WatchGuard Security Center

Pwned DSL Routers, White House Hack, and Phone Scams

Cyber security is on the industry’s mind. As a result, every week seems packed with information and network security news. If you don’t have time to keep up because you are too busy putting out normal IT fires, this weekly podcast is for you. WatchGuard Security Week in Review is dedicated to quickly summarizing the biggest security stories each week, and to sharing tips and best practices that can help protect you from the latest threats. If you want a 10 minute or less summary of each week’s security news, give this video podcast a try.

This week, I talk about a FUD-filled White House hack, an attack campaign that infected 4.5 million Brazilian routers, a couple examples of phone scams and social engineering, and much more. If any of this interests you, or you just want to relax for 10 minutes while sipping your first coffee of the day, press play on the video below.

As always, I’ve included a Reference section below, which links to each of the stories. If you want more details than I can cover in this short episode, check the links out. Hope to see you next time, and stay safe out there.

(Episode Runtime: 10:25)

Direct YouTube Link: http://www.youtube.com/watch?v=MupAGOg-RBI

Episode References:

• Did Chinese hackers access nuclear code computers? - SC Magazine
  
• White House confirms Chinese attack - Salon
• Kaspersky post on Brazilian DSL router hack - Securelist Blog
• 4.5 million hacked DSL routers used for banking malware and DNS poisoning - Ars Technnica
• Team Ghostshell leaks 120k records from 100 Universities - ZDNet
• Ghostshell Project WestWind Pastebin post - Pastebin
• Confessions of a teenage Xbox hacker - Kotaku
• “I’m calling from Windows” phone support scam - Ars Technnica
• Microsoft October Patch Day Notification – WGSC

— Corey Nachreiner, CISSP (@SecAdept)

New Java 0day, Cisco DoS, and Stolen Adobe Certs

There’s no shortage of information and network security news lately. If you find yourself struggling to keep up with it, due to all your other daily tasks, let my weekly summary videos fill you in. WatchGuard Security Week in Review quickly highlights the most important stories of the week, and lets you know what to do about the ones that might affect you.

This week’s episode includes two important software updates, news of another Java zero day flaw, a story about advanced attackers breaching a Smart Grid vendor’s network, and details about stolen Adobe code signing certificates. There’s patches to install and certificates to revoke, so give this week’s episode a view to learn what to do.

If you’d like more details on any of these stories, or want to see the ones I didn’t have time to cover in the video, check out the Reference section below. Have a great weekend, and see you next Friday.

(Episode Runtime: 8:50)

Direct YouTube Link: http://www.youtube.com/watch?v=R-DbODYoBLI

Episode References:

• Cisco release eight security updates in September - Cisco
  
• Chrome update fixes 24 vulnerabilities - Techworld
• Another Java zero day vulnerability - Computer World
• Smart Grid company suffers network breach - Wired
• New attack can wipe Samsung smartphones - Network World
• Adobe warns of code signing certificate theft - Adobe blog

• Extra Stories
  • More banks DDoSed by hacktivists  –  NBC News
  • IEEE password breach (unprotected file on FTP site) - Network World
  • NFC hack allows free subway rides - Network World
  • Microsoft may have known about IE 0day long ago  –  Ubergizmo
  • Mobile malware is up over 2000% - PC Advisor
  • Verizon Mobile passwords easily cracked - Net Security

— Corey Nachreiner, CISSP (@SecAdept)

IE 0day, Bank Attacks, and Massive Apple Update

Are you too busy to follow security news yourself, but would like quick updates about the latest attacks, vulnerabilities, and trends? Then WatchGuard Security Week in Review is for you. In this weekly video (posted every Friday), I quickly summarize the biggest information and network security news. Rather than let your busy schedule keep you in the dark, give this short recap video a try.

Today’s episode covers a major zero day vulnerability in Internet Explorer (IE), a bunch of security updates for Macs and iOS devices, and a few stories about attackers targeting banks. If you manage Windows systems, it’s worth a watch for the IE vulnerability alone.

As an aside, I’ve been traveling in Europe all this week, so I had to produce this episode quickly, from my hotel room, on my iPhone. The quality is not quite up to its normal par, and due to my schedule, I had to skim over a few details and skip a few stories. However, if you are interested in more information, or would like to see some of the stories I didn’t mention in the video, be sure to check out the Reference section below.

Finally, if you have suggests for what you’d like to see in future episodes, let me know in the comments.

(Episode Runtime: 5:40)

Direct YouTube Link: http://www.youtube.com/watch?v=AqN8zgFj5z8

Episode References:

• IE Zero Day Vulnerability
  
  • WatchGuard IE zero day alert - WGSC
    
  • Microsoft releases FixIt - WGSC
  • Microsoft Security Advisory - Microsoft
  • Original researcher’s blog post on IE 0day - Eric Romang
• OS X, Safari, and iOS security updates - WGSC
• FBI warns of targeted bank attacks – NBC News
  
• Hacktivists/cyberterrorists DDoS Bank of America - Gizmodo
• Follow up attack on Chase Bank – Gizmodo

• Extra Stories
  • Romanian attackers plead guilty to Subway PoS hack  –  Net Security
  • New Flame analysis - Network World
  • New TDL-4 variant infects Fortune 500s - Computer World
  • Researchers DoSes bank PBX  -  The Register
  • Sophos detects itself as malware - Network World
  • Oracle DB suffers password cracking flaw - Ars Technica

— Corey Nachreiner, CISSP (@SecAdept)