True to form, cyber security continues its domination of technology and mainstream news. Ransomware continues to strike, using different techniques such as Locky’s recent spread through social media, or attacking targets like the San Francisco Municipal Transport Agency.
Password reuse attacks continue to grow. From Deliveroo’s attack a couple of weeks ago, to the UK’s National Lottery this week.
It’s another crazy week - with many “Shatners” thrown in for good measure.
In This Weeks Video
Locky spreads through social media
http://www.technewsworld.com/story/Facebook-Denies-Ransomware-Infiltration-84115.html
San Francisco Municipal Transport agency gets hit by ransomware
http://www.itbusinessedge.com/blogs/data-security/san-francisco-muni-ransomware-attack-should-be-a-warning-to-critical-infrastructure.html
National Lottery accounts breached
http://www.bbc.co.uk/news/technology-38155710
Other interesting stories
PhishLulz is a Ruby toolset aimed at automating Phishing activities:
https://github.com/antisnatchor/phishlulz
Syscall Auditing at Scale
https://slack.engineering/syscall-auditing-at-scale-e6a3ca8ac1b8#.3h0v8zfmr
Security operations centre (SOC) buyers guide
https://www.ncsc.gov.uk/guidance/security-operations-centre-soc-buyers-guide
InPage zero-day exploit used to attack financial institutions in Asia
https://securelist.com/blog/research/76717/inpage-zero-day-exploit-used-to-attack-financial-institutions-in-asia/
Generate Geolocation map using WireShark
http://www.kalitut.com/2016/11/geoip-map-wireshark.html
Brief lessons on handling huge traffic spikes
https://www.troyhunt.com/brief-lessons-on-handling-huge-traffic-spikes/
WiFi Frequency hacker
https://github.com/singe/wifi-frequency-hacker