1 / 17

Previous Gnews

Previous Gnews. Do Not Poke It If It Is Not Yours Do Not Brag About Questionable Activity Do Not Hack The Venue Not Legal Advice Everything Is Theoretical Use At Your Own Risk Not Responsible For Damages Mileage May Vary Trust No One Verify Everything Do Your Own Research

ream
Download Presentation

Previous Gnews

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. Previous Gnews

  2. Do Not Poke It If It Is Not Yours Do Not Brag About Questionable Activity Do Not Hack The Venue Not Legal Advice Everything Is Theoretical Use At Your Own Risk Not Responsible For Damages Mileage May Vary Trust No One Verify Everything Do Your Own Research Create Your Own Opinion Communicate Share Learn Enjoy

  3. Patch Tuesday • Mar – 65 CVE / 22 KB Articles • Reports of 4-6 Critical, 1 actively exploited • Adobe Flash Player • Internet Explorer • Microsoft Edge • Microsoft Windows • Microsoft Office and Microsoft Office SharePoint • ChakraCore • Team Foundation Server • Skype for Business • Visual Studio • NuGet • http/2 DoS bug • SHA-1 Sigining • Win10 build Stalled • Azure Sentinel

  4. Holes / Patches • VMWare • VMSA-2019-0001.3, runc ( 1 CVE ) • Apple • none • Chrome • Use After Free bug • Adobe • APSB19-13 Acrobat and Reader, id ( 1 CVE ) • APSB19-14 Cold Fusion, rce ( 1 CVE ) • APSB19-15 Photshop CC, ce ( 1 CVE ) • APSB19-16 Digital Editions, ce ( 1 CVE ) • Cisco • HyperFlex and Prime, auth bypass ( 4+ CVE ) • WebEx, pe ( 1 CVE ) • SoHo Routers RV series, ce ( 1 CVE ) • NX-OS / FXOS, ce ( 26 CVE ) • Juniper • Multiple vulns for JunOS ( 4 CVE )

  5. Holes • Kali 2019.1 • 6 yr old WP bug • WinRAR bug • Drupal • Adobe reader re-patch • WhatsApp message snooping bug (ios) • NVIDIA patches • Ring patches snooping flaw • Comcast Xfinity secures all accounts with Kayne's password • Gamer? don't update win 10 • Google bluetooth

  6. Hacking • 8char • ATM jackpotting • Passwd Mgr crumbs in memory • Responsible diclosure re-re-dux • Delete xml.rels, Bypass lazy mail filters • separ malware • Big ship hacking, again.... • maxxaudio drivers • AI woes • pdf signing • BMC cloud persistence bug • thunderclap • MarioNet • header anomaly allows for detection of cobalt strike • visitor kiosks • side channel attack for DNA? • car alarm hacking

  7. Palo Alto Networks to buy Demisto(Sec Orchestration), $560m • Exclusive Group to buy Secure Wave • Popsico buys MuscleMilk • Target buys Shipt • nintex buys enable soft • Apple to acquire Lighthouse AI patents • NTT buys WhiteHat Security • Okta to buy Azuqua (integration) • F5 buys NGINX • Amazon drops NY HQ2 • Google reports 3.4million paid in bug bounties for 2018 • Kaspersky Launches CyberTrace (aggregated threat feed) • Baffle now with Lamda protection • Netskope now with GCP • facebook app now with location blocking (android) • Meanwhile FB renegs on phone # removal • Mastercard small business toolkit • W.VA and SANS girls go cyberstart Corp I (the good…)

  8. .NET now with encryption • Cloudflare transparency report and new canaries • StrongKy drops open-source FIDO server • Fedex same day bot • MariaDB now with enterprise • EFF FitItAlready campaign • New RedHat Certs • Palo Alto Cortex, now with MS Graph Security • Google to drop defense drone contract • AWS, now without permission to pentest • WebAuthn is now a standard • crowdstrike mobile EDR • GitHub increases payout range Corp I (the good…)

