POPULARITY
This week's topics- Analysis of the DDoS Attacks against Ukrainian Websites, New Sandworm malware #Cyclops Blink replaces VPNFilter & a jammer used to stop kids going online, wipes out a town's internet by mistake.
[Referências do Episódio] - Novos ataques contra a Ucrânia - https://www.reuters.com/world/europe/ukrainian-government-foreign-ministry-parliament-websites-down-2022-02-23/ - Criminosos tentando tirar proveito das tensões entre Rússia e Ucrânia - https://www.securityweek.com/cybercriminals-seek-profit-russia-ukraine-conflict - Screenlocker com nota de resgate em português - https://twitter.com/malwrhunterteam/status/1496215292984369160 - Análise do Backdoor Bvp47 - https://www.pangulab.cn/files/The_Bvp47_a_top-tier_backdoor_of_us_nsa_equation_group.en.pdf - Cyclops Blink é atribuído ao Sandworm como novo VPNFilter - https://www.ncsc.gov.uk/news/joint-advisory-shows-new-sandworm-malware-cyclops-blink-replaces-vpnfilter - VPNFilter tinha roteadores comprometidos anos após a desativação da ameaça - trendmicro.com/en_us/research/21/a/vpnfilter-two-years-later-routers-still-compromised-.html - Semelhanças entre o Entropy e o Dridex - https://www.sophos.com/en-us/press-office/press-releases/2022/02/sophos-uncovers-code-similarities-in-dridex-botnet-and-entropy-ransomware [Ficha técnica] Roteiro e apresentação: Carlos Cabral Edição de áudio: Paulo Arruzzo Narração de encerramento: Bianca Garcia Projeto gráfico: Julian Prieto
CISA, the UK's National Cyber Security Centre (NCSC), the National Security Agency (NSA), and the Federal Bureau of Investigation (FBI) have identified that the actor known as Sandworm or Voodoo Bear is using a new malware, Cyclops Blink. CISA, the NCSC, and the FBI have previously attributed the Sandworm actor to the Russian General Staff Main Intelligence Directorate's Russian (GRU's) Main Centre for Special Technologies. AA22-054A Alert, Technical Details, and Mitigations Cyclops Blink Malware Analysis Report All organizations should report incidents and anomalous activity to CISA's 24/7 Operations Center at central@cisa.dhs.gov or (888) 282-0870 and to the FBI via your local FBI field office or the FBI's 24/7 CyWatch at (855) 292-3937 or CyWatch@fbi.gov.
Recorded 5/24/19 - There is another Blue(x) to talk about and guess what? YES, YOU STILL NEED TO PATCH. We talk about RDP, the source of this vuln, and whether or not exploits exist for it (hint: they do). There is a quick look back at last year on the anniversary of VPNFilter, and we also tackle 0-days again through the lens of Project Zero’s timeline of 0-days found in the wild. Also, Craig hasn’t seen the end of John Wick 3 yet, so feel free to tweet him spoilers. If you are in San Diego for Cisco Live, come find us to see a live recording of the podcast! Full show notes [on the Talos blog](https://blog.talosintelligence.com/2019/05/beers-with-talos-ep-54-patch-after.html)
Alexa is sending your private conversations to your contacts? Did “the Russians” kill your router? Also, the grand “Solo: A Star Wars Story” review, Beyond Burgers, and much, much more… Co-Hosts: N/A Opening Audio: N/A The Foreplay:--The Sovryn Tech Newsletter (zog.email), new items in the Sovryn Tech Store (store.sovryntech.com), GDPR correction, VPNFilter malware (bit.ly/2xdqQ1n), new Spectre variant, the EM-Drive is bullshit (bit.ly/2KXHMeB). Story of the Week:--“Alexa Recording Private Conversations” Link: slate.me/2GOHpjK The Climax:--"Solo: A Star Wars Story" APPENDIX: -- Sovryn Tech Store:store.sovryntech.com--“ZenCash” Link: zensystem.io/ --"Roberts & Roberts Brokerage" Link: rrbi.co--"CryptoCompare" Link: www.cryptocompare.com/--“Unixstickers” Link: stickers.sovryntech.com--"Surveillance Self-Defense" Link: ssd.eff.org/ --"That One Privacy Site" Link: thatoneprivacysite.net/ --"Privacytools.io" Link: www.privacytools.io/ --"ipleak.net" Link: ipleak.net/ --"Secure Messaging Apps" Link: www.securemessagingapps.com/ --"A Graduate Course in Applied Cryptography" Link: toc.cryptobook.us/ --"URLscan.io" Link: urlscan.io/ --"WinZec Zcash Wallet" Link: winzec.com/--"EFF Guide to the US Border" Link: bit.ly/2m79lGe--"RetroShare" Link: retroshare.net/--“Books of Liberty” Link: booksofliberty.com/--"Dark Android: 2017 Edition" Link: darkandroid.info---------------------------------------------------------------------------------------- Make easy monthly donations through Patreon: patreon.com/sovryntech Donate with Crypto! BTC: 1AEiTkWiF8x6yjQbbhoU89vHHMrkzQ7o8d ZenCash Shielded (encrypted) Address: zceDc5yyR5wY5w9ArxhAvLxWz2gpKMESTzC3iwzASong3o4oVgqp1VkZU1eeMUobPW87TStRABqcfN3rPSErFwyFnU8AjJeZenCash Transparent (unencrypted) Address: znZCyUwzGt19KqhCVzeR5iiUG5CEjNoe1YpZcash Shielded (encrypted) Address: zcfUhN29ddFdtZ1iKvv6WFFXUB9nKWwL5kXvcrvhQuB2yMw6eabshv1CGN92kkbtRt1Ykf1k2266sJvZAQQUrhmpuCwXUDD Zcash Transparent (unencrypted) Address: t1ZAA33YYzPmm4Ks5aq13N4NJBjqqSypY8G Donate with PayPal! Link: donate.zog.ninja Donate with our Amazon Wish List! Link: wishlist.zog.ninja ---------------------------------------------------------------------------------------- You can e-mail the show at: bbs@sovryntech.com---------------------------------------------------------------------------------------- You can also visit our IRC channel on Freenode: #SovNet Or just go to: irc.zog.ninja ---------------------------------------------------------------------------------------- sovryntech.com twitter.com/sovryntech
Alexa is sending your private conversations to your contacts? Did “the Russians” kill your router? Also, the grand “Solo: A Star Wars Story” review, Beyond Burgers, and much, much more… Co-Hosts: N/A Opening Audio: N/A The Foreplay:--The Sovryn Tech Newsletter (zog.email), new items in the Sovryn Tech Store (store.sovryntech.com), GDPR correction, VPNFilter malware (bit.ly/2xdqQ1n), new Spectre variant, the EM-Drive is bullshit (bit.ly/2KXHMeB). Story of the Week:--“Alexa Recording Private Conversations” Link: slate.me/2GOHpjK The Climax:--"Solo: A Star Wars Story" APPENDIX: -- Sovryn Tech Store:store.sovryntech.com--“ZenCash” Link: zensystem.io/ --"Roberts & Roberts Brokerage" Link: rrbi.co--"CryptoCompare" Link: www.cryptocompare.com/--“Unixstickers” Link: stickers.sovryntech.com--"Surveillance Self-Defense" Link: ssd.eff.org/ --"That One Privacy Site" Link: thatoneprivacysite.net/ --"Privacytools.io" Link: www.privacytools.io/ --"ipleak.net" Link: ipleak.net/ --"Secure Messaging Apps" Link: www.securemessagingapps.com/ --"A Graduate Course in Applied Cryptography" Link: toc.cryptobook.us/ --"URLscan.io" Link: urlscan.io/ --"WinZec Zcash Wallet" Link: winzec.com/--"EFF Guide to the US Border" Link: bit.ly/2m79lGe--"RetroShare" Link: retroshare.net/--“Books of Liberty” Link: booksofliberty.com/--"Dark Android: 2017 Edition" Link: darkandroid.info---------------------------------------------------------------------------------------- Make easy monthly donations through Patreon: patreon.com/sovryntech Donate with Crypto! BTC: 1AEiTkWiF8x6yjQbbhoU89vHHMrkzQ7o8d ZenCash Shielded (encrypted) Address: zceDc5yyR5wY5w9ArxhAvLxWz2gpKMESTzC3iwzASong3o4oVgqp1VkZU1eeMUobPW87TStRABqcfN3rPSErFwyFnU8AjJeZenCash Transparent (unencrypted) Address: znZCyUwzGt19KqhCVzeR5iiUG5CEjNoe1YpZcash Shielded (encrypted) Address: zcfUhN29ddFdtZ1iKvv6WFFXUB9nKWwL5kXvcrvhQuB2yMw6eabshv1CGN92kkbtRt1Ykf1k2266sJvZAQQUrhmpuCwXUDD Zcash Transparent (unencrypted) Address: t1ZAA33YYzPmm4Ks5aq13N4NJBjqqSypY8G Donate with PayPal! Link: donate.zog.ninja Donate with our Amazon Wish List! Link: wishlist.zog.ninja ---------------------------------------------------------------------------------------- You can e-mail the show at: bbs@sovryntech.com---------------------------------------------------------------------------------------- You can also visit our IRC channel on Freenode: #SovNet Or just go to: irc.zog.ninja ---------------------------------------------------------------------------------------- sovryntech.com twitter.com/sovryntech
Recorded 1/7/18 - Most of the EP (after an extended Roundtable - we all had a lot to get out after time off), we look back at the 2018 Year-in-Malware Review -- Olympic Destroyer, VPNFilter, MDM and other unique, large-scale, or otherwise interesting bits of malware that Talos encountered. We also discuss the things we would love to see conference talks about in the new year. Of course, we use that to announce the CFP for Talos Threat Research Summit 2019. If you do defense and want to talk to other defenders, make sure to submit! Full show notes [on the Talos blog](https://blog.talosintelligence.com/2019/01/beers-with-talos-ep44-fun-with-2018s.html)
Recorded 9/21/18 - The whole crew is back together! On the agenda today - VPNFilter part III, now with more known third stage payloads! As much as we have talked about multi-part posts, you know we wouldn’t post if it wasn’t important (on the blog, that is. That rule obvs doesn’t apply here) We are also releasing a related open source tool - WInbox Protocol Dissector. Finally, delve into an AV avoiding DDE and jump off into defense in depth. Full show notes [on the Talos blog](https://blog.talosintelligence.com/2018/09/beers-with-talos-ep38-more-fun-with.html).
