1 / 12

Previous Gnews

Previous Gnews. Patch Tuesday. Jul – 53 CVE / 59 KB Articles Reports of 6 Critical Internet Explorer Microsoft Edge Microsoft Windows Microsoft Office and Microsoft Office Services and Web Apps ChakraCore Adobe Flash Player .NET Framework

dfogle
Download Presentation

Previous Gnews

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. Previous Gnews

  2. Patch Tuesday • Jul – 53 CVE / 59 KB Articles • Reports of 6 Critical • Internet Explorer • Microsoft Edge • Microsoft Windows • Microsoft Office and Microsoft Office Services and Web Apps • ChakraCore • Adobe Flash Player • .NET Framework • ASP.NET • Microsoft Research JavaScript Cryptography Library • Skype for Business and Microsoft Lync • Visual Studio • Microsoft Wireless Display Adapter V2 Software • PowerShell Editor Services • PowerShell Extension for Visual Studio Code • Web Customizations for Active Directory Federation Services

  3. Holes / Patches • VMWare • VMSA-2018-0016 ( 3 CVE ) • VMware ESX, Workstation, Fusion Out-of-Bounds Read • Google • Android 44 Fixes • Apple • QuickLook data leakage on encrypted drives • USB Restrictions feature added • ADB Boardband router patched • Cox / Charter • Oracle • Next Week, 17 Jul 2018 • Adobe • APSB18-21 Acrobat / Reader ( 77 CVE ) • APSB18-22 Adobe Connect ( 3 CVE ) • APSB18-23 Adobe Experience Manager ( 3CVE ) • APSB18-24 Flash Player ( 2 CVE ) • Apple • SwiftNIO 1.8.0 ( 1 CVE) • WiFi for BootCamp 6.4.0 ( 3 CVE ) • iOS 11.4.1 ( 22 CVE) • tvOS 11.4.1 ( 18 CVE) • watchOS 4.3.2 (14 CVE) • Security Update 2018-004 ( 11 CVE) • Safari 11.1.2 ( 16 CVE) • iCloud for Win 7.6 ( 14 CVE) • iTunes 12.8 for Win ( 14 CVE)

  4. Hacking • Axis Cameras ( 7 CVE) • unsecured containers ( 22K+ ) • Tapplock pwnage • Uervoton lock foiled by pesky screws • steering ships • Rampage (rowhammer variant)

  5. Google home and chromecast location leakage • roku and sonos affected • Siris Capital Group LLC to acquire Web.com • Tesla leak • robotics engineer barbie • HaveIBeenPwned embedded in Mozilla/Cloudflare • TicketMaster popped via chatbot • adidas (us) popped • samsung phantom text • 3rd party access to gmail • Polar fitness data leakage • AT&T acquires AlienVault Corp

  6. VT woman wins case against equifax • Chicago mini gdpr • California Consumer Privacy Act • MD Anderson 2012-2013 data breach (4.3 mil) • vault7 chargers brought against x cia officer • Gets 63 months • Iowa Nebraska infosec laws • Iowa - protections on data and services for k-12 data owners • Nebraska - mini gdpr • VA breach notification amendment (specific to tax data) • ICE HQ traffic sign hacked • Supreme court rules on internet sales tax • 4th applies to cell tracking • NSA wiretap rooms?? • Interpol Voice database • fosta law suit Govt

  7. Papers Win10 for forensics https://www.sans.org/reading-room/whitepapers/forensics/windows-10-forensic-platform-38475

  8. Tools forensics tools https://www.hackread.com/top-7-cyber-forensic-tools/

  9. Past Cons 614Con 14-15 Jun ColombusOH BSidesSATX 16 Jun 2018  san Antonio Shakacon 11-12 Jul Honolulu

  10. Future Cons HOPE 20-22 Jul NYC BlackHat 4-9 Aug Vegas BSidesLV 7-8 Aug Vegas DefCon 9-12 Aug Vegas

  11. DHA @Dallas_Hackers ( 1st Wednesday / Family Karaoke, Dallas ) TX2600 @dallas2600 ( 1st Fri / Wild Turkey 35&WalnutHill, Dallas ) The Lab.MS @TheLab_ms ( 2nd Saturday + random events / TheLab.ms, Plano ) ISSA Fort Worth @ISSAFortWorth ( 2nd Tuesday / location varies ) Hack Ft Worth @Hack_FtW ( 3rd-ish Tuesday / Buffalo West, Fort Worth) OWASP Dallas @OWASPDallas ( 3rd Tuesday / location varies ) Crypto Party DFW @CryptoPartyDFW ( 3rd Thursday / TheLab.ms, Plano ) North Texas Cyber Security Group @ntxcsg ( Last Thursday, Jakes, Frisco ) Dallas MakerSpace @dallasmakers ( Random events / Carrollton ) 0-day All Day @0Dayallday ( Quarterly / DFW) Where

  12. All images scavenged without permission All images scavenged without permission

More Related