  9. Corp II(…the ungood) Coffee Meets Bagel popped, 6.2m users 500px popped, 14.8m users SenseNets (china face recognition) popped, 2.5m users NCBP popped Stanford Student Data Leak, 93 users Toyota Australia popped TurboTax Cred Stuffing Citrix popped, 6TB Verification.io, bad mongo, 800M-2B College applicant data ransomed Swedish medical phone service leaves recordings on internet, 2014-2019 GNCTD bad mongo, 458K Oops, ScoreSense repayment DarkMatter as a trusted root ca? Nest secret microphone SEDC will happily send passwd to email, any valid email Dow Jones DB on bad elastic, 2.4m

  10. Govt • GAO recommends a us version of gdpr • National Cyber Strategy released • Article 13 • FTC under fire (staples merger) • FTC to mod GLBA? • FTC levys 5.7mil COPPA fine on Music.ly(tiktok) • CCPA amendment? • predictive policing • Manning subpoenaed again, but for what • MalwareTechBlog gets trial Date • Public recognition of "first" offensive cyber attack • army clarifies definition of "killer robot" • FCC gets hit with anti-robocall robocall campaign • EDPB drops 19/20 WorkProgram • EDPB "questions" FATCA • EDPB drops Overview doc • ETSI drops IoT security Standard • EU, no more default creds • Thailand removes need for warrants

  11. Papers School shootings infographic https://publicintelligence.net/fbi-school-shootings-2000-2017/ US Army autonomous robots whitepaper https://publicintelligence.net/us-army-robotic-autonomous-multi-domain-ops/ Intro to hardware hacking https://blog.rapid7.com/2019/02/20/iot-security-introduction-to-embedded-hardware-hacking/ GSuite abuse https://www.perimeterx.com/blog/abusing-gsuite-for-data-scraping/ MS 2018 Security Intelligence Report https://clouddamcdnprodep.azureedge.net/gdc/gdcVAOQd7/original

  12. WTF Nike trainers with bricked mode https://thispersondoesnotexist.com/ https://threatpost.com/reddit-alice-bob-mitm/142145/ drug bust via playstation serial # Adi Shamir, no visa MS open sources calc.exe

  13. Anchore engine (container scanner) OpenAPI (api scanner_ GrandCrabDecryptor things to kill in win10 GoBuster (dns abuse) Colasoft packet editor Wireshark, now with npcap revisit win firewall and GPO 2019 SQL injection Dorks NSA Ghidra - reverse engineering Deepsound - audio stego Tools

  14. Past Cons RSA - Container breakout RSA - Antoher OLE 0-day RSA - satellites RSA - ultrasound hacking BSidesSF - logitech harmony WOPR Summit - Windows IOT Core bug

  15. Future Cons IANS Dallas Informatio Security Forum 27 Mar - Dallas Bsides Austin 28-29 March – Austin Kernelcon 5-6 Apr - Omaha HouSecCon 9 - 9-10 Apr – Houston BSidesOK – 10-12 Apr - Tulsa ThotCon 3-4 May – Chicago HackMiami 17-19 May – Miami NolaCon 17-19 May – New Orleans CircleCityCon 6.0 31 May – 2 Jun - Induabapolis

  16. ISSA Fort Worth @ISSAFortWorth ( 2nd Tuesday / location varies ) Hack Ft Worth @Hack_FtW ( 3rd Tuesday / Barrel & Bones, Fort Worth) DHA @Dallas_Hackers ( 1st Wednesday / Family Karaoke, Dallas ) TX2600 @dallas2600 ( 1st Fri / Wild Turkey 35&WalnutHill, Dallas ) The Lab.MS @TheLab_ms ( 2nd Saturday + random events / TheLab.ms, Plano ) OWASP Dallas @OWASPDallas ( 3rd Tuesday / location varies ) Pwn School Project ( 3rd Wed / Dallas | 4th Mon Denton ) Crypto Party DFW @CryptoPartyDFW ( 3rd Thursday / TheLab.ms, Plano ) North Texas ISSA @ntxissa ( 3rd Thursday / Maggiano’s, Plano ) North Texas Cyber Security Group @ntxcsg ( Last Thursday, Jakes, Frisco ) Dallas MakerSpace @dallasmakers ( Random events / Carrollton ) 0-day All Day @0Dayallday ( Quarterly / GeniusDen, Dallas ) Where

  17. All images scavenged without permission All images scavenged without permission

More Related