Uber agrees to pay $148m in data breach settlement, VPNFilter gains more capabilities and another banking trojan found on Google Play on today's Latest Hacking News Podcast.
This week's tools, tips and tricks talks about a tool by Symantec that allows you to check your home router for the VPNFilter malware infection. Although I have spoken about this before more reports are coming out that this nasty malware is more prevalent and widespread that initially thought. This episode talks about why this is important to check and reiterates why you should check your router routinely. VPNFilter Check Tool By Symantec - http://www.symantec.com/filtercheck/ Be aware, be safe. ------------------------------------ Website - https://www.binaryblogger.com Podcast Page - http://securityinfive.libsyn.com Podcast RSS - http://securityinfive.libsyn.com/rss Twitter @binaryblogger - https://www.twitter.com/binaryblogger iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2 YouTube - https://www.youtube.com/binaryblogger TuneIn Radio - Security In Five Channel Spotify - Security In Five Podcast Page Stitcher -
Welcome to episode 103 of the EdTech Situation Room from August 15, 2018, where technology news meets educational analysis. This week Jason Neiffer (@techsavvyteach) and Wesley Fryer (@wfryer) discussed universities deploying smart assistants in student dorms to answer questions, the privacy concerns of smart assistants in educational contexts, and the shortcomings of the latest MacBook Pro laptops relative to Windows-based competitors. Rumors of dual-booting Chromebooks (also booting to Windows), whether or not social media platforms are "publishers," and strategies to stop or avoid "stalking ads" on social media were also addressed. Social media / fake news controversies over the temporary (7 day) banning of Alex Jones / InfoWars on Twitter, hacker threats to home routers (VPNfilter) and IoT devices, the advent of Fortnite on ALL Android devices (but not via the Google Play Store), and Google's location tracking of users who turn off location services rounded out the news articles addressed in this show. Geeks of the Week included the Timer Tab app (ad-free), an incredible photo of our sun during a "Coronal Mass Ejection" with the earth shown to scale, and the recent PBS documentary, "Documenting Hate: Charlottesville." Please follow us on Twitter @edtechSR for updates, and join us LIVE on Wednesday nights if you can at 10 pm Eastern / 9 pm Central / 8 pm Mountain / 7 pm Pacific or 3 am UTC.
Recorded 8/8/18 - We decided to broadcast while we were all together at Black Hat - and invited everyone over for lunch and beers. Since we had a room full of people, we made this EP “choose your own podcast” and tooks topics from the audience. Neil Jenkins from the Cyber Threat Alliance came by to bestow befitting superhero swag on Matt and Adam for their work on VPNFilter. Headlining this event is our very special guest - Dave Bittner from The CyberWire. Full show notes podcast [blog post](https://blog.talosintelligence.com/2018/08/beers-with-talos-ep-35-live-from-rira.html)
UISGCON14 https://14.uisgcon.org/ На Дніпропетровщині СБУ попередила кібератаку російських спецслужб на об’єкт критичної інфраструктури https://ssu.gov.ua/ua/news/1/category/2/view/5037#.MkS7rpun.dpbs Ukraine claims it blocked VPNFilter attack at chemical plant https://www.theregister.co.uk/2018/07/13/ukraine_vpnfilter_attack/ Speculative Buffer Overflows: Attacks and Defenses (pdf) https://people.csail.mit.edu/vlk/spectre11.pdf New Spectre 1.1 and Spectre 1.2 CPU Flaws Disclosed https://www.bleepingcomputer.com/news/security/new-spectre-11-and-spectre-12-cpu-flaws-disclosed/ Google Enables 'Site Isolation' Feature By Default For Chrome Desktop Users https://thehackernews.com/2018/07/google-chrome-site-isolation.html Вийшов річний звіт CISCO з кібербезпеки і піврічний звіт чекпоінт, але ми поговоримо про них наступного разу https://www.cisco.com/c/dam/global/uk_ua/assets/pdfs/Final_Files_Cisco_2018_ACR_Web.pdf?dtid=oemzzz000186&ccid=cc000160&ecid=10432&oid=anrsc005679 Scam alert: No, hackers don't have webcam vids of you enjoying p0rno. Don't give them any $$s https://www.theregister.co.uk/2018/07/13/hacker_extortion_scam/ GitHub to Pythonistas: Let us save you from vulnerable code https://www.theregister.co.uk/2018/07/16/github_to_pythonistas_let_us_save_you_from_vulnerable_code/ Microsoft seeks regulation of facial recognition technology https://www.reuters.com/article/us-microsoft-facial-recognition/microsoft-seeks-regulation-of-facial-recognition-technology-idUSKBN1K32F0 Two-factor auth totally locks down Office 365? You may want to check all your services... https://www.theregister.co.uk/2018/07/13/2fa_o365_bypass_attacks/ The Tale of SettingContent-ms Files https://posts.specterops.io/the-tale-of-settingcontent-ms-files-f1ea253e4d39 Facebook fined for data breaches in Cambridge Analytica scandal https://amp.theguardian.com/technology/2018/jul/11/facebook-fined-for-data-breaches-in-cambridge-analytica-scandal Cops suspect Detroit fuel station was hacked before 10 drivers made off with 2.3k 'free' litres https://www.theregister.co.uk/2018/07/09/gas_station_hack/ 2018-07 Security Bulletin: Junos OS: Junos OS: MPC7/8/9, PTX-FPC3 (FPC-P1, FPC-P2), PTX3K-FPC3 and PTX1K: Line card may crash upon receipt of specific MPLS packet (CVE-2018-0030) https://kb.juniper.net/InfoCenter/index?page=content&id=JSA10864&cat=SIRT_1&actp=LIST Revoked Certificate when viewing mydlink IP Cameras with-in web-browsers https://securityadvisories.dlink.com/announcement/publication.aspx?name=SAP10089 Certificates stolen from Taiwanese tech-companies misused in Plead malware campaign https://www.welivesecurity.com/2018/07/09/certificates-stolen-taiwanese-tech-companies-plead-malware-campaign/ Ammyy Admin compromised with malware again; World Cup used as cover https://www.welivesecurity.com/2018/07/11/ammyy-admin-compromised-malware-world-cup-cover/ https://regmedia.co.uk/2018/07/13/burkdoll_affidavit.pdf US: Government Has Planted Spy Phones With Suspects https://www.hrw.org/news/2018/07/13/us-government-has-planted-spy-phones-suspects The 111 Million Record Pemiblanc Credential Stuffing List https://www.troyhunt.com/the-111-million-pemiblanc-credential-stuffing-list/ June’s Most Wanted Malware: Banking Trojans Up 50% Among Threat Actors https://blog.checkpoint.com/2018/07/05/junes-most-wanted-malware-banking-trojans-crypto-mining/ Did CrowdStrike really miss the mark? https://medium.com/@rsatter/did-crowdstrike-really-miss-the-mark-ecedf0e09dd7 Securit13 Patreon https://www.patreon.com/securit13
This just in! From FBI Warnings to facial recognition the world is a scary place. Don't worry, the next story will cheer you right up! Sony has some more bad news with the beginning of the end of the PS4 line. Dang, well, you'll just have to trust us, Good News is Coming in this episode! FBI Issues Router Warning The FBI recommends any owner of small office and home office routers power cycle (reboot) the devices. Foreign cyber actors have compromised hundreds of thousands of home and office routers and other networked devices worldwide. The actors used VPNFilter malware to target small office and home office routers. The malware is able to perform multiple functions, including possible information collection, device exploitation, and blocking network traffic. Orlando Police Testing Amazon's Real-Time Facial Rekognition Tech companies are trying to sell police real-time facial recognition systems, which can track and identify people as they walk down the street. As NPR reported two weeks ago, American police have generally held off, but there's new evidence that one police department — Orlando, Fla. — has decided to try it out. In a written statement, the Orlando Police Department called the Amazon facial recognition system a "pilot program" and said it "will be used in accordance with current and applicable law." Beginning Of The End For The PS4 Sony's has declared he PS4 era is entering its final stages. Speaking to investors, PlayStation boss John Kodera outlined the company's three-year roadmap and it seems console sales are not expected to be a major source of revenue going forward. This is largely due to declining sales which is, Kodera notes, typical of the usual profit- and life-cycle of consoles. It does also suggest a new console might be on its way -- likely the PS5 -- but Kodera didn't give away any specifics other than don't look for a new console before 2021. The Writing Is On The Wall For The Playstation Vita But Not For Sony Portable Gaming The Vita's shelf life is shrinking rapidly -- Sony is ending production of physical game copies and will stop offering free PlayStation Plus Vita games in 2019. It also dropped PlayStation Now support from the console last year. Rather than separating portable gaming from consoles, it's necessary to continue thinking of [portable gaming] as one method to deliver more gaming experiences and exploring what our customers want from portable," Kodera said on last Wednesday. The first part of that sentence especially suggests that mobile gaming will related in some way to the next PlayStation console (probably the PS5). Whether that portends a Nintendo Switch-style hybrid, a controller that has portable features or something else entirely is far from certain.
