PREVIOUS GNEWS

Jun – 14 Patches – 7 Critical – 47 CVEs MS Cumulative Security Update for Internet Explorer, Remote Code MS Cumulative Security Update for Microsoft Edge, Remote Code MS Microsoft Graphics Component, Remote Code MS Microsoft Office, Remote Code MS Microsoft Exchange Server, Remote Code MS Silverlight, Remote Code MS Windows, Remote Code MS Windows Kernel, Privilege Escalation MS Windows Lock Screen, Privilege Escalation MS Windows Secure Kernel Mode, Info Disclosure MS SMBv1 Server, Remote Code MS Microsoft Windows PDF Library, Info Disclosure MS OLE Automation for VBScript Scripting Engine, Remote Code MS Adobe Flash Player, Remote Code Patch Tuesday

Oracle –Due out 18 Oct Adobe –APSB16-28 Digital Editions ( 8 CVE) –APSB16-29 Flash Player ( 26 CVE) –APSB16-31 Air SDK/Compiler ( 1 CVE) Apple –watchOS 3 ( 1 CVE) –Xcode 8 ( 2 CVE) –iOS ( 1 CVE) –iOS 10 ( 7 CVE) –El Capitan and Yosemite ( 2 CVE) –Safari ( 1 CVE) –iOS ( 3 CVE) MS New patch deployments VMWare –VMSA ( 1 CVE) vRealize Log Insight (dir traverse) –VMSA ( 1 CVE) Photon OS OVA (default ssh key) –VMSA ( 2 CVE) Identity Manager & vRealize Automation –VMSA ( 8 CVE) ESXi, Workstation, Fusion, & Tools libgcrypt and gnupg1.4 –Random number generator Cisco –Patch for equation group 0-day Android, CVE –Pre 4.7 tcp “challenge ACK” Holes / Patches

darpa solves crackaddr problem car keyfob hack (vw / ford / chevy) rockwell undocumented snmp string, remote access signal forensics tool, Retroscope, extract signal/whatsapp/more… How-to disable wpad Burleson, now with skimmers NSA zero day tools Transmission Torrent ungood for macs (ransomeware) PowerShell web.config scripts, steal creds OpenSLL pulls 3des/blowfish Mirrorlink, car infotainment (paper) new evasion via macros Hacking

hotels popped (marriot/sheraton/westin) eddie bauer hacked steam hacked epic forums hacked GTA forum breach Drop Box popped opera server breach Rambler.ru cred dump 98mil brazzers.com popped Hacking

MS 2FA now on ios/android Powershell now opensource Veracrypt Audit s vanish EFF open call to action on windows 10 privacy New Google OS?? “Fuchsia” WhatsApp Facebook data sharing sophos bad signature yelp bug bounty OWASP bugbounty GE buys 3dprinters Arcam AB and SLM Solutions Group Corp

illinios limits cell site simulators NSA tool leak? Elections and Security Politics as Critical Infrstruture Seti (I want to believe) EU passes infringement by linking first fed CISO malware is a valid search And Rule 41 expands hacking power Govt

x Papers

WTF AdBlockPlus now sells ads

Tools hellraiser vuln scanner

OWASP CFP Open – DC Oct IANS Chicago Information Security Forum –13-14 Sep CornCon – Davenport Iowa 17 Sep SaintCon – Provo Utah Oct Root 66 / InnoTech OKC - 1 Nov LASCON Austin – 1-2 Nov BSidesDFW 2016 – 5 Nov Threat Intelligence Summit NOLA – 6-7 Dec Future Cons

( 1 st Wednesday / Family Karaoke, dallas ) ( 1 st Fri / Wild Turkey 35&WalnutHill, dallas ) The ( 2 nd Monday + random events / TheLab.ms, plano ) OWASP ( 3 rd Tuesday / location varies ) Crypto Party ( 3 rd Thursday / Improving Enterprises, addison ) North Texas Cyber Security ( Last Thursday, Jakes, Frisco ) Dallas ( Random events / carrollton ) Hack Ft ( 3 rd Thursday / ?? West 7 th ?? Abby Pub) Lock Pick ( Last Monday/ Sherlocks arlington )

All images scavenged without permission