Weaknesses in DEP, Apple's free service for remote enterprise device management, may give attackers access to the network by guessing serial numbers of devices
John Leyden / The Register :
Kaspersky Lab says it's found an Android spying app, likely by Italian vendors, that relies on five exploits to gain root access and can steal WhatsApp messages
a Hollywood-style mobile spy Ryan Whitwam / Android Police : Kaspersky details super-advanced ‘Skygofree’ Android trojan Thomas Fox-Brewster / Forbes : One Of The ‘Most Powerful’ Android Spyware Tools...
New “Bad Rabbit” ransomware targets corp networks in Ukraine, Turkey, Germany, infects devices through hacked Russian media sites using NotPetya type methods
There is a connection between Bad Rabbit and Not Petya Waqas / HackRead : Bad Rabbit ransomware spreading like wildfire but there is a way out Dell Cameron / Gizmodo : ‘Bad Rabbit’ Ransomware Strikes ...
Researchers find alarming number of Macs remain vulnerable to stealthy hacks due to outdated EFI firmware; Windows and Linux PCs are also likely at risk
Even With Updated Software Bryan Clark / The Next Web : Report: Countless PCs vulnerable to newly discovered firmware attack [Update] Paul Wagenseil / Tom's Guide : Many Macs Can Be Hacked by Firmware...
Global accounting firm Deloitte confirms report that it was breached, downplays impact; source: it affected all company email, admin accounts, occurred in 2016
U.S. government agencies … William White / InvestorPlace : Deloitte Data Hack 2017: Clients' Secret Emails Exposed Michael Moore / IT ProPortal : Deloitte hit by major cybersecurity breach Mohit Kumar...
Researchers say Crash Override, which took down Ukraine's power grid, is the only known malware to have attacked physical infrastructure other than Stuxnet
hard Wall Street Journal : Cyber Experts Identify Malware That Could Disrupt U.S. Power Grid Kevin Billings / Tech Times : CRASHOVERRIDE: Malware That Took Down A Ukraine Power Grid? Inquirer : Indust...
After failing to get 10K bitcoins for stolen NSA exploits, Shadow Brokers post farewell message, dump a cache of Windows hacking tools online
k You’ Brian Barrett / Wired : Security News This Week: Hackers Hack a Major Dealer of Hacking Tools Robert Lemos / eWeek : Hacker Group ‘ShadowBrokers’ Release NSA Exploits After Auction Fails Joseph...
Lizard Squad's LizardStresser hacked and customer details made public
DDoS service operated by Lizard Squad gets hacked, user data leaked Andrew Griffin / The Independent : Lizard Squad's cyberattack tool hacked, customer details leaked Anna Brading / Naked Security : L...