In today's podcast, we hear that Special Counsel Mueller has secured an indictment of twelve Russian intelligence officers for hacking during the 2016 US presidential elections. Ukraine finds VPNFilter in a water treatment facility. Comment spam returns. Speculative execution issues. Mobile-device-management tool used against smartphone users in India. The US Army directly commissions two cyber operators—congratulations, First Lieutenants. Ben Yelin from UMD CHHS on California’s consumer privacy ballot measure. Guest is Martin Hellman, professor emeritus at Stanford University and known for his work on Diffie–Hellman key exchange. His new book is A New Map for Relationships: Creating True Love at Home and Peace on the Planet.
Welcome to episode 100 of the EdTech Situation Room from July 11, 2018, where technology news meets educational analysis. This week Jason Neiffer (@techsavvyteach) and Wesley Fryer (@wfryer) discussed recent announcements from the 2018 ISTE Conference in Chicago, Microsoft's new Surface Go budget laptop, and the opening of Pandora's Box for 3D printed guns. Security articles discussed included the worst cybersecurity breaches of 2018 (so far), the importance of never using a USB from an unknown source (including North Korea summit officials), and the potential danger of discarding a used USB flash drive. Google Chrome articles included the launch of the CTL rugged Chromebook, and Neverware's "Bring Your Old Device" tour, which included an ISTE vendor hall appearance at the Google booth. On the Amazon front, Jason reminded us to look forward to Amazon Prime Day on July 16th, and to consider why Amazon continues to sell lots of tablets in an otherwise lackluster market. Twitter's recent efforts to delete fake accounts in advance of 2018 midterm elections in the United States was also highlighted. Geeks of the week included a recent episode of the Wired Educator podcast, Wes' shared podcast subscriptions from PocketCasts, The Scratch Team's "Getting Unstuck" campaign for 25 days of creative coding, and the recommendation to restart your router to defeat variants of the "VPNfilter" malware outbreak and also optimize your bandwidth performance. Please follow us on Twitter at @edtechSR for updates and for live join links during our Wednesday night shows. Please reach out to us on Twitter if you enjoy the show and let us know you're listening!
In this week’s podcast we take a look back at the first six months of the year, and review some of the biggest cyber security stories. We discuss VPNFilter, a router malware that, unusually, is able to survive the router being rebooted, as well as highlighting the tool that Symantec has released to tell users whether or not their router is infected with VPNFilter. We also look back at investigations into the Orangeworm and Inception Framework attack groups, as well as reviewing the impact of the Meltdown and Spectre bugs. Finally we look to the world of IoT and discuss smart locks, and if they’re really as smart as they claim to be…
Researchers from Cisco Talos continue to track malware they've named VPNFilter, a multi-stage infection with multiple capabilities, targeting consumer-grade routers. Craig Williams is head of Cisco Talos Outreach, and he joins us with the details. The CyberWire's Research Saturday is presented by the Hewlett Foundation Cyber Initiative. Thanks to our sponsor Enveil, closing the last gap in data security.
Researchers from Cisco Talos continue to track malware they've named VPNFilter, a multi-stage infection with multiple capabilities, targeting consumer-grade routers. Craig Williams is head of Cisco Talos Outreach, and he joins us with the details.
Recorded 6/12/18 - Special episode for two reasons! To start, we are recording one-take live from CiscoTV Studio B at Cisco Live in Orlando, FL. - which leads to the second reason, there is video of this episode in the show notes blog post! Join us as we cover the VPNFilter update Talos released June 6th and we recap the inaugural Cisco Talos Threat Research Summit. Check out the [full show notes](https://blog.talosintelligence.com/2018/06/beers-with-talos-ep31-live-from-cisco.html) *Ed. Note - This is what no content editing looks like*
Android devices are everywhere - not just smartphones, but smart TVs, DVRs, streaming TV boxes and tablets. And many of these devices a shipping with a wide open backdoor for hackers. The Android debug port is supposed to only be used during software development, but many manufacturers are shipping popular Android-based products with this debug interface wide open. Hackers can easily use this interface to hack these devices, often from anywhere on the planet. In other news, California is trying to follow Vermont’s lead by introducing consumer data protection regulations, but many huge tech companies are trying desperately to defeat the measure. I’ll update you on the VPNFilter malware that is affecting more and more of our home WiFi routers, yet another critical Adobe Flash bug, and a $99 “unbreakable” smart padlock that can be hacked in under two seconds. For Further Insight: Locking down your home routers: https://firewallsdontstopdragons.com/the-s-in-iot-is-for-security/ Help me to help you! Visit: https://patreon.com/FirewallsDontStopDragons
A judge cleared the way for AT&T and Time Warner to merge, Apple plans to reinforce its iPhone security, Microsoft made a bunch of announcements — but hey, here comes the annual E3 event to bring in the fun. El Kaiser and J.D. sort through it all before a discussion about the VPNFilter malware — you know, that one the FBI was warning about the other week — and how to protect your router from it. Spin up PTJ 276 to hear it all!
In the past few weeks, the nerd news has been full of network security alerts and discussions about issues potentially lurking on every network, especially smaller ones. These are not the things we normally worry about either. You usually think Windows, Office, Adobe, etc patches are the main alerts to worry about on your network. These are new alerts that could be in every network you use including home, public wifi, and work. Per usual, we are here to explain them as best we can - in English. Tech folks you should listen up to what we expect you to be doing for our listeners who rely on you, too. For more information go to HelpMeWithHIPAA.com/158
The United States is now owner to the most powerful supercomputer in the world - Summit. The computer has the ability to compute 20 quadrillion calculations in just one second and is optimized for artificial intelligence specific applications. The gig economy is changing the way people lives their lives, travel, and earn an income. A couple is using Rover and Taskrabbit to earn a living while traveling around the in their RV. In 2015, a young teen struggling with depression and attempted suicides created an app to serve as a resource for others battling the same. Three years later, Amanda Southworth is changing the app space with her purposefully built apps. Finally, the VPNFilter malware infection has moved across international borders and has infected 500,000 devices.
A caller wants an opinion on whether a Mac mini or Windows PC is better for a new computer gift. A caller has problems with his monitor unexpectedly going to sleep. A caller has questions about a new router malware called VPNFilter. The malware problem is worse than once thought and may require a factory reset (not just a reboot) to clear the malware from the router. We also explain the difference between 5GHz and 2.4GHz wireless connections. How to rid your Chrome web browser of unwanted pop-ups. A caller who has problems with music stuttering when played from USB thumb drives seeks answers. A Mac user seeks assistance moving his photos from an external drive to a new Mac, while keeping dates intact. Facebook caught sharing user data with cell phone manufacturers. Plus, Facebook posts of 14 million users that were thought to be shared only with a limited group were actually public.
Microsoft puts a data center under the ocean, and they might be onto something. The Zip Slip vulnerability sneaks into your software, and VPNFilter turns out to be more complicated than first known. Plus the mass exploit of Drupalgeddon2 continues, we br
Microsoft puts a data center under the ocean, and they might be onto something. The Zip Slip vulnerability sneaks into your software, and VPNFilter turns out to be more complicated than first known. Plus the mass exploit of Drupalgeddon2 continues, we br
Microsoft puts a data center under the ocean, and they might be onto something. The Zip Slip vulnerability sneaks into your software, and VPNFilter turns out to be more complicated than first known. Plus the mass exploit of Drupalgeddon2 continues, we br
Tässä Kyberykset-jaksossa puhumme koneoppimisesta ja tekoälystä. Vieraana studiossa on Matti Aksela. Matilla on yli 20 vuoden kokemus data-analytiikasta, oppivista algoritmeista ja tekoälystä. Jaksossa Matti kertoo mm. tekoälyn ja koneoppimisen eroista, koneälyn hyödyistä tietoturvamaailmassa sekä paljastaa kumpi on parempi kuski, itseohjautuva auto vai hän itse. Ajankohtaisista aiheista juontajakaksikkomme pui tällä kertaa Efail-haavoittuvuuksia sekä VPNFilter-haittaohjelmakampanjaa.
Iron Group said to use Hacking Team source code to build a backdoor. Operation Prowli both cryptojacks and sells traffic. Fancy Bear may be getting noisier. VPNFilter has a more extensive set of victim devices than previously believed. ZTE pays a billion dollar fine. CloudPets are oversharing via an unsecured server. The US Senate wants answers from both Facebook and Google about their user data sharing with Chinese companies. Daniel Prince from Lancaster University on the security of Industrial Control Systems. Guests are Kyle Lady and Olabode Anise from Duo Security covering their annual report on authentication.
