Weekly InfoSec Roundup 11/22/17

Wednesday, November 22nd, 2017 | by

With Thanksgiving right around the corner, here is an early roundup of the week’s cybersecurity news and events.

 

  • 5 information security threats that will dominate 2018
  • “The global security threat outlook evolves with every coming year. To combat the threat in 2018, enterprises must understand these five global cyber threats.”
    Read More
     

  • GitHub Rolls Out Security Alerts for Developers
  • “Popular software development platform GitHub made it easier last week for users to spot security issues with their code, by including a new vulnerability alerts feature.”
    Read More
     

  • Microsoft Manually Patched Office Component: Researchers
  • “Microsoft engineers appear to have manually patched a 17 year-old vulnerability in Office, instead of altering the source code of the vulnerable component, ACROS Security researchers say.”
    Read More
     

  • Researcher Finds Hole in Windows ASLR Security Defense
  • “A security expert found a way to work around Microsoft’s Address Space Randomization Layer, which protects the OS from memory-based attacks.”
    Read More
     

  • Crypto-Currency Firm Tether Loses $30m to Hackers
  • “Crypto-currency firm Tether has become the latest to suffer a damaging cyber-attack, claiming hackers have made off with over $30m worth of tokens.”
    Read More
     

  • Intel: We’ve found severe bugs in secretive Management Engine, affecting millions
  • “Thanks to an investigation by third-party researchers into Intel’s hidden firmware in certain chips, Intel decided to audit its firmware and on Monday confirmed it had found 11 severe bugs that affect millions of computers and servers.”
    Read More
     

  • Uber Shock: Firm Hid Breach of 57 Million Users
  • “The information security industry is in shock after Uber confessed to a massive data breach affecting 57 million customers and drivers around the globe, which it concealed last year by paying off the hackers.”
    Read More
     

  • HP to Release Patch This Week for Printer Security Bugs
  • “HP said it would release firmware patches later this week for several security bugs reported to the company by various cyber-security experts.”
    Read More
     

  • Apple Patches USB Code Execution Flaw in macOS
  • “One of the vulnerabilities addressed by Apple in its latest set of security patches for macOS is an arbitrary code execution flaw, which could be exploited via malicious USB devices.”
    Read More
     

  • Happy Thanksgiving
  • We are immensely thankful for our amazing colleagues, customers and partners! We wish you and your family a time of togetherness, gratitude and joy.
     


About

Director of Product Management at Brinqa — Passionate about design, travel and good food. When not working can be found hiking, snowboarding or exploring the wonderful city of San Francisco.
More posts by Syed Abdur