Costin Raiu and Juan Andres Guerrero-Saade talk to Mike Mimoso live from Virus Bulletin in Madrid about APTs leveraging one anothers' attacks and compromised machines as their own.
The credit bureau Equifax said Monday the information of 145.5M Americans, was implicated in this summer's breach.
https://threatpost.com/equifax-says-145-5m-affected-by-breach-ex-ceo-testifies/128247/
The FBI can keep details around how much it paid and which company it hired to unlock a terrorist's iPhone 5C in 2016 secret, the court ruled over the weekend.
https://threatpost.com/judge-fbi-can-keep-iphone-crack-and-price-secret/128222/
Software security pioneer Gary McGraw talks to Mike Mimoso about the latest iteration of the Building Security In Maturity Model (BSIMM) report.
https://threatpost.com/gary-mcgraw-on-bsimm8-and-software-security/128220/
Industrial manufacturer Siemens is encouraging users running devices that use its Ruggedcom protocol to apply firmware updates this week. The updates resolve a serious and remotely exploitable vu...
https://threatpost.com/siemens-patches-improper-access-vulnerability-in-ruggedcom-protocol/128214/
The macOS Keychain attack, Signal's new private contact discovery service, the Deloitte hack, and a handful of mobile stock trading app vulnerabilities are discussed.
https://threatpost.com/threatpost-news-wrap-september-29-2017/128200/
Digital civil liberty activists with Fight for the Future and Free Press were hit with a phishing emails designed to steal business credentials earlier this summer.
https://threatpost.com/civil-liberties-activists-hit-by-phishing-campaign/128190/
Signal is testing out a new private contact discovery service that will let the app determine if a user has Signal contacts in their address book, but forbid its servers from accessing the users�...
https://threatpost.com/signal-testing-new-private-contact-discovery-service/128167/
Oracle released fixes for a handful of recently patched Apache Struts 2 vulnerabilities late last week.
https://threatpost.com/oracle-patches-apache-struts-reminds-users-to-update-equifax-bug/128151/
Deloitte, one of the "big four" global accounting firms, admitted it fell victim to a cyber attack last year but downplayed the incident on Monday saying it only affected a few of its high profil...
https://threatpost.com/deloitte-very-few-clients-impacted-by-cyber-attack/128129/