Welcome to the Trusted Security Podcast – a podcast dedicated to bringing the latest news on information security and the industry. This episode features the following members: Geoff Walton, Rob Simon, Justin Bollinger, Scott White. Show links: https://blog.talosintelligence.com/2018/05/VPNFilter.html https://www.nytimes.com/2018/06/04/technology/microsoft-github-cloud-computing.html https://www.reddit.com/r/jailbreak/comments/8owp2j/tutorial_ios_1131_kernel_exploit_explanation https://www.techworld.com.au/article/641555/oracle-plans-dump-risky-java-serialization http://www.theregister.co.uk/2018/06/05/zip_slip_bug_archives Tool Time Notes: https://github.com/sensepost/objection
Show notes – http://heytechiesshow.com/shows/hts128/ Michael and Bruce discuss VPNFilter router list | Worse than we thought | YouTube found to be liable | EU hitting Google again | Last munchkin died | WWDC – Apple.com | Conan show on a new Apple feature | Amazon to come to B’ham | Teamsters to strike | Notch […]
Welcome to episode 97 of the EdTech Situation Room from June 6, 2018, where technology news meets educational analysis. This week Jason Neiffer (@techsavvyteach) and Wesley Fryer (@wfryer) welcomed special guest Michael J. Crawford (@mjcraw). Topics discussed included Mary Meeker’s essential 2018 Internet Trends report and new microcontrols for iOS announced at WWDC 2018 available to developers to potentially exercise more control over user screentime. The value of limiting the length of shared video as well as the availability of those videos for others to watch and interact with them was also discussed. EdSpace Live (www.edspace.live) is Michael's current product focusing on these questions and potentials. Instagram's announced launch of a long form video platform to compete with YouTube, and Microsoft's recently released book "Transforming Education" challenging K12 school leaders to be more thoughtful, deliberate, and intentional in their deployment of technologies in the classroom were also highlighted. Michael shared a shout out to Angela Maiers' article "Tactical Serendipity" as it relates to the value of teachers being connected and collaborating with each other. New revelations about the VPNFilter router vulnerability which potentially affects half a million routers worldwide, and the FBI is recommendation to reboot your router, was also discussed. Jason provided commentary about a recent article highlighting the privacy differences between the FireFox and Chrome browsers, and Wes recommended an article giving specific instructions about changing default privacy settings on social networks including Facebook. Check out all our links on http://edtechsr.com/links for these and all other referenced resources from the show. Please follow us on Twitter @edtechSR for updates and remember to subscribe with PocketCasts, Stitcher, on YouTube, or wherever you prefer to aggregate your favorite podcasts!
Microsoft puts a data center under the ocean, and they might be onto something. The Zip Slip vulnerability sneaks into your software, and VPNFilter turns out to be more complicated than first known. Plus the mass exploit of Drupalgeddon2 continues, we break down why, a batch of questions, and more.
EP41: The Pyramid of DysfunctionThanks for listening to the Junto Show!The “Junto” is a club Benjamin Franklin founded way back when America was Great. The purpose of the Junto was to debate questions of morals, politics, and natural philosophy. Our show’s not quite that stuffy, but here and there we stumble upon something profound between the geeky jokes.The Junto Show is three friends, one Black, one White, and one Asian who get together and discuss the news of the day, leadership, pop culture, and whatever else comes to mind. We bring our unique perspectives to the table and hash it all out.Real fans donate! https://www.patreon.com/juntoshowIn today’s show we Cover the following topics: • Hot Take News (00:01:50) ⁃ VPNFilter malware is infecting millions of routers ⁃ Elon Musk has been going crazy on twitter ⁃ Is having a very public facing CEO a good thing? ⁃ Amazon is working on real time facial recognition technology. ⁃ Amazon is rolling out the tech in Oregon and Orlando ⁃ Police Body Cams to Scan faces in real time ⁃ USA has the lowest birth rate in decades ⁃ Amazon echo device sends private recording to random person ⁃ • Captain’s Ready Room (00:16:00) ⁃ Patrick Leocioni’s pyramid of dysfunction ⁃ behavior profiling Show some love: https://www.patreon.com/juntoshowUseful links: ⁃ Five Dysfunctions of a team ⁃ https://www.tablegroup.com/books/dysfunctions ⁃ Amazon echo device sends private recording to random person ⁃ https://mashable.com/2018/05/25/amazon-echo-private-audio/#mlkgbxn06Oq4
VPNFilter-Malware nimmt weitere Geräte ins Visier Die Malware VPNFilter hat es auf Netzwerkgeräte von weiteren Herstellern abgesehen und will diese infizieren, um sie in ein stetig wachsendes Botnetz aufzunehmen. Das führen Sicherheitsforscher von Cisco Talos aus. Darunter sind beispielsweise Geräte von Asus, D-Link und Huawei. Die Sicherheitsforscher entdeckten außerdem, dass Angreifer in einer Man-in-the-Middle-Position Endpoints attackieren könnten. Anschließend gilt ein Netzwerk als infiltriert. Facebook plant exklusives kostenloses Nachrichtenangebot mit US-Medien Facebook führt eigene Nachrichtenshows ein, die unter anderem in Zusammenarbeit mit CNN, Fox News, ABC News und Univision produziert werden sollen. Die Sendungen mit exklusivem Material sollen im Spätsommer auf der Video-on-Demand-Plattform Facebook Watch abrufbar sein. Facebook will mit dem neuen Nachrichtenangebot vertrauenswürdige Inhalte liefern, um dadurch Vorwürfen zu begegnen, das soziale Netzwerk würde Falschmeldungen verbreiten. Mehr als ein Drittel deutscher Firmen sind digitale Nachzügler Mehr als jedes dritte deutsche Unternehmen hat einer Studie zufolge Nachholbedarf in Sachen Digitalisierung. In den USA sei die Umstellung der Geschäftsprozesse weiter vorangeschritten, heißt es in einer Untersuchung der weltweit tätigen US-Unternehmensberatung Boston Consulting Group. Demnach sind 36 Prozent der deutschen Firmen Nachzügler in der Digitalisierung, lediglich ein Fünftel gelten als Vorreiter. In den Vereinigten Staaten gebe es mit 25 Prozent mehr Vorreiter und mit 31 Prozent etwas weniger Unternehmen, die hinterherhinken. Apple holt Karten und Musik ins Web Apple gibt sich mit seinen Diensten künftig offener fürs Web. Auf der Entwicklerkonferenz WWDC 2018 hat der Konzern zwei neue JavaScript-Frameworks vorgestellt, mit der sich Apple-Services in die eigene Seite integrieren lassen. Er greift damit zwei aktuelle Marktbeherrscher an: Google und Spotify. Das neue MapKit JS erlaubt es künftig, Apple-Karten in die eigene Webpräsenz einzubinden. Ebenfalls neu fürs Web ist MusicKit, ein Framework für Apple Music. Damit ist es möglich, Alben und einzelne Songs in eine Seite einzubinden. Diese und alle weiteren aktuellen Nachrichten finden Sie auf heise.de
A followup episode from last week's Episode 247, the FBI has released an alert that urges all home and small offices to reboot their routers. This is in response to the wide spread of the VPNFilter malware. The article I referenced is from CSOOnline and has specific routers that are vulnerable but every router should be rebooted just to be safe. Be aware, be safe. ------------------------------------ Website - https://www.binaryblogger.com Podcast Page - http://securityinfive.libsyn.com Podcast RSS - http://securityinfive.libsyn.com/rss Twitter @binaryblogger - https://www.twitter.com/binaryblogger iTunes - https://itunes.apple.com/us/podcast/security-in-five-podcast/id1247135894?mt=2 YouTube - https://www.youtube.com/binaryblogger TuneIn Radio - Security In Five Channel Spotify - Security In Five Podcast Page Email - contactme@binaryblogger.com
In today's podcast we hear that Microsoft is buying GitHub for $7.5 billion. VPNFilter seeks to reestablish itself. Financial Trojans are up and ransomware is down, but don't count the ransomware out, not yet. A get-decrypted-for-free card to Russian ransomware victims. The children of Mirai trouble an unhappy world. USA Really may be the latest incarnation of the Internet Research Agency, complete with rabid Florida squirrels, Wisconsin blood-suckers, and advice on Louisiana's secession. Malek Ben Salem from Accenture Labs on using keyboard biometrics to detect mental disorders.
