Presentation is loading. Please wait.

Presentation is loading. Please wait.

All images scavenged without permission

Published byDustin Casey Modified over 6 years ago

Similar presentations

Presentation on theme: "All images scavenged without permission"— Presentation transcript:

1 All images scavenged without permission

2 PREVIOUS GNEWS All images scavenged without permission

3 Patch Tuesday Jun – 17 Patches – 6 Critical – 36 CVEs
MS Cumulative Security Update for Internet Explorer MS Cumulative Security Update for Microsoft Edge MS Cumulative Security Update for JScript and VBScript MS Microsoft Office MS Microsoft Windows DNS Server MS Group Policy MS Windows Kernel-Mode Drivers MS Microsoft Graphics Component MS Windows SMB Server MS Netlogon MS WPAD MS Windows Diagnostic Hub MS Microsoft Exchange Server MS Microsoft Windows PDF MS Active Directory MS Microsoft Windows Search Component MS Adobe Flash Player Sources:

4 Patch Tuesday Jul – 11 Patches – 6 Critical – 40 CVEs
MS Cumulative Security Update for Internet Explorer MS Cumulative Security Update for Microsoft Edge MS Cumulative Security Update for JScript and VBScript MS Security Update for Windows Print Spooler Components MS Security Update for Microsoft Office MS Security Update for Windows Secure Kernel Mode MS Security Update for Windows Kernel-Mode Drivers MS Security Update for .NET Framework MS Security Update for Windows Kernel MS Security Update for Adobe Flash Player MS Security Update for Secure Boot MS breaks AD GPO Sources: MS breaks AD GPO

5 Holes / Patches Oracle Adobe Apple VMWare Symantec
Due 19 Jul Adobe APSB16-18 Flash ( 36 CVE) APSB16-19 DNG SDK ( 1 CVE) APSB16-20 Brackets ( 2 CVE) APSB16-21 Creative Cloud Desktop Application ( 2 CVE) APSB16-22 CloudFusion ( 1 CVE) APSB16-23 Air( 1 CVE) APSB16-24 XMP Toolkit for Java ( 1 CVE) APSB16-25 Flash ( 52 CVE) APSB16-26 Acrobat and Reader( 30 CVE) Apple AirPort Base Station Firmware / ( 1 CVE) IOS 10 App removal VMWare VMSA ( 1 CVE) VMware NSX and vCNS info disclosure VMSA ( 2 CVE) vRealize Log Insight, XSS VMSA ( 1 CVE) vCenter Server, reflected XSS Symantec Packers and more Lenovo ThinkPwn (+ gigabyte) EUFI firmware vuln PDF vulns Chrome and Foxit Putty DLL hi-jacking Sources: ## Oracle Patches ##Adobe Patches ##Apple patches ios10 app removal ##Cisco patches ## VMWare Symantec again Symantec vulnerable Again patches Lenovo ThinkPwn thinkpwn and now on MoBo chrome pdf reader foxit patches putty ddl hijacking

6 Hacking powershell Malware... it is not just theoretical
Godless android malware Malware via BITS googleplay auto-rooting malware IOT Camera botnet Ransomware on o365 conficker is dead, long live conficker Opensource 21 Bitcoin for machine payable web services MS FreeBSD Silent use by apps Hacking Sources: powershell Malware... it is not just theoretical Godless android malware Malware via BITS googleplay auto rooting malware IOT Camera botnet Ransomware on o365 conficker is dead, long live conficker Opensource 21 Bitcoin for machine payable web services MS FreeBSD microphones

7 Corp MS to buy Linkedin MS to launch block chain as a service
Symantec to buy BlueCoat Symantec expands car system protection offerings Ron Gula steps down (tenable CEO) CASB - Cisco to buy CloudLock avast buys avg (now with twice the nag windows) Fiat/Chrysler bug bounty program Siemens says don't use their stuff.... (on soft networks) Sources: MS to buy Linkedin MS to launch block chain as a service Symantec to buy BlueCoat Symantec expands car system protection offerings Ron Gula steps down (tenable CEO) CASB - Cisco to buy CloudLock avast buys avg (now with twice the nag windows) Fiat/Chrysler bug bounty program Siemens says don't use their stuff.... (on soft networks) Corp

8 Corp Wendys breach bigger than thought (shocker)
Acer customer CC# breach undisclosed hospital DB breached Omni hotels breached BMW vulnerable Hard Rock Vegas breached registrars are hard... tp-link losses update domain Sources: Wendys breach bigger than thought (shocker) Acer customer CC# breach undisclosed hospital DB breached Omni hotels breached BMW vulnerable Hard Rock Vegas breached registrars are hard... tp-link losses update domain Corp

