on and was unable because the documents were taken offline.  Another thing that did happen of greater concern to the wider world was that security certificates were allowed to expire or were disabled. This has allowed hackers to engage in man in the middle attacks on government web sites. Looks like mostly it was payment stuff, but might be wise to be aware of any data sent to federal agencies right now.

There were several articles about how 2 factor was able to be bypassed in a phish attack exploit.

Yubikey evidently released the idea of a token for the iPhone at CES. Most articles were the same PR stuff, but here is the Wired version.

Saw several articles about new flaws in the core code of Linux that will affect most all distros.

Only saw this mentioned in one place, but evidently a flaw in Office allows ActiveX to get local machine information to include local passwords.

I have talked with several people involved with this and it appears it made at least regional news. Tulsa has started working towards creating their own version of silicone valley and they are making Cyber Security one of the corner stones. Hopefully it will take off better than the Stillwater/OSU/Meridian efforts.

Pylocky Unlock code shared by Ciso. (Hopefully we don’t have to use it…)

Comments

Popular posts from this blog

2021 Week 11 Security Roundup

2021 Weeks 32-40 Security Roundup

2021 Week 29 Security Review