Routers and Router Problems and Amazon Reviews. Craig discusses some of the issues that have arisen from people trying to find the router that he recommended. These and more tech tips, news, and updates visit - CraigPeterson.com --- Transcript: : [00:00:01] Hey guys. Craig Peterson here. I'm actually in Vermont today at a kind of really cool little festival that they have got going on locally. I had to mention to those of you who listened to my radio show today and those that texted me recently about the problem with the routers that the FBI has been talking about. With these types of router problems, I've been recommending routers to people and I've actually had friends of mine have them installed for a couple of years now. Some of you are seeing that there are some issues that some people have had when they're looking at Amazon reviews. Now that's always a problem looking at Amazon and looking at the reviews. You don't know if this is a competitor who's writing it, you don't know the person who's running it really had no idea what they were doing and because they didn't know what they were doing ultimately it wasn't going to work for them correctly. But then nothing was going to work for them. So, you know I get it, I understand, it can get frustrating for you. So, what we're going to do is put together some more in-depth information. You'll find some on my Web site already if you texted me, we're now sending out free accounts for our membership site. We’re going to be using that to distribute information to our insiders the insiders like Craig Peterson dot com and I'm going to do some more research. And I want to put a little form up there so that we can talk. : [00:01:21] I know a lot of us who listen to the show and myself included aren't Facebook fans, in fact, many people don't even have a Facebook account because of some of the crap they've been pulling. So rather than trying to conform to a Facebook group or something else, we're going to end up just putting it together in our own Web site. So, I have a little insider's thing and I'm not charging for it. We will see if how that all goes. So anyhow, I'm going to be putting together some stuff this week on the different types of routers. Until then make sure you reboot your router at least weekly. And I'm trying to see if we can get some form of a commercial router available for listeners at a decent price. Decent prices where the problem comes in, because I know a lot of people have trouble coming up with the 80 to 100 plus dollars that you need in order to buy one of these even very low-end routers that you might get over a Wal-Mart or something. Anyhow, I'll keep you up to date. I'm going to be working on this while I'm out of town a little bit so, give me a bit of time and I definitely will let you know when I can let this one drop. Take care. --- More stories and tech updates at: www.craigpeterson.com Don't miss an episode from Craig. Subscribe and give us a rating: www.craigpeterson.com/itunes Message Input: Message #techtalk Follow me on Twitter for the latest in tech at: www.twitter.com/craigpeterson For questions, call or text: 855-385-5553
VPNFilter router malware (persistent, reset router to clear, FBI warning), 4K vs UHD TV defined (4K has 4096 horizontal pixels and 2160 vertical lines, UHD has 3480 horizontal pixels and 2160 vertical lines), impact of quantum computing on Internet security (does not look good, 2025 expected deployment), negotiating with ISPs after cordcutting (try to be treated as a new customer), Profiles in IT (Bradford Parkinson, one of the fathers of GPS), Electromagnetic Drive does not work (NASA got it wrong, drive violates laws of physics), Amazon bans shoppers who return too many items, Samsung ordered to pay Apple over %500M for patent infringement, DOJ investigates cryptocurrency manipulation (looking at pump and dump), skills that AI will not make obsolete (higher cognitive skills, social and emotional skills, technological skills), mining malware is dominant cybersecurity threat (Coinhive and Crytoloot are top two violators), Stich Fix uses AI to amke clothes buying easy for consumer (fashion industry beware), Twitter CEO does not have laptop (uses mindfulness and awareness to be more productive), and General Data Protection Regulation goes into effect in EU (companies scramble to comply). This show originally aired on Saturday, June 2, 2018, at 9:00 AM EST on WFED (1500 AM).
VPNFilter router malware (persistent, reset router to clear, FBI warning), 4K vs UHD TV defined (4K has 4096 horizontal pixels and 2160 vertical lines, UHD has 3480 horizontal pixels and 2160 vertical lines), impact of quantum computing on Internet security (does not look good, 2025 expected deployment), negotiating with ISPs after cordcutting (try to be treated as a new customer), Profiles in IT (Bradford Parkinson, one of the fathers of GPS), Electromagnetic Drive does not work (NASA got it wrong, drive violates laws of physics), Amazon bans shoppers who return too many items, Samsung ordered to pay Apple over %500M for patent infringement, DOJ investigates cryptocurrency manipulation (looking at pump and dump), skills that AI will not make obsolete (higher cognitive skills, social and emotional skills, technological skills), mining malware is dominant cybersecurity threat (Coinhive and Crytoloot are top two violators), Stich Fix uses AI to amke clothes buying easy for consumer (fashion industry beware), Twitter CEO does not have laptop (uses mindfulness and awareness to be more productive), and General Data Protection Regulation goes into effect in EU (companies scramble to comply). This show originally aired on Saturday, June 2, 2018, at 9:00 AM EST on WFED (1500 AM).
The rumors you have heard about the big vulnerability in home/small business routers are not RUMORS they are true. Craig delves into the problem and tells you how to fix it. Cars have their own networks and if they get their wires crossed things can go bad. Craig tells you today about a problem with the Firmware in Fiat/Chrysler cars. Tech Jobs have not been hugely attractive to women except now there are a few. Listen as Craig explains what the Pink Collar and Gig Economy are and why Women are attracted to them. Today Craig talks about some of the Pros and Cons to Faster Wireless and dispells rumors too. Craig has a new membership site (Yes, it is free you just have to sign up) IT will have all his special reports that he puts out and you will be the first to get them. These and more tech tips, news, and updates visit - CraigPeterson.com --- Transcript: : [00:00:00] Hey welcome to tech talk with Craig Peters son. We are going to be talking about this FBI home routers small business router vulnerability. We had some more information that went out this week hopefully you got it. We'll be glad to send it to you if you tell me what the router is you have if you have any questions about it let me know. : [00:00:24] Eight, Five, Five, Three, Eight, Five, Fifty-five, fifty-three. : [00:00:34] We'll be talking a little bit more about that today. A massive Chrysler recall. Do not use your cruise control. We'll be talking about social media. It's a pink collar job now, really kind of interesting. And I got to talk about something that I've been doing for a little while here now and it has just dramatically improved my health. And you know what. It hasn't cost me one thim dime. One thin dime. Cryptocurrency addiction, apparently now it is a disease. We'll be talking about that and 5G wireless service. You know I just switched my carriers for my business cell phones and we moved all of them over. I was looking at the different offerings for the different carriers so we'll be talking about 5G what is it. When will it be here. And why are there health concerns all of that and more stick around. Here we go. : [00:01:35] On the front lines and ahead of the trends in business and consumer technology speaking with the top minds and creators behind the products and ideas that help to drive our everyday lives. : [00:01:45] Dean Kamen is joining us now. He's the inventor of the Segway and the founder of us first Steve Forbes I appreciate what you do with Forbes magazine for all these years it's one of my first go to places or talk right now with the guys and gals behind Siri. We're joined right now by the director of Kindle technology. We're joined right now by the CEO of E-bates Kevin Johnson on air for more than 15 years. : [00:02:10] Over 20 million podcasts downloads. This is tech talk with Craig Peterson : [00:02:20] Right here we go it has been a very very busy week for us as you can imagine here at my company putting all of the stuff together we have been responding to everyone who sent us a text about their home and small business wireless routers. We have had a lot of questions we've answered them. We have sent out some special invitations to people who asked to put them into our new membership site. We’ve got an insider thing. I tried to do in fact I did on Facebook and we've had few hundred people sign up but this thing with Facebook did not work for this audience. You probably know I have a lot of clients and we have our training site and it's a membership site and we've put together something that that has all of my special reports. And as we go forward we'll be putting more of them in. So for those of you that ask that texted me we checked with you. We sent you and hopefully by now you have your Log-ins to my insider site and that insider site log in you're going to get all of the information here about the small home small business routers. The problems that the FBI is warning about right now. We have a few special reports and therefore you going into details about how to do passwords and a few others about hackers and what they're doing and what the state of the art day has if you will in the whole hacking world. : [00:03:55] So things to look out for. So you should have gotten your Log-ins to that site. It's a special password and it's your password it's your account. And we'll be keeping you up to date. We're definitely going to keep doing this. We had issues with Facebook and part of the reason we had the Facebook issues was a lot of us myself included just don't trust Facebook. Right. So, what are you going to do? In our case, we said well forget about it. We shut down that Facebook group. And now we've got our insider site where we're using that to distribute all of our special reports and other things that you need to know. So again, if you have questions you got to reach out to me and you frankly you should have some questions because there is a major hack I guess is the best way to put it going on right now and it appears to be Russia that's doing this. They have some software called VPNFilter. Now this is a really interesting type of attack because what they're doing is they are going after these low-end routers so the types of devices that you would get at the local store you know whether it's staples or Wal-Mart or even a lot of them that you might buy online at Amazon but made by companies like Micro-tik, Linksys, Netgear, and T.P-link. : [00:05:25] Right. Who hasn't bought equipment from them over the years, as well as some of these network attached storage devices. And they are crazy vulnerable. So, what these guys from Russia have been doing is they've been using some hacks to get into your router. They change the software on your router and then they use another stage of the attack to take all of your traffic and send it all off to Russia. So, think about that all of your traffic their filter. : [00:05:59] They're looking for bank account information, they're looking for information that's going to help them steal your money credit card information, just kind of everything and anything. This is huge because according to the FBI we've got more than half a million networks that have been exposed to this right now that are hacked. OK. So again, if you contacted me you've got all the information. So just go through it. I list the model numbers that are known to be bad. But the bottom line is for now anyways just reset that route or you're going to have to power recycle it at least once a week. And there's other things you should do too. I'm not going to bore you with those here on the air. But there's other things you should do. All of that is there on the membership site. We go into some good detail on it and you can always ask questions. You know we're all we're here to help right. That's what I do. That's what my team helps to do. And you might want to do a factory reset on some of these devices and everything. : [00:07:07] But if you still have a question you can reach out to me Eight, Five, Five, Three, Eight, Five, Fifty-five, fifty-three. : [00:07:16] That's my text number. I, my wife and a couple of people my team do monitor as well so we can get back to you with any questions. Now if you are a small business really upgrade OK get rid of this junk. It's time to move on. We've got such a major, major, problem and it's continual right it seems like every week there's a new hack and I'm really happy to say that my clients haven't been hacked in years and years and years and decades, in fact, that's because I'm using the right stuff at the right time the right way OK. So, there are ways to keep the bad guys out. You know they're like a railroad train they're just plowing through everything we've got to derail them. And for that too there is there's more information in the membership site that I gave some free accounts out to this week. But if you need help you can apply and you know we're letting people in that really need help that that target really can't do this themselves. : [00:08:28] So anyhow Eight, Five, Five, Three, Eight, Five, Fifty-five, fifty-three. : [00:08:33] Can you believe tech talk is number one in the market with this guy as host. Number one rating based on direct mail polls. There was another September 1995. Not all of those cards have been returned. : [00:08:46] I got to think Dan again for that, it is so cool he did that for me a decade ago. I guess I should probably update some stuff but you know I spend too much time on other things anyhow. Let's move on to the next article and this has to do with software. In fact, it's specifically some software known as firmware and it's specific to Fiat Chrysler. : [00:09:13] They sent out a warning about a week ago telling people that if you have one of these about five million Jeeps, Dodges, Chryslers, or Rams Do not use your cruise control. And remember that's how we started out today is a terrible way to start the show. Fiat Chrysler is saying that this condition where the cruise control will not