Tag Archives: Update

vBulletin Breach and 0day – Daily Security Byte EP. 171

The creators of vBulletin are having a bad week. Not only did they have a data breach that resulted in around 400,00 stolen user records, but it sounds like the attacker leveraged a zero day vulnerability in their own software to compromise their network. Watch today’s Daily Byte to learn more about this story, and what you should do if you use vBulletin software.

(Episode Runtime: 2:10)

Direct YouTube Link: https://www.youtube.com/watch?v=5XIwY4seah0


— Corey Nachreiner, CISSP (@SecAdept)

Emergency Shockwave Update – Daily Security Byte EP. 167

If you use Adobe Shockwave, it’s time to patch. This week, Adobe released an out-of-cycle update fixing a critical flaw in the popular multimedia player. Watch the video to learn more, including why I recommend against Shockwave.

(Episode Runtime: 1:10)

Direct YouTube Link: https://www.youtube.com/watch?v=LFKIM8k8nf8


— Corey Nachreiner, CISSP (@SecAdept)

Flash 0day Surfaces – Daily Security Byte EP.159

Adobe just released a new Flash update Tuesday, but researchers have already found sophisticated threat actors leveraging a new zero day Flash exploit in the wild. Trend Micro, one of our security partners, found the Pawn Storm attackers leveraging this new Flash exploit. Watch today’s video to learn when the next patch will come out, and what to do in the meantime.

UPDATE: Adobe actually sped up their schedule to release a fix. Go get it now.

(Episode Runtime: 1:27)

Direct YouTube Link: https://www.youtube.com/watch?v=_HFC6VFBdu0


— Corey Nachreiner, CISSP (@SecAdept)

iOS 9 Lockscreen Bypass – Daily Security Byte EP.149

Apple’s not having a great security week. First the XcodeGhost issue, which infected their App Store with malware, now a new iOS 9 lockscreen bypass vulnerability. A Spanish speaking YouTuber disclosed a new lockscreen bypass flaw this week. Today’s episode covers how an attacker might exploit this flaw, and what you can do to mitigate it until Apple patches.

(Episode Runtime: 2:29)

Direct YouTube Link: https://www.youtube.com/watch?v=umKip1ZpS6I


— Corey Nachreiner, CISSP (@SecAdept)

Critical Flash Patch – Daily Security Byte EP.148

Adobe usually follows Microsoft Patch Tuesday, and releases updates on the second Tuesday of each month. However, yesterday they released a critical, out-of-cycle Flash update fixing 23 vulnerabilities. Watch today’s video to learn how severe these vulnerabilities are, and what you should do.

(Episode Runtime: 1:45)

Direct YouTube Link: https://www.youtube.com/watch?v=ybNfQajHGhI


— Corey Nachreiner, CISSP (@SecAdept)

HTTPS Masks Malvertising – Daily Security Byte EP.145

A new malvertising campaign went undetected for three weeks due to advertisers adopting HTTPS. Learn how secure web communications might introduce unexpected new risks in today’s daily video.

(Episode Runtime: 2:57)

Direct YouTube Link: https://www.youtube.com/watch?v=u3DURxAy7Lw


— Corey Nachreiner, CISSP (@SecAdept)

Apple Patches iOS & iTunes – Daily Security Byte EP.144

Today is Apple Patch Day. They released security updates for iTunes, iOS, Xcode, and OS X Server. iOS 9 is the big news, since it’s a pretty big feature update. However, it also fixes a critical AirDrop flaw. Press play below to learn about these updates, and the major AirDrop issue.

(Episode Runtime: 1:39)

Direct YouTube Link: https://www.youtube.com/watch?v=iuokQxztLtw


— Corey Nachreiner, CISSP (@SecAdept)

WhatsApp Hacked – Daily Security Byte EP.139

WhatsApp is one of the most popular messenger apps for mobiles, with over 900 million users. Unfortunately, it suffered from a critical vulnerability attackers could exploit to trick you into accidentally installing malware. Watch below for the details.

(Episode Runtime: 1:38)

Direct YouTube Link: https://www.youtube.com/watch?v=NJ5ploC4nzY


— Corey Nachreiner, CISSP (@SecAdept)

Apple Flaws and Cyber Sanctions – WSWiR Episode 163

Are you interested in the latest security news, but have no time to source it yourself? No problem! Let our weekly video summarize the latest for you in ten minutes or less. If you want to watch the video Friday, subscribe to our YouTube channel. Otherwise, we’ll post the weekly episode on the first day of the following week.

This week’s “traveling” episode included a story about US cyber sanctions, two different threats to Apple products, and news of a security breach to Mozilla’s bug tracking system. Watch below, and check out the references for more of last week’s infosec news.

(Episode Runtime: 7:55)

Direct YouTube Link: https://www.youtube.com/watch?v=sJ993RVG48s



— Corey Nachreiner, CISSP (@SecAdept)

Mozilla Hacked – Daily Security Byte EP.137

Mozilla’s bug tracking system has been breached for at least a year. This means attackers have had access to zero day Firefox vulnerabilities. Watch today’s video to learn what this means, and what you should do.

(Episode Runtime: 1:40)

Direct YouTube Link: https://www.youtube.com/watch?v=fRVqaFgZ1uo


— Corey Nachreiner, CISSP (@SecAdept)


Get every new post delivered to your Inbox.

Join 8,146 other followers

%d bloggers like this: