. Jul - 15 Patches – 5 Critical - 60 CVEs MS15-058 - SQL Server, Remote Code MS15-065 - Security...
16
-
Upload
alice-davis -
Category
Documents
-
view
234 -
download
0
Transcript of . Jul - 15 Patches – 5 Critical - 60 CVEs MS15-058 - SQL Server, Remote Code MS15-065 - Security...
• Jul - 15 Patches – 5 Critical - 60 CVEs
• MS15-058 - SQL Server, Remote Code• MS15-065 - Security Update for IE• MS15-066 - VBScript Scripting Engine, Remote Code • MS15-067 - RDP, Remote Code • MS15-068 - Windows Hyper-V, Remote Code • MS15-069 - Windows, Remote Code • MS15-070 - Microsoft Office, Remote Code • MS15-071 - Netlogon, Privilege Escalation• MS15-072 - Windows Graphics Component, Privilege Escalation• MS15-073 - Windows Kernel-Mode Driver, Privilege Escalation • MS15-074 - Windows Installer Service, Privilege Escalation • MS15-075 - OLE, Privilege Escalation• MS15-076 - Windows Remote Procedure Call, Privilege Escalation• MS15-077 - ATM Font Driver, Privilege Escalation• MS15-078 - Microsoft Font Driver, Remote Code
Patch Tuesday
Patch Tuesday• Aug - 14 Patches – 4 Critical - 58 CVEs
• MS15-079 - Cumulative Security Update for IE• MS15-080 - Microsoft Graphics Component, Remote Code• MS15-081 - Microsoft Office, Remote Code• MS15-082 - RDP, Remote Code• MS15-083 - Server Message Block, Remote Code • MS15-084 - XML Core Services, Information Disclosure• MS15-085 - Mount Manager, Privilege Escalation• MS15-086 - System Center Operations Manager, Privilege Escalation• MS15-087 - UDDI Services, Privilege Escalation• MS15-088 - Unsafe Command Line Parameter Passing, Information Disclosure • MS15-089 - WebDAV, Information Disclosure • MS15-090 - Microsoft Windows, Privilege Escalation• MS15-091 - Cumulative Security Update for Microsoft Edge• MS15-092 - .NET Framework, Privilege Escalation
• Oracle– 193 fixes
• Adobe– APSB15-16 Flash Player (37 CVE) – APSB15-18 Flash Player (2 CVE) – APSB15-19 Flash Player (35 CVE)
• Apple– 0
• Cisco– TelePresence– Videoscape– Virtual WSA, ESA, SMA (default ssh
keys)– FireSIGHT (XSS)– WebEx
• VMWare– VMSA-2015-0005 (1 CVE)– Workstation/Player/Horizon View
Holes / Patches
• IE 0-day
• MS out-of-band patch, MS15-078
• Win 10 to virtualize LSA
• win10 release
• qualys
• Xen exscape flaw
• tweetable mac exploit
• apple invoice vuln
• mac firmware worm
• mac dyld vuln
Mucho G
rande
• LandRover door unlock bug
• jeep killer– Recall on 1.4 mil models with Uconnect
• GM on-star
• new list of pervs
• malware + barphone = tempest
• square skimmer
• stealing never pays
Hacking
• ProxyHam box dies in dev
• CVS Photo Kiosk
• Walmart CA
• BestBuy giftcards
• United now rewarding hackers
• fireeye intern busted
• cloudflare transparency report
• Adobe teams up with google for flash security
• netragard shuts down exploit acquisutions
• vupen creates new co Zerodium
• opendns to launch bgp twitter feed
• FTC Charges Lifelock with deception Corp
• MS to acquire Adallom
• UCLA Health sued for 4.5mil person breach
• MIE healthcare breach 3.9mil
• Can Epson get printers right?!
• bitdefender popped
• google / samsung to begin monthly patching
Corp
• Govt enters vuln disclosure debate
• new car legislation expected
• German declares treason on netzpolitik.org
• nist sha-3
• FDA says stop using pump
Govt
Palo Alto Security Canon
https://paloaltonetworks.com/threat-research/cybercanon.html
New DNT initiative
https://www.eff.org/dnt-policy
WebApp stuff
https://www.sans.org/reading-room/whitepapers/testing/tunneling-pivoting-web-application-penetration-testing-36117
Dissecting the Hack: The V3rboten Network
Papers
WTF
Smart Safe with external usb port
hack my rifle (or just learn to shoot)
Mozilla InvestiGator (mig)http://mig.mozilla.org/
PSReconhttps://github.com/gfoss/PSRecon/
Lockheed Laika BOSS (+paper)(malware analysis)
http://github.com/lmco/laikaboss
powershell empirehttps://github.com/powershellempire/empire
privacy badger 1.0
MS ATA (Advanced Threat Analytics)
ctf365 2014 survey(85% of us use the same 5 tools)
“Milano” hacking team malware detection utility
Hackerslist.comyour're doing it wrong!
change grades in highschool
$500.00 to $2,000.00
vs
Change Grades from University
$100.00 to $500.00
regripper
https://code.google.com/p/regripper/
shellbags explorer
Kansa(powershell ir framework)
https://github.com/davehull/Kansa
BlackHat
Chrysler vulns to be discussed
Hardware hacking
Cylance "no sandbox" machine learning malware detection
BGP??
Wearable IoT (who wears a fitbit but refuses to use FB?)
door badge skimming
BSidesLV
DefCon 23
Cons Past
• SCADA Nexus 2-3 Sep
• Hacker Halted 13 Sep
• DerbyCon23-27 Sep
• IT Security one2one Summit 4-6 Oct
• Root-66 3 Nov
• B-Sides DFW 7 Nov
Cons Future
DHA( 1st Wednesday / Tavern on Main, richardson )
TX2600( 1st Fri / Wild Turkey 35&WalnutHill, dallas )
(1st Fri / 1418 Coffeehouse, plano)
The Lab.MS( 2nd Monday / varies, plano )
Crypto Party( 3rd Thursday / Improving Enterprises, addison )
NAISG( 4th Thursday / CrossPointe Theatre, carrollton )
LockPick DFW( we want to think it exists )
Dallas MakerSpaceRandom / carrollton
Local
All images scavenged without permission
All images scavenged without permission