release in other words you're driving down the road. : [00:09:44] You got it set for 65 miles an hour because that's a speed limit and you need to stop. It will not release the cruise control you can tap the brake which would normally release it. That won't stop your cruise control. You can go ahead and hit the button to cancel cruise control. Well that will not stop your cruise control. And they're saying that this condition can occur if the cruise control accelerates at the same time there's a short in the system. Now the good news is if you forget to not use your cruise control on your Kreisler if you forget that the brakes are designed to be strong enough to stop the vehicle even if the engine is engaged in the cruise control is on. So the trick here is to step on the brakes as hard as you can. And then once you get the car down to basically stopped put it in park and putting it in park will disengage the cruise control. Now you don't want to put your car in park when you're traveling down the highway that will be bad. But it is a reasonable thing here to do this push on those brakes. Give it your all get that car stop. Put it in park and then you'll be OK. Of course, you can also kill the engine once you're in parked but that cruise control button will not stop the cruise control tapping the brakes will not stop the cruise control either. Now they found this problem when they were testing : [00:11:20] The vehicles computer networks. Now this is really interesting, and this is where it becomes a technology problem. The Cars today have their own networks so using something called a can box and basically everything in the car is all tied together and that has created a number of scenarios that frankly I would consider to be a nightmare. : [00:11:46] Now there was a complaint filed with the National Highway Traffic Safety Administration a guy in Kansas said that a 2017 Dodge Journey SUV rental vehicle was going down the road about 70 miles an hour with cruise control on when the windshield wipers came on by themselves and the throttle lock up. Now the owner was not identified in the complaint database, but they said that the cruise control button would not disengage by tapping the brakes or turning off the button and the driver was able to slam on the brakes and get the SUV to the side of the road. It was still running at an engine speed to support the 70 miles an hour and fighting the brakes. : [00:12:30] Engine stop button. By the way would not work as a member nowadays with the new ones. You're not turning the key and pulling it out of the ignition. In fact, I had to send a note off to my mom because of some problems that have been reported with Honda's that if you don't turn off the engine and if that key fob that you have is close enough to the car that you're just going to keep running and in some cases it doesn't even have to be close to the car depending on the manufacturer and model. And so people are dying and they're dying because of carbon monoxide in the home and the engines running the cars so quiet they don't hear the car they don't realize that an elderly person who's used to turning off the ignition. Right. It's not going to work. So this complaint said that the driver tried to kill the engine and that button did not work. Engine shift or excuse me stop on. Isn't that crazy. So, he put it into a park and the brakes smoked significantly according to the report. So, there's 15 Jeep Dodge Chrysler and ram models from six model years with gasoline engines automatic transmission and models in Canada Mexico and other countries are also affected. But there are you know Chrysler trying to figure out which ones of which models the toll roads the National Highway Traffic Safety Administration urged drivers not to use cruise control on your feet at Chrysler until repairs are made or they know exactly which model are affected and they've got a pretty good idea right now. And you'll find this article up on my Web site. If you want to find out a little bit more about that case now we're going to move into pink collar jobs. I found this article really interesting. : [00:14:30] Now here's what's happening. You know there's a lot of jobs that are mostly men right is dominated by men and those jobs tend to be more dangerous jobs more physical jobs. And you know I get that right does not make sense to you. It certainly makes sense to me. : [00:14:47] So what should you do if you are looking for a job and you're out there or you want to hire someone. It's interesting because this article came from a hot little potato is talking about this and saying that companies hiring for technical positions often slip language into the job postings that appeal to men. They'll say things like looking for ninjas for people who are trying or are willing to obliterate the competition that are capable of dominating. Right. So those words are all kind of male words. Right. And they are going to attract more men than women. But it's interesting to note that there is one job in the digital economy that is falling squarely and predominantly to women. And this is a position that's often overlooked but it draws on marketing and editorial skills right. The ability to write. And guess what that means. That means the social media. Right. That kind of all fits together. And women tend to be better communicators than men and they seem to be gravitating toward this type of a job. : [00:15:58] So it's kind of interesting because looking at the job postings you'll discover the same bias in the language in reverse this these job descriptions here for this job have a bias towards women. So, here's an example. : [00:16:20] Social Media Managers are quote “The behind the scenes screens labor involved in Media and Technology is central to propelling our digital economy forward.” Isn't that interesting. Between 70-80 percent. This is according to Brooke Duffy's she the assistant professor of communications at Cornell. Between 70 and 80 percent of social media, workers self-identify as women on the salary compilation site pay scale and the careers been referred to as the pink ghetto. I don't get the ghetto part because it certainly does pay well and usually you don't get ghettos as paying well. But anyway. Any rate. An interesting article published by Duffy and University of Oxford and in new media and society it kind of goes on and on. They analyzed all these job postings etc. payscale the average paper social media specialist is 41 grand for staff jobs and there, of course, are a lot of contract jobs out there doing this sort of work. It's really quite cool frankly when you get right down to it. I like it. : [00:17:29] Bottom line is kind of nice to see the jobs out there for women that they're enjoying they're appreciating and they're making some decent money at. And it's something that you can do at home. Whether you're a man or woman I don't know if you've checked out some of the sites I hire people from a few different places online but the worker is one of course. Fiverr is a very popular site one I've used before where you can be hired to write one press release for instance and take as much work as you want to so have a look at that as well. That's called the gig economy and women have been doing very well in that gig economy out there. OK let's talk a little bit about. This is the need because wireless is going to get a whole lot faster. In fact, many people may just end up getting rid of their Wi-Fi networks. I would not recommend that for businesses in general but for homes. My goodness. The new 5G wireless that is starting to roll out already can be up to 100 times faster than your current data speeds on your LTE device which is typically called 4G your 4G devices that are out there now. What's concerning about this too many many people is that the wireless community you know all of these wireless vendors horizon and Sprint and T-Mobile etc. have been in a bit of a race to roll out this 5G service and we're not sure about you know the pros and cons of it. I remember I was the keynote speaker at an annual meeting for a bank here recently and in talking with them. : [00:19:19] Afterwards a lady came up and said So, what do you think about some of the problems that are being caused by the wireless networks in our homes and I said you know I'm I have an advanced class amateur radio license I just had to renew that by the way. It's good for 10 years. But anyways haven't the vans cost him license and I know of a lot of studies that have been done about this type of radiation. Now people get concerned right. Hold on. Yes it is radiation. You are getting radiation from your cell phone but it is not ionizing radiation is not the type of radiation you get from a nuclear fuel source that can kill you. Right. This does not destroy your cells. Now some people are concerned because of the resonant frequency of water two point four gigahertz. Right. All of that sort of stuff I get it I get it. But I was talking to her and I said hey you know bottom line in the ham community we've been studying this for what 100 years now and there is a slight increase in cancer amongst Ham’s but it's also very hard. To normalize for the Ham’s that actually make things they make their own transmitters. They are smoldering. They are at boards right. So, they're exposed to all kinds of harsh chemicals. Now how do you normalize for that. I don't know. But basically, they're saying yeah there is no direct correlation between our cell phones and various types of cancers. And then she went on to tell me how she had some form of brain cancer and they were attributed to her using her cell phone a lot. : [00:21:06] You know it may be that case might be true. Typically, that's not a problem but when we're talking about the 5G wireless one of the major differences between 5G and the 4G LTE we're using today is that 5G technology needs more transmitter sites. So they've got all of these transmitter sites now in the cities. You've got to think about what they're going to have to do. Basically, they're going to have to install new antennas roughly equal to the total number of cell towers built over the past 30 years. So, in order to support 5G which requires you to be very, very, close very close to the antenna. How do you get close to the antenna while you typically just move the antenna close to you. Right. And tada, you're close to the antenna so moving the antenna closer to you means need a lot more. And think about the last 30 years. All of the cell towers that have gone up. It's almost 2020. So that means since about 1990 or the late 80s basically every cell tower that's ever gone up. They're going to have to do that again. 300000 new antennas and there's a lot of outrage or some alarm in some neighborhoods as antennas are going up around homes now. So interesting problem. We'll see what happens if 5G isn't in your neighborhood yet. It will be soon. So, keep an eye out for those increased data speeds. I got to mention this again for those who are just joining us on the radio. : [00:22:58] The FBI router warning. Yes. This is real. No this is not a hoax. Yes, there are some things you can do about it. If you texted me this week I send to a lot of detail and to do I sent you a lot of detail on all of the individual devices that we know are vulnerable that are been hacked to right that are being hacked by apparently the Russians they are using this hack to take all of your data and send it back to Russia so that they can gather things like your bank account information. Right. That's what they really want and more information and also use your device to launch attacks against other people. Now that frankly that's a really, really, big deal in my book. How would you feel if you knew that your small business router or a home router was used to attack somebody and you know it was used for ransomware, or it was used for something even worse. We know that al Qaeda and ISIS have used compromised systems to spread their information to show videos of Americans being beheaded. Imagine that being on your or your home machine and having the FBI show up at your home asking about what happened and were there to check it out. If you don't have the information I can send it to you. I have some stuff up at my Web site. There is a lot more for those people who are in my insider membership site. It's all free. I opened it up to listeners who need access to this information. : [00:24:41] But you have to text me text me directly Eight, Five, Five, Three, Eight, Five, Fifty-five, fifty-three. : [00:24:48] I'm not going to bombard you with texts. OK. We're making this simple Eight, Five, Five, Three, Eight, Five, Fifty-five, fifty-three. I'll be glad to send you the information not just about the FBI warning but answer questions about your router and how you know during the week. Visit me online Craig Peterson dot com. You can follow me on Facebook or Twitter and all of today's articles you should see in the e-mail newsletter that you got this morning. If you're not on my newsletter list, make sure you sign up. Craig Peterson dot com. Have a great week. Talk to you later. Bye bye. --- Related articles: Major Home/Small Business Router Vulnerability The FBI Router Warning - What To Do Fiat Chrysler warns 4.8M Jeep, Dodge, Chrysler and Ram owners to not use cruise control How Social Media Became a Pink Collar Job How to renew your body: Fasting and autophagy Hospital launches rehab clinic to treat cryptocurrency addiction Here’s Mary Meeker’s essential 2018 Internet Trends report More stories and tech updates at: www.craigpeterson.com Don't miss an episode from Craig. Subscribe and give us a rating: www.craigpeterson.com/itunes Message Input: Message #techtalk Follow me on Twitter for the latest in tech at: www.twitter.com/craigpeterson For questions, call or text: 855-385-5553
We explain how the much hyped VPNFilter malware actually works, and its rather surprising sophistication. Plus a clear break down of the recent Kubernetes news, how a 40 year old tel-co protocol is being abused today, and a Git vulnerability you should k
Flashpoint Editorial Director Mike Mimoso talks to Craig Williams, Director Talos Outreach for Cisco Talos, about the VPNFilter attacks. This state-sponsored attack infected more than 500,000 routers and network-attached storage devices in 54 countries, largely setting the stage for future targeted attacks primarily in Ukraine. The FBI, along with Cisco Talos' disclosure, put a significant dent in the VPNFilter operation by seizing a command-and-control domain associated with the attack. But infected devices are not out of the woods, and need to be updated, or at a minimum, rebooted.
