This week, Chris talked about MITRE’s ATT&CK Framework, a globally accessible knowledge base of cyber adversary tactics and techniques.
Weekly Content
- VestaCP Supply Chain Compromise
- LibSSH Authentication Flaw
- iPhone Password Bypass
- Reccomended Reading
- https://krebsonsecurity.com/2018/10/who-is-agent-tesla/
- https://thehackernews.com/2018/10/amazon-freertos-iot-os.html
- https://www.darkreading.com/vulnerabilities---threats/us-tops-global-malware-c2-distribution/d/d-id/1333097
- https://thehackernews.com/2018/10/tumblr-account-hacking.html
- https://www.welivesecurity.com/2018/10/18/tumblr-patches-bug-could-exposed-user-data/
- https://www.welivesecurity.com/2018/10/16/phishers-unusual-ploy-targeting-book-publishers/
- https://www.darkreading.com/endpoint/privacy/how-to-get-consumers-to-forgive-you-for-a-breach/d/d-id/1333074
- https://www.welivesecurity.com/2018/10/17/greyenergy-updated-arsenal-dangerous-threat-actors/
- https://securelist.com/darkpulsar/88199/
- https://securelist.com/darkpulsar-faq/88233/
- https://thehackernews.com/2018/10/hacking-tool-luminositylink.html
- https://thehackernews.com/2018/10/critical-flaw-found-in-streaming.html
- https://thehackernews.com/2018/10/google-android-european-commission.html
- https://www.darkreading.com/endpoint/google-patch-to-block-spectre-slowdown-in-windows-10/d/d-id/1333084
- https://www.darkreading.com/vulnerabilities---threats/facebook-rumored-to-be-hunting-for-major-cybersecurity-acquisition/d/d-id/1333099