If you want the best network defenses, you need to stay abreast of the latest information security news; but I realize most IT folks don’t have the time to stay informed on their own. Let our weekly video do the heavy lifting, and quickly share the biggest infosec news.

This episode, from last week, covers the latest evidence of a nation state malware campaign, a warning about an adult site spreading malware, news of a critical Linux vulnerability, and more. Watch the video for the scoop, and see the links below.

(Episode Runtime: 4:18)

Direct YouTube Link: https://www.youtube.com/watch?v=waS8JjyTjks

EPISODE REFERENCES:

• Daily Security Bytes:
  • Monday: 404, Plane Not Found – Daily Security Byte EP.11
  • Tuesday: Ghost: Critical Linux Flaw – Daily Security Byte EP.12
  • Wednesday: QWERTY is REGIN – Daily Security Byte EP.13
  • Thursday: Adult Site Spreads Malware – Daily Security Byte EP.14
  • Friday: F0xy evades host firewalls – Daily Security Byte EP.15
• The latest web site hacks:
  • Russian TopFace site breached, credentials leaked – Bloomberg
  • Malaysian Airlines web sites defaced (DNS hijack?) – Computer World
  • Breached TopFace site gave in to hacker extortion – Bloomberg
• Ghost: Critical glibc vuln affects Linux
  • WatchGuard’s write up on GHOST – WatchGuard Blog
  • Qualys reports glibc RCE vulnerability – Openwall
  • ZDNet article on Ghost – ZDNet
  • A better function for DNS resolution today – Errata Sec
  • Good write-up on Ghost vulnerability – ma.ttais.be
  • Ars on Ghost – Ars Technica
  • Qualys shares some potentially vulnerable packages – Openwall
  • Great SANS video on Ghost – SANS
  • Some additional notes on Ghost – Errata Sec
  • Qualys’ Ghost page include their Ghost logo (sigh) – Qualys
• Regin analysis updates:
  • Latest Kaspersky Regin modules analysis – Securelist
  • Comparing Regin to QWERTY – Securelist
  • Regin keylogging modules related to known NSA malware – Network World
• Popular adult site infected with the recent Flash issue (through ads) – The Register
• New F0xy malware uses sophisticated C&C – Websense

EXTRAS:

• Silk Road/Ulbricht trial updates
  • Ulbricht’s friend testifies – Wired
  • Ulbricht journals about his criminal site – Ars Technica
  • Ulbricht’s OKCupid profile used to help prosecute him – Motherboard
  • Hacker’s blackmailed SilkRoad successfully over the years – ZDNet
• Chrome 40 update fixes 67 vulnerabilities – Threatpost
• Clickfraud moves to YouTube – Help Net Security
• Hobby King’s site suffers many security flaws – Reddit
• Researchers find flaws in automated gas station fuel gauges – Ars Technica
• Lizard Squad said they gave up their user’s passwords – Forbes
• School says new law requires students to hand over social network passwords – Naked Security
• Google engineers describe why they won’t patch old android versions – Threatpost
• Android WiFi Direct vulnerability – ThreatPost
• Adobe quickly fixes yet another Flash 0day – Dark Reading
• Ransomware drives some to suicide? – Help Net Security
• Hearthstone servers DDoS last weekend – Kotaku
• Apple, iOS, OS X, and Safari updates – Apple
• Taylor Swift’s Twitter and Instagram hijacked – Motherboard
• Taylor Swift’s attacker claims to have more to share – Gawker
• New Parrot AR Drone hack and malware – The Register
• The latest on CBS reporter’s alleged hack – Ars Technica
• How NSA’s BADASS spied on mobile phones – The Intercept
• Arbor Networks says the largest DDoS was 400Gbps – Tech World
• Marriott mobile app responsible for data leak – Slashgear
• The Fed begins process for new data breach disclosure law – Threatpost
• The FTC to “watchdog” the IoT – Ars Technica
• How the US government went after WikiLeaks – The Intercept
• Proposed CFAA changes could impact security research – Threatpost
• Be careful with Android banking apps – Computer Weekly
• Krebs’ latest DDoSer story, plus how CloudFlare is involved – KrebsonSecurity
• Switzerland; the neutral data store? – Business Insider
• “Ultra Secure” Blackphone can get pwned by malicious text – Ars Technica
• All IoT devices have been hacked (by researchers) – Slate
• Foscam baby monitor hacked again – WZZM13
• Fake airline bomb threats tweeted – NBCNews
• The average cost of a DDoS attack is 400K – Betanews
• Popular alarm systems suffers from a Macguyver hack (tape & magnet) – Forbes
• Another Bitcoin wallet hack (Localbitcoin) – Tech Week
• Chinese government wants to audit banking software source code and have backdoors – New York Times
• I’m not the only one that thinks Google’s Project Zero is doing harm – V3.co.uk
• The FTC wants to regulate the IoT – FTC.gov
• DNS Hijacking flaw found in old D-Link consumer router – Computer World
• FCC has reclassified Broadband with faster speeds – Kotaku 

— Corey Nachreiner, CISSP (@SecAdept)

You Can Learn More About the WatchGuards’ Product Line By Going to www.FirewallShop.com/WatchGuard.

The original article/video can be found at Don’t Be ‘fraid of No Ghost – WSWiR Episode 137