We explain how the much hyped VPNFilter malware actually works, and its rather surprising sophistication. Plus a clear break down of the recent Kubernetes news, how a 40 year old tel-co protocol is being abused today, and a Git vulnerability you should know about.
We explain how the much hyped VPNFilter malware actually works, and its rather surprising sophistication. Plus a clear break down of the recent Kubernetes news, how a 40 year old tel-co protocol is being abused today, and a Git vulnerability you should k
We explain how the much hyped VPNFilter malware actually works, and its rather surprising sophistication. Plus a clear break down of the recent Kubernetes news, how a 40 year old tel-co protocol is being abused today, and a Git vulnerability you should k
2 amigos se reúnen para hablar de su pasión por la tecnología, las herramientas de Apple, el proximo WWDC, VPNFilter, iOS 11.4, y algunos trucos para macOS y para iOS
5/31/18 Speculative Execution; Pre-installed Malware; VPNFilter; Internet Weather | AT&T ThreatTraq
El malware VPNfilter detectado primero por CISCO Talos ha infectado al menos 500.000 routers y está dando mucho que hablar. Los investigadores atribuyen la creación de este virus a los grupos de cibercriminales APT28 y Fancy Bears, vinculado con el "hackeo" en 2016 de las pruebas de doping de las deportistas Simone Biles y las hermanas Williams. Varias agencias de seguridad online y después el FBI están recomendado el reinicio de este tipo de equipos, con especial hincapié en los de pequeñas empresas y los domésticos, aunque son conscientes de que este malware es difícil de detectar debido a su nivel de cifrado. "El FBI recomienda que cualquier propietario de pequeños enrutadores y enrutadores de oficinas domésticas apague (reinicie) los dispositivos", reza en la misiva, que se ha extendido como la pólvora por todo internet. Pero, ¿es posible deshacerse de un virus solo con reiniciar el equipo? Los expertos contradicen al FBI acerca de los más de 500.000 routers infectados por VPNFilter. En opinión de Lorenzo Martínez, especializado en seguridad informática y fundador de Securizame, está infección "es persistente", por lo que "aunque lo reinicies no lograrás evitar tener comprometido el router". "No me cuadra mucho que el FBI dé esa solución. Supongo que es por aquellos routers que hayan sido comprometidos por una versión de ese malware o por otras variantes de este, que no lograban persistencia", sostiene en declaraciones a ABC. Sin embargo, puede darse el caso que el dispositivo de Red no haya sido comprometido de manera persistente, un supuesto que se produce "cuando el malware que se instala resiste a los reinicios debido a que se copia en alguna parte del router, al arranque de este. Si se da la suerte que no llega a pasar esto, el router al arrancar no está comprometido, aunque puede darse el caso que no se haya instalado una actualización del software que solucione la vulnerabilidad y, en este caso el simple hecho de estar expuesto a Internet podrá ser comprometido nuevamente. De hecho, a pesar de los titulares, el FBI no especificaba en su comunicado que reiniciar el dispositivo sea una medida efectiva para acabar con este malware. Solo indicaba que reiniciar "interrumpiría temporalmente y haría más sencillo identificar los dispositivos cifrados. Se recomienda a los propietarios que consideren la desactivación de la configuración de administración remota en los dispositivos y la seguridad con contraseñas seguras y cifrado cuando esté habilitado", proseguía el mensaje, recomendando también que se actualizase el dispositivo con las últimas actualizaciones disponibles, un hecho que suele olvidarse porque no se suele operar directamente con este equipo.
Tom Hollingsworth and Rich Stroffolino discuss the VPNFilter malware, Vermont's regulation of data brokers, how cloud CAPEX is going for Oracle and IBM, and Nvidia's updated cloud server infrastructure.
In today's podcast we hear that the FBI recommends rebooting your routers against VPNFilter. Data extortion hits Canadian banks. The Cobalt Gang is back. 51% attacks fiddle with cryptocurrencies. BackSwap banking Trojan is tough to detect. Coca-Cola discloses data theft by a former employee. Courvoisier—the hacker, not the cognac, gets ten years. Facebook continues to work on its content moderation, and Papua New Guinea may block the platform for a month of study. NATO studies humor, very seriously. Ben Yelin from UMD CHHS on police attempts to use a deceased person’s fingerprints to unlock a phone. Guest is Mike Benjamin from CenturyLink on their recent threat report covering IoT and DDoS.
Recorded 5/25/18 - As you can expect, this EP focuses on VPNFilter. We discuss how we got involved, why Talos made the decision to disclose when we did, and we cover many details of the malware itself. There is a lot of background to this ongoing discussion. Take a peek behind the curtain of the defense against this attack as we cover many different aspects of the malware, the attack, and the mitigation. Show notes on the [Talos Blog](http://cs.co/BWTep30)
In the news, what will GDPR's impact be on U.S. consumer privacy, DOJ Sinkholes VPNfilter control servers found in U.S., the most important characteristics of a successful DevOps engineer, FBI seizes domain Russia allegedly used to infect 500,000 consumer routers, Florida man tasered after walking naked through neighborhood carrying cooking oil, and more on this episode of Paul’s Security Weekly! Full Show Notes: https://wiki.securityweekly.com/Episode561 Subscribe to our YouTube channel: https://www.youtube.com/securityweekly Visit our website: http://securityweekly.com Follow us on Twitter: https://www.twitter.comsecurityweekly
VPNFilter botnet, Echo private convo, Ghostery GDPR fail, PornHub VPN, Technology News, Human News, Ideas, Trends, & Analysis, Discovery, Recommendations, the weekly Aphorism, and more…
In the news, what will GDPR's impact be on U.S. consumer privacy, DOJ Sinkholes VPNfilter control servers found in U.S., the most important characteristics of a successful DevOps engineer, FBI seizes domain Russia allegedly used to infect 500,000 consumer routers, Florida man tasered after walking naked through neighborhood carrying cooking oil, and more on this episode of Paul’s Security Weekly! Full Show Notes: https://wiki.securityweekly.com/Episode561 Subscribe to our YouTube channel: https://www.youtube.com/securityweekly Visit our website: http://securityweekly.com Follow us on Twitter: https://www.twitter.comsecurityweekly
Participação do MorphusLabs no Palo Alto Ignite 2018, em Anahein, CA com a apresentação da pesquisa 'Exploring a P2P Transient Botnet'; Campanha do VPNFilter malware afeta diferentes fabricantes de roteadores e já fez mais de 500.000 vítimas; Spectre NG - a versão 4 da vulnerabilidade que afeta o modo de execução especulativa de processadores. Mais detalhes em: https://morphuslabs.com/morphuscast-09-morphuslabs-no-ignite-2018-vpnfilter-malware-e-spectre-ng-1c3378081c47
Summer is upon us and for many of us that means travel - but before you even pack your bags, you need to listen to this podcast! In my interview with Michael Kaiser (the Executive Director of the National Cyber Security Alliance), we discuss all the cyber security and privacy issues you need to consider: before you go and while you’re traveling. Going abroad this summer? There are even more things you need to consider well before you leave! I also tell you why everyone needs to reboot their WiFi routers - by request of the FBI, no less! A Russian-made piece of malware called VPNFilter has infected half a million routers world-wise, and the remedy in most cases is simply to power-cycle or reboot your router. It’s easy to do and we should also take a few minutes to do it. Michael Kaiser joined the National Cyber Security Alliance (NCSA) in 2008. As NCSA’s executive director, Mr. Kaiser engages diverse constituencies—business, government and other nonprofit organizations—in NCSA’s broad public education and outreach efforts to promote a safer, more secure and more trusted Internet. Mr. Kaiser leads NCSA in several major awareness initiatives, including National Cyber Security Awareness Month (NCSAM) each October, Data Privacy Day (Jan. 28) and STOP. THINK. CONNECT., the global online safety awareness and education campaign. NCSA builds efforts through public-private partnerships that address cybersecurity and privacy issues for a wide array of target audiences, including individuals, families and the education and business communities. In 2009, Mr. Kaiser was named one of SC Magazine’s information security luminaries. Mr. Kaiser has served on several nonprofit boards. He is currently the chair and a founding board member of SPINUSA, a national nonprofit based in Massachusetts, and has served on the Board of Trustees of the College of the Atlantic in Bar Harbor, Maine, and New Destiny Housing Corporation in New York City. For Further Insight: Web site: staysafeonline.org Follow on Twitter: https://twitter.com/MKaiserNCSA Facebook: https://www.facebook.com/staysafeonline/ LinkedIn: https://www.linkedin.com/in/michael-kaiser-3579752b NCSA’s Cyber Trip Advisor: https://www.stopthinkconnect.org/resources/preview/tip-sheet-ncsas-cyber-trip-advisor Reboot your router and set your admin password: https://firewallsdontstopdragons.com/the-s-in-iot-is-for-security/
This is the Shared Security Weekly Blaze for May 28, 2018 sponsored by Security Perspectives – Your Source for Tailored Security Awareness Training and Assessment Solutions, Silent Pocket and CISOBox. This episode was hosted by Tom Eston. Listen to this episode and previous ones direct via your web browser by clicking here! Help the podcast and leave us a review! […] The post The Shared Security Weekly Blaze – Real-time Location Tracking, VPNFilter Router Malware, Apple’s GDPR Updates appeared first on The Shared Security Show.
