Week of Security – November 10th

Netflix phishing attempts making the rounds

Watch out for the latest go round of phishing against your Netflix account or finishing up that season of Stranger Things may have to wait.

https://www.wired.com/story/netflix-phishing-scam/

Logitech to brick devices

A news story is making the rounds with a running controversial action: bricking devices from afar on purpose they don’t own. Sometimes bricking is accidental. But in certain cases companies are taking proactive action, sending firmware to ‘self destruct’ the device, minus the puff of smoke seen in Mission Impossible.

https://www.engadget.com/2017/11/09/logitech-will-brick-harmony-link-in-march/

Android patches KRACK vulnerability, but not for all devices

Although much of the news reveals Android has a patch for the KRACK attack, Pixel and Nexus excluded. The point of the article I’ve linked is a similar question I’ve had. How big of a deal is the KRACK attack, at least for certain systems. The article goes on to say Google builds in a number of security components outside of WPA2 because a public wifi connection is in many ways the same as someone breaking the WPA2 protocol. I posted an article warning against public wifi regardless of the KRACK attack as well.

https://arstechnica.com/gadgets/2017/11/pixel-wont-get-krack-fix-until-december-but-is-that-really-a-big-deal/

Bill introduced to require paper receipts for recounting

Going paperless may take a step back if this bill gets passed. I suppose results would only have to be kept until the winner and loser was declared. It still would introduce the necessity of new hardware voting groups would have to manage for inventory. That’s cost, upkeep, and inventory management. If the bill’s parameters were met the paperwork would of course be kept longer. I couldn’t find much on how long those papers would need to be kept.

https://debbiedingell.house.gov/media-center/press-releases/dingell-introduces-legislation-safeguard-us-election-infrastructure

http://thehill.com/policy/cybersecurity/359368-dem-rep-bill-would-require-paper-voting-recounts-in-close-elections

Man arrested after using for hire DDoS against former employer

These kinds of choices definitely stunt career growth. It’s a new kind of outsourcing. Logic bombs used to be the normal way of getting out your anger. Is your revenge to-do list getting too long? Delegate some of those tasks you just haven’t had the time for.

https://www.bleepingcomputer.com/news/security/man-uses-ddos-for-hire-services-to-attack-former-employer-taunts-firm-via-email/

Subscribe to receive regular security news and more!

Leave a Reply

Your email address will not be published. Required fields are marked *