9 Govt Air force investigations deleted (crashed) IRS hacked again
154 mil voter data on unsecured couchdb ERAD money seizures Europe wants to pay per link One step closer to FOIA reform VA says computers don’t get the 4th NSA hacker talks everyone uses 3rd party , Nato Gen. gmail hacked silk road agent under glass for more theft HIPAA bares its teeth we're all going to jail… password sharing falls under CFAA WEllness badness NC bill for blockchain currencies Fed Judge throws out Stingray evidence Sources: Air force investigations deleted (crashed) irs hacked again 154 mil voter data on unsecured couchdb erad money seizures Europe wants to pay per link One step closer to FOIA reform VA says computers dont get the 4th NSA hacker talks everyone uses 3rd party silk road agent under glass for more theft hipaa bares its teeth we're all going to jail Wellness badness NC bill for blockchain currencies No stingrays here Govt

10 Sin Report – Legitimate Bitcoin gaining ground
Simplifying IoT: Connecting, Commissioning, and Controlling with Near Field Communication (NFC) Sin Report – Legitimate Bitcoin gaining ground Papers Sources: iot Simplifying IoT: Connecting, Commissioning, and Controlling with Near Field Communication (NFC) bitcoin for illegal trade is dropping to legitimate

11 LightCyber report finds attackers use legitimate tools.
2nd BitCoin Halving WTF Sources: welcome to 1995 cpt obvious bitcoin halflife

12 Tools CANSPY (at BlackHat) Automotive Vuln Scanner
TLS fingerprinting v1.0 SecuityTips for Signal VeraCrypt Trucrypt fork New anonymity scheme MIT onion network better than Tor Shard Leaked password checker Mr-Robot Mr. Robot themed "CTF" Tools Sources: Car scanner? TLS fingerprinting v1.0 SecTips for Signal vera crypt MIT better than tor ?? leaked passwords ?? MR Robot themed "CTF"

13 BlackHat – Vegas 30 Jul – 4 Aug
SANS San Antonio – Jul Hope 11 – NYC Jul BlackHat – Vegas 30 Jul – 4 Aug BSidesLV – Vegas 2-3 Aug DefCon 24 – Vegas 4 – 7 Aug SANS Dallas – 8 – 13 Aug OWASP CFP Open – DC Oct Future Cons Sources:

14 National Information Security and Assurance Group
DHA ( 1st Wednesday / Family Karaoke, dallas ) TX2600 ( 1st Fri / Wild Turkey 35&WalnutHill, dallas ) The Lab.MS ( 2nd Monday + random events / TheLab.ms, plano ) OWASP Dallas ( 3rd Tuesday / location varies ) Crypto Party ( 3rd Thursday / Improving Enterprises, addison ) National Information Security and Assurance Group ( 4th Thursday, Jakes, Frisco ) Dallas MakerSpace ( Random events / carrollton ) Sources:

15 Sources: All images scavenged without permission

Download ppt "All images scavenged without permission"

Similar presentations

PREVIOUS GNEWS. 7 Patches – 3 Critical – 23 CVEs Affected – RDP, IE, Lync, Windows Other updates, MSRT, Defender Definitions, Junk Mail Filter –MS12-036.

PREVIOUS GNEWS. 7 Patches – 3 Critical – 23 CVEs Affected – RDP, IE, Lync, Windows Other updates, MSRT, Defender Definitions, Junk Mail Filter –MS
PREVIOUS GNEWS. 11 Patches – 5 Critical Affecting most everything Other updates, MSRT, Defender Definitions, Junk Mail Filter –MS10-018 - IE, Remote Execution.

PREVIOUS GNEWS. 11 Patches – 5 Critical Affecting most everything Other updates, MSRT, Defender Definitions, Junk Mail Filter –MS IE, Remote Execution.
. 15 Patches / 32 Vulns – 9 Critical Affecting most everything Other updates, MSRT, Defender Definitions, Junk Mail Filter –MS10-046 - Windows.

. 15 Patches / 32 Vulns – 9 Critical Affecting most everything Other updates, MSRT, Defender Definitions, Junk Mail Filter –MS Windows.
PREVIOUS GNEWS. 13 Patches – 5 Critical Affecting Windows (pretty much all of them) Other updates, MSRT, Defender Definitions, Junk Mail Filter –MS10-003.

PREVIOUS GNEWS. 13 Patches – 5 Critical Affecting Windows (pretty much all of them) Other updates, MSRT, Defender Definitions, Junk Mail Filter –MS
PREVIOUS GNEWS. Oct - 8 Patches – 3 Critical - 24 CVEs MS14-056 - Cumulative Security Update for Internet Explorer MS14-057 -.NET Framework, Remote Code.

PREVIOUS GNEWS. Oct - 8 Patches – 3 Critical - 24 CVEs MS Cumulative Security Update for Internet Explorer MS NET Framework, Remote Code.
Lesson 9-Securing a Network. Overview Identifying threats to the network security. Planning a secure network.

Lesson 9-Securing a Network. Overview Identifying threats to the network security. Planning a secure network.
PREVIOUS GNEWS. Apr 4 Patches – 2 Critical – 11 CVEs MS14-017 - Microsoft Word and Office Web Apps, Remote Code MS14-018 - Cumulative Security Update.

PREVIOUS GNEWS. Apr 4 Patches – 2 Critical – 11 CVEs MS Microsoft Word and Office Web Apps, Remote Code MS Cumulative Security Update.
10 Tips for keeping MCL safe 1. Set up your defenses. Do you have adequate firewalls and antivirus software to protect you from hackers who could steal.