Bundesnetzagentur beendet Abzocke mit weißrussischen Ping-Anrufen Die Bundesnetzagentur hat mehrere Dutzend weißrussische Rufnummern abgeschaltet, die für Ping-Anrufe missbraucht worden sind. Die Betrüger lassen dabei vorzugsweise Mobiltelefone ganz kurz klingeln, damit der Anruf auf der Anrufliste erscheint. Wer dann zurückruft, muss mit höheren Kosten rechnen. Die Betrüger hatten eine Ähnlichkeit zur Ortsvorwahl 0375 in Sachsen ausgenutzt – die Vorwahl für Weißrussland lautet 00375. Die Behörde weist darauf hin, dass Opfer dieser Masche den entsprechenden Posten auf der Rechnung ihres Mobilfunkanbieters nicht zahlen müssen. US-Behörden raten zu Router- und NAS-Neustart Angesichts eines riesigen Botnetzes aus Hunderttausenden Routern und Netzwerkspeichern, rufen das FBI und das US-Justizministerium nachdrücklich dazu auf, die Geräte neu zu starten, um die Gefahr durch eine mögliche Infektion zu verringern. Durch den Neustart wird die Malware VPNFilter zwar nicht komplett gelöscht, sie kann sich aber nicht mehr einfach direkt neu installieren. Hintergrund ist die erfolgreiche Übernahme einer wichtigen URL durch das FBI, über die die Malware nach einem Neustart Instruktionen abgerufen hätte. Beim Glasfaserausbau ist Schleswig-Holstein weit vorn Auf dem Weg zu einer flächendeckenden Versorgung mit schnellem Internet sieht sich Schleswig-Holstein als ein Vorreiter in Deutschland. Mittlerweile könnten sich bereits 32 Prozent aller Haushalte im Norden an das Glasfasernetz anschließen lassen, sagte Wirtschaftsminister Bernd Buchholz. Mit dem bisherigen Stand liege Schleswig-Holstein weit über dem Bundesdurchschnitt von derzeit etwa 7 Prozent. Straßenmusiker in London akzeptieren bald kontaktlose Bezahlungen In London sollen Passanten Straßenmusikern künftig auch kontaktlos Geld geben können. Wie Sky News erklärt, benötigen die Straßenmusiker dafür ein Lesegerät des schwedischen Unternehmens iZettle, das sie dann auf einen festen Betrag einstellen. Passanten können den Musikern dann einfach über kontaktlosfähige Karten oder per Smartphone mit NFC den vorgegebenen Betrag zukommen lassen. Diese und alle weiteren aktuellen Nachrichten finden Sie auf heise.de
The FBI just issued a VPNFilter malware warning saying, "Reboot your routers now!" But why? And will it help? Kimberly Truong and Paul Ducklin of Sophos investigate.
In today's podcast, we hear that the FBI's takedown of VPNFilter may have averted a major state-directed campaign. Some discount Android phones come with preloaded adware. Amazon's Echo echoed a little too much. BMW patches some potentially serious vulnerabilities in its connected cars. Cryptocurrency exchanges hit by a double-spending crook. The US Justice Department investigates crypto exchange price manipulation. New charges have been filed in the December Kansas swatting death. And GDPR is now with us. Let the lawsuits begin. Joe Carrigan from JHU ISI, comparing the security of iOS vs. Android. Guest is Mischel Kwon from MKACyber on the evolving role of SOCs.
VPNFilter botnet, LA + Palantir, Amazon Surveillance, Momentum report, Clapper says Russia turned the election, Chinese supply chain attacks, Tech News, Human News, Ideas, Discovery, Recommendation, the Aphorism, and more…
GDPR Goes Live, VPNFilter Malware, VMware Okta Partnership & More
In today's podcast, we hear that VPNFilter, described by Cisco's Talos research unit, looks like battlespace preparation for Fancy Bear. The FBI may have succeeded in impeding its operation. Dragos describes XENOTIME, the threat actor behind the TRISIS industrial safety system attacks, and they say we can expect them back. GDPR is coming tomorrow, and a company has found a way of letting worried CISOs sleep at night. And your right to follow theRealDonaldTrump on Twitter has now been secured by the US Federal Court for the Southern District of New York. Enjoy. Dr. Charles Clancy from the Hume Center at VA Tech, discussing how cell towers track you even when you have location services disabled (and why that’s a good thing). Guest is Erez Yalon from Checkmarx with their research on Amazon Echo eavesdropping vulnerabilities.
SANS Internet Stormcenter Daily Network/Cyber Security and Information Security Stormcast
VPNFilter Malware Affecting Cisco Routers https://blog.talosintelligence.com/2018/05/VPNFilter.html DLink Vulnerabilities https://securelist.com/backdoors-in-d-links-backyard/85530/ Firefox Disabling "Spy APIs" and enabling 2FA https://www.fxsitecompat.com/en-CA/docs/2018/ambient-light-and-proximity-sensor-apis-have-been-disabled/
Cisco Talos deckt riesiges Router- und NAS-Botnetz auf Die US-Sicherheitsfirma Talos, Tochter des Router-Herstellers Cisco, warnt vor einem riesigen Bot-Netz, dessen Herren es offenbar vor allem auf Router und Netzwerkspeichergeräte abgesehen haben. Auf denen installieren die Angreifer eine raffinierte, mehrstufige Malware namens VPNFilter. Mindestens 500.000 Geräte weltweit will Talos bereits entdeckt haben, 30.000 davon in Deutschland. Das Erschreckende: Die Autoren der Schad-Software VPNFilter haben einen Schalter eingebaut, der die infizierten Systeme auf Befehl zerstört. Sicherheitsleck bei mehr als 170 Online-Apotheken Wissenschaftler der Universität Bamberg haben eine Sicherheitslücke bei mehr als 170 Online-Apotheken aufgedeckt. Das geht aus einem Bericht von NDR und WDR hervor. Demnach konnten Angreifer durch einfache Ergänzung von "server-status" in der Adresszeile des Browsers eine Liste aller aktuellen Online-Vorgänge auf dem jeweiligen Server abrufen. Betroffen waren Shops, die Software der Firma Awinta nutzen. Die Lücke wurde auf den betroffenen Servern inzwischen geschlossen. Riesiger Wasserfilter sammelt Plastikmüll aus dem Pazifik Seit vergangener Woche laufen vor der kalifornischen Küste die ersten groß angelegten Tests mit einem gigantischen Wasserfilter, der die Weltmeere vom Plastikmüll befreien soll. Wie Technology Review in seiner aktuellen Ausgabe berichtet, besteht der Filter der Firma Ocean Cleanup aus verschweißten Kunststoffrohren, an denen ein feines Netz drei Meter in die Tiefe hängt. Wenn beim Test alles glattgeht, will Ocean Cleanup bis Ende des Jahres fünf bis zehn Kubikmeter Plastik pro Woche einsammeln. Transkribus entziffert Uromas Handschrift Historische Dokumente sind oftmals schwer zu lesen – schon Uromas Tagebuch bereitet heutigen Lesern einige Schwierigkeiten. Hier will die von der EU geförderte Software Transkribus helfen: Sie erkennt alte handschriftliche Aufzeichnungen und wandelt diese in digitalen Text um, der sich viel einfacher lesen lässt. Je mehr Text die Software auswertet, desto besser das Ergebnis. Diese und alle weiteren aktuellen Nachrichten finden Sie auf heise.de
SANS Internet Stormcenter Daily Network/Cyber Security and Information Security Stormcast
VPNFilter Malware Affecting Cisco Routers https://blog.talosintelligence.com/2018/05/VPNFilter.html DLink Vulnerabilities https://securelist.com/backdoors-in-d-links-backyard/85530/ Firefox Disabling "Spy APIs" and enabling 2FA https://www.fxsitecompat.com/en-CA/docs/2018/ambient-light-and-proximity-sensor-apis-have-been-disabled/