Risk Radar Free Cyber Newsletter – Aug 1, 2017

Cyber Security Newsletter

Emergent threats, trends, and news annotated by some of the most well known and respected experts in the industry.

Voting Machines Hacked with Ease at DEF CON
30 plus voting machines did not fare well when a group of Def Con hackers tried to break into them. They needed only 90 minutes to find exploits in every voting machine. There was an expectation the voting machines would take longer to exploit. These results highlight the need for better security on our voting machines
SMBs Are Ignoring the Ransomware Threat- Report
Small and medium businesses (SMB) seem to be ignoring the ransomware threat according to Webroot. The report shows an interesting state where businesses acknowledge they are not fully prepared for ransomware but express confidence their security staff can handle it.

Microsoft patches memory corruption and information disclosure vulnerabilities
Microsoft has patched two vulnerabilities in Office Outlook. The memory corruption vulnerability and information disclosure vulnerability have not been publicly exploited. Microsoft has not given any work arounds, they recommend getting Outlooks updated to address these exploits.

Legislation Proposed to Secure Connected IoT Devices
A bipartisan bill is being introduced in the Senate to secure IoT devices. The bill would mandate a security baseline, including a method for secure security updates. White hat researches would be exempted from Computer Fraud and Abuse Act and the Digital Rights Millennium Act. They could look for vulnerabilities and not worry about potential liabilities.
Hackers Leak Game of Thrones After HBO Hack
HBO has been attacked, resulting in the alleged loss of Game of Thrones scripts and other HBO show episodes. All kinds of data can be a tempting target to attackers. Businesses would be advised to look at the value of their data and protect it accordingly.
International Threat Intelligence and Info-Sharing Surges in 2017
The increase for threat intelligence translations is an indication of increased global information sharing. Countries all over the globe are trying to get the latest and best threat intelligence information due to the current global malware threats.