InfoSec News Summary 02/12/2016

Posted on February 12, 2016

Microsoft Patch Tuesday Release (2/9/15): 13 bulletins with 6 being deemed critical in severity. None of the vulnerabilities have been exploited in the wild as of the patch tuesday bulletins release. Although one vulnerability stands out (MS16-013) as it affects all supported versions of Windows and can allow remote code execution if a user opens a specially crafted Journal file.

CVE-2016-1287 – Cisco ASA Unauthenticated IKEv1 IKEv2 Buffer: A recent vulnerability has been discovered affecting the Cisco ASA Adaptive Security Appliance. If the Cisco ASA device acts as a VPN it can allow for external communication to occur which could lead to exploitation from an unauthenticated adversary.

IRS Says Identity Thieves Hacked Its Systems Again

Windows 10 Sends Large Amounts of Data to Microsoft

Great write-up on an Introduction to SQL Injection

[Paper] technical dive into some web vulnerabilities

Google Plans kill Support for “Adobe Flash Player”

[Tool] New version of SET released

[Tool] New version of PTF released

Damn Vulnerable Web Services (DVWS)

Hacker Leaks info on 30,000 FBI and DHS Employees

D-Link DCS-930L Authenticated RCE

President Obama has proposed a 35% increase in spending on cybersecurity

FBI Director is trying to force Apple to decrypt phones

Krebs discusses TTPs on ATM Skimmers using Network cables

Hob0Rules Released: Statistics Based Password Cracking Rules

RECENT

Cybersecurity Concerns for Ancillary Strength Control Subsystems

AM Botnet as a Vector for Energy Market Manipulation

Building Trust in AI Manufacturing Systems with BISON

Proactive Defense: Preparing for Cyber Threats in Additive Manufacturing

Prints, Piracy, and Protection: Safeguarding 3D IP

1 2 3 … 17 Next »

RELATED POSTS —

Cybersecurity Concerns for Ancillary Strength Control Subsystems

Posted on October 19, 2023

Additive manufacturing (AM) engineers have been incredibly creative in developing ancillary systems that modify a printed parts mechanical properties.  These [...]

AM Botnet as a Vector for Energy Market Manipulation

Posted on August 21, 2023

The Federal Energy Regulatory Commission (FERC) reported 16 potential market manipulation cases in 2018.  The 1990’s saw a restructuring of [...]

Building Trust in AI Manufacturing Systems with BISON

Posted on August 11, 2023

To extract the greatest value from advanced manufacturing, a shift to codesign with AI is needed to realize the full [...]

1 2 3 … 29 Next »