Posts made by Nic

https://www.theregister.co.uk/2020/02/07/android_bluetooth_flaw/

or turn of Bluetooth until you can get the patch. Arbitrary code can be run via the bluetooth module.

We just got a new funding round so that we can grow faster and build more cool stuff!
https://blog.automox.com/how-30m-in-series-b-funding-accelerates-our-mission

And it means I still get paid for a while

@JaredBusch my bet is the NSA was using it, but now some other nation state has found it and is using it. Which is why NSA now wants us all to patch it.

Here's the full story:
https://www.washingtonpost.com/national-security/nsa-found-a-dangerous-microsoft-software-flaw-and-alerted-the-firm--rather-than-weaponize-it/2020/01/14/f024c926-3679-11ea-bb7b-265f4554af6d_story.html

https://krebsonsecurity.com/2020/01/cryptic-rumblings-ahead-of-first-2020-patch-tuesday/

Krebs has the scoop on the rumors, as usual.

@black3dynamite true, you just have to make sure everyone restarts their FF!

Mozilla has announced a security advisory for Firefox 72.0.1 and Firefox ESR 68.4.1 centered around an actively exploited vulnerability that could potentially allow attackers to exploit and abuse unpatched machines, including the ability to execute local code and kill processes. This update comes just days after the release of the last version of Firefox and Firefox ESR.

Details:
https://www.mozilla.org/en-US/security/advisories/mfsa2020-03/

@stacksofplates said in Ruh roh - social engineering at its finest:

@Nic said in Ruh roh - social engineering at its finest:

Fun fact - that's the town in Colorado where I live. Guess we'll be getting fewer potholes fixed this winter.

Ha I didn't read the full location because I just assumed it was Erie, PA which is like 2 hours north of me.

Our town motto is "the other Erie"

I just heard that Erie does have insurance for this sort of thing, so they'll get some of the money back.

Fun fact - that's the town in Colorado where I live. Guess we'll be getting fewer potholes fixed this winter.

Counterclockwise? (sorry couldn't resist)

suuuuuuuuuuu.......doooooooooooooooooo

I picked up Divinity Original Sin 2 on sale, for the Switch. It's good, but hard!

Finally started on Borderlands 3. It's more Borderlands, which is just fine with me.

@Dashrender one interesting tidbit from the Brian Krebs talk at SpiceWorld 2019 was him talking about how hackers typically take a couple weeks to surveil the landscape before executing their payload. Them getting in and then taking time to reinforce their toehold into the environment sounds like it's the norm now.

@DustinB3403 clearly they need a SIEM!

@DustinB3403 said in ANU hacked by phishing email through the preview pane:

@Nic said in ANU hacked by phishing email through the preview pane:

@nadnerB said in ANU hacked by phishing email through the preview pane:

Here's a better article: https://www.itnews.com.au/news/anu-hackers-built-shadow-ecosystem-to-stay-hidden-for-six-weeks-531803

Here's the link straight to the PDF of the report that has all the details in it:
http://imagedepot.anu.edu.au/scapa/Website/SCAPA190209_Public_report_web_2.pdf

Wow they were able to boil the entire incident to 20 pages!

It's got diagrams too!

@nadnerB said in ANU hacked by phishing email through the preview pane:

Here's a better article: https://www.itnews.com.au/news/anu-hackers-built-shadow-ecosystem-to-stay-hidden-for-six-weeks-531803

Here's the link straight to the PDF of the report that has all the details in it:
http://imagedepot.anu.edu.au/scapa/Website/SCAPA190209_Public_report_web_2.pdf

@wrx7m I knew it was an issue back in the day, but I didn't realize it had resurfaced over the years.

https://10daily.com.au/news/australia/a191002eazpk/state-of-the-art-cyber-attack-on-australian-uni-shocks-experts-20191002

No clicking on links or downloading attachments required - they payload got executed just by being previewed. No mention of what email client they were using yet.