Windows, Smart Lock, & iPhone Hackers – Application Security Weekly #20 | SC Media
DevOps

Windows, Smart Lock, & iPhone Hackers – Application Security Weekly #20

June 22, 2018
In the news, Microsoft Windows remote kernel crash vulnerability, another flaw hits Tapplock smart locks, cops aren't confident iPhone hackers found a workaround to Apple's new security feature Spain's La Giga app caught using fans' phone mics and GPS to detect illegal Futebol broadcasts, & more on this episode of Application Security Weekly!

News

Bugs, Breaches, and More!
1.) Decades-old PGP bug allowed hackers to spoof just about anyone’s signature 2.) Microsoft Windows Remote Kernel Crash Vulnerability 3.) Another flaw hits Tapplock smart locks, thanks to leaky server 4.) Security Advisory 2018-03-02 – WebUSB Bypass of U2F Phishing Protection Exploit demoed at OffensiveCon prior to Yubico disclosure
If you build it, they will come
1.) Cops Are Confident iPhone Hackers Have Found a Workaround to Apple’s New Security Feature 2.) Spain's La Liga app caught using fans' phone mics and GPS to detect illegal football broadcasts 3.) Server-Side Spreadsheet Injection – Formula Injection to Remote Code Execution 4.) Want to Break Into a Locked Windows 10 Device? Ask Cortana (CVE-2018-8140)
Food for Thought
1.) VueJS passes ReactJS in GitHub stars 2.) Securing the cloud in the face of skills shortages 3.) How to Build a Successful Career in Cybersecurity 4.) On the Myth of the 10X Engineer and the Reality of the Distinguished Engineer 5.) Why Expos are Great
Paul's Stories
  1. The Shift Left Approach to DevOps Security
  2. DevOps Security: Its Everyones Responsibility Now
  3. Securing DevOps Without Undermining It
  4. How Aqua Security is Helping to Secure Docker Containers
Full Show Notes Follow us on Twitter: https://www.twitter.comsecurityweekly [audio src="http://traffic.libsyn.com/aswaudio/Windows_Smart_Lock__iPhone_Hackers_-_Application_Security_Weekly_20_converted.mp3" ]
prestitial ad