10 Tips for keeping MCL safe 1. Set up your defenses. Do you have adequate firewalls and antivirus software to protect you from hackers who could steal.
Computer Safety Workshop Presented by Roy Coleman April 14, 2015 © 2015 Roy Coleman.

Computer Safety Workshop Presented by Roy Coleman April 14, 2015 © 2015 Roy Coleman.
9 Patches – 2 Critical – 12 CVEs Affected – IE, Kernel, SharePoint, Remote Desktop, AD….. Other updates, MSRT, Defender Definitions, Junk Mail Filter.

9 Patches – 2 Critical – 12 CVEs Affected – IE, Kernel, SharePoint, Remote Desktop, AD….. Other updates, MSRT, Defender Definitions, Junk Mail Filter.
PREVIOUS GNEWS. 6 Patches – 1 Critical – 22 CVEs Affected – IE. Kernel, Print, Office MS13-047 - Cumulative Security Update for Internet Explorer MS13-048.

PREVIOUS GNEWS. 6 Patches – 1 Critical – 22 CVEs Affected – IE. Kernel, Print, Office MS Cumulative Security Update for Internet Explorer MS
PREVIOUS GNEWS. Patches – 1 Critical Other updates, MSRT, Defender Definitions, Junk Mail Filter –MS12-017 DNS Server, DoS –MS12-018 Kernal Mode Driver,

PREVIOUS GNEWS. Patches – 1 Critical Other updates, MSRT, Defender Definitions, Junk Mail Filter –MS DNS Server, DoS –MS Kernal Mode Driver,
PREVIOUS GNEWS. 7 Patches – 3 Critical – 23 CVEs Affected – Other updates, MSRT, Defender Definitions, Junk Mail Filter –MS12-029 Microsoft Word, Remote.

PREVIOUS GNEWS. 7 Patches – 3 Critical – 23 CVEs Affected – Other updates, MSRT, Defender Definitions, Junk Mail Filter –MS Microsoft Word, Remote.
PREVIOUS GNEWS. 7 Patches – 3 Critical – 20 CVEs Affected – IE, Kernel, Visio, Silverlight Sarepoint,….. Other updates, MSRT, Defender Definitions, Junk.

PREVIOUS GNEWS. 7 Patches – 3 Critical – 20 CVEs Affected – IE, Kernel, Visio, Silverlight Sarepoint,….. Other updates, MSRT, Defender Definitions, Junk.
PREVIOUS GNEWS. 2 Patches / 3 Vulns – 1 Critical Affecting Windows XP, Vista, 7, 2003, 2008 Other updates, MSRT, Defender Definitions, Junk Mail Filter.

PREVIOUS GNEWS. 2 Patches / 3 Vulns – 1 Critical Affecting Windows XP, Vista, 7, 2003, 2008 Other updates, MSRT, Defender Definitions, Junk Mail Filter.
PREVIOUS GNEWS. July - 6 Patches – 2 Critical - 27 CVEs MS14-037 - Cumulative Security Update for IE, Remote Code MS14-038 – Windows Journal, Remote Code.

PREVIOUS GNEWS. July - 6 Patches – 2 Critical - 27 CVEs MS Cumulative Security Update for IE, Remote Code MS – Windows Journal, Remote Code.
PREVIOUS GNEWS. 8 Patches – 3 Critical – 19+ CVEs Affected – GDI, Hyper-V, Outlook, Office, IE, Activex, and more MS13-088 - Cumulative Security Update.

PREVIOUS GNEWS. 8 Patches – 3 Critical – 19+ CVEs Affected – GDI, Hyper-V, Outlook, Office, IE, Activex, and more MS Cumulative Security Update.
PREVIOUS GNEWS. 6 Patches – 4 Critical – 19 CVEs Affected – Kernel, SQL, Kerberos, Word, HTML, SharePoint Other updates, MSRT, Defender Definitions, Junk.

PREVIOUS GNEWS. 6 Patches – 4 Critical – 19 CVEs Affected – Kernel, SQL, Kerberos, Word, HTML, SharePoint Other updates, MSRT, Defender Definitions, Junk.
PREVIOUS GNEWS. 6 Patches – 4 Critical – 11 CVEs Affected – SQL, Visual Basic, Visual Foxpro, more… Other updates, MSRT, Defender Definitions, Junk Mail.

PREVIOUS GNEWS. 6 Patches – 4 Critical – 11 CVEs Affected – SQL, Visual Basic, Visual Foxpro, more… Other updates, MSRT, Defender Definitions, Junk Mail.
PREVIOUS GNEWS. Oct - ? Patches – ? Critical - ? CVEs Come Back Next Week Other updates, MSRT, Defender Definitions, Junk Mail Filter Patch Tuesday.

PREVIOUS GNEWS. Oct - ? Patches – ? Critical - ? CVEs Come Back Next Week Other updates, MSRT, Defender Definitions, Junk Mail Filter Patch Tuesday.

Similar presentations

Ads by Google