Security News #0001
- Scribd got hacked this week putting almost 1 million passwords at risk. If you use Scribd, you should update your password.
- The National Institute of Standards and Technology is working on putting together a Cybersecurity Framework. The President would like you to provide insight as well.
- There is an Adroid Trojan on the loose. The good folks over at Dell have a nice analysis of the situation.
- Last week news broke that Microsoft was releasing 9 patches which is nothing new. This week, we find out that one is a fix for MS13-035 which has previously been exploited in the wild.
- Blackwing Intelligence has a nice post about the Postgres exploit that got fixed last week.
- At the Hack In The Box conference this week, Hugo Teso gave a presentation about how to hack an airplane.
- Do you use Skype? Phrozensoft has an interesting piece about how to socially engineer your way into other accounts. Of course, with all the other Skype vulnerabilities out there this one is just another drop in the bucket.
- John Graham-Cumming has finally figured out a way that Bob can outsmart Alice’s attempts at security. While the concept of rainbow tables isn’t new, this is one of the best pieces I’ve found about them.