Security Alerts & News
by Tymoteusz A. Góral

History
#79 Windows exploitation in 2015 (PDF)
New security features in Google Chrome and Microsoft Edge, information about
Hacking Team exploits, and new features of Microsoft's Enhanced Mitigation Experience Toolkit (EMET)
#78 The best antivirus software for Windows Client Business User (TEST)
#77 Moment of truth: Feds must say if they used backdoored Juniper firewalls
Congressional oversight leaders are requiring most federal agencies to audit their networks to see if they use Juniper-manufactured firewalls that for four years contained an unauthorized backdoor for eavesdropping on encrypted communications.
#76 Privilege Escalation (SYSTEM) via Dolby’s DAX2_API Service (Windows 10)
Dolby’s DAX2 API ships with insecure file permissions giving the ability to get SYSTEM on (in this case), Windows 10 on a Lenovo Thinkpad.
#75 Amazon’s customer service backdoor
The attacker gave Amazon fake details from a whois query, and got real address and phone number in exchange. Now they had enough to bounce around a few services, even convincing a bank to issue them a new copy of Credit Card.
#74 Israel's electric grid targeted by malware, energy minister says
Israel's Minister of Infrastructure, Energy and Water, Yuval Steinitz, told CyberTech 2016 attendees on Tuesday that the country's Public Utility Authority had been targeted by malware, and that some systems were still not working properly. "Yesterday we identified one of the largest cyber attacks that we have experienced," Steinitz said.
History
2017: 01 02 03 04 05
2016: 01 02 03 04 05 06 07 08 09 10 11 12