Columbia, MO Memorial Union

MOREnet Security News Review -- May 5 - 9, 2014

Friday, May 9, 2014

WEEKLY THREAT RESOURCE SITE

TippingPoint Zero Day Initiative
 

KNOW YOUR ENEMY – THREAT ID OF THE WEEK

Ever heard of Sefnit?  – Sefnit is a family of malware that uses infected computers for click fraud and bitcoin mining. “Check out the following links for more information.
Sefnit Accomplices Account for Spike in Malware Infections
Sefnit Click Fraud Malware Drops Tor for SSH, Facebook Researchers Say
Tackling the Sefnit botnet Tor hazard
Examining Your Very Own Sefnit Trojan
Sefnit Botnet Swaps Tor for SSH
 

TOP HEADLINES THIS WEEK

SANS OUCH! May 2014
Twitter rolls out mute feature for when you need to stealthily block someone
Facebook, Google, Twitter and thousands more websites’ Login Protocols Hacked – There is not any FIX for that!
Automated Traffic Log Analysis: A Must Have for Advanced Threat Protection
Report shows major spike in malicious emails at year’s start
Confessions of a LinkedIn Imposter: We Are Probably Connected
Syrian Electronic Army Hijacks WSJ Twitter Accounts
Bot Born Every 24 Hours
1 In 10 US Smartphone Users Victims of Theft
Silly sysadmins ADDING Heartbleed to servers
 

VULNERABILITIES AND PATCHES

Microsoft Security Bulletin Advance Notification for May 2014
US-CERT Vulnerability Summary for the Week of May 5, 2014
Microsoft patches Heartbleed in Windows 8.1 VPN client
Dropbox Patches Shared Links Privacy Vulnerability
Ruby on Rails Updated to Prevent Hackers from Stealing Files from Application Server
Windows Authentication Protocol Allows Deactivated User Accounts to Live On: Report
Multiple Vulnerabilities in the Cisco WebEx Recording Format and Advanced Recording Format Players
 

HOW DO THEY DO THAT?

What is a hash? (2a2c2075f67a55e2f170b9af7e2212d0cc9f70f9)
Watch a bank-raiding ZeuS bot command post get owned in 60 seconds
 

SECURITY TOOLBOX

Cuckoo Sandbox 1.1
John McAfee Releases Secure Anti-Surveillance Massaging App ‘Chadder’
ModSecurity v2.8.0 – Open Source Web Application Firewall
Volafox MAC OS X Memory Analysis Toolkit
Tor Browser v3.6 Released
Instagram Password Decryptor
WPScan v2.4 Released
 

FEATURED SERVICE

Mobility Management with AirWatch by VMware – MOREnet is pleased to offer members discounted device licenses for the AirWatch by VMware hosted solution suites as well as optional discounted setup assistance from the AirWatch team.. Check out the following link for additional features and benefits. http://www.more.net/services/mobility-management
 

UPCOMING TRAINING AND EVENTS

  1. Aerohive Certified Wireless Administrator (ACWA) First-level WLAN essentials training course – Tuesday, May 13, 2014 – Wednesday, May 14, 2014 --  Designed for network professionals responsible for managing and supporting wireless LAN networks, this extensive course will provide you with the information and skills necessary to gain an understanding of Aerohive’s cooperative control WLAN architecture. Learn best practices in designing and optimizing an Aerohive WLAN. Configure and manage Aerohive Access Points, and HiveManager. Troubleshoot routine problems in your wireless environment. Click here to register for this event.
  2.  Aerohive Certified Wireless Professional (ACWP) Second-level advanced WLAN training course --  Thursday, May 15 – Friday, May 16, 2014 -- This course is designed for experienced Aerohive customers and partners seeking to learn about advanced configuration, troubleshooting, and WLAN design and integration. Click here to register for this event.
  3. Security Roadshow! – MOREnet Security is excited to hit the road again this summer to bring the 2014 Security Roadshow to a location near you.  Since we’re making the rounds in June this year, we decided to take a slightly different approach and are going to focus on different aspects of the current threat landscape – from a MOREnet member’s perspective – and what you can do to better protect/secure your organization.  We also hope you’ll take the opportunity during each session to share best practices and brainstorm solutions with MOREnet members in your part of the state.
    • Roadshow Dates and Locations:
    • Tuesday, June 3 - Houston R-1 School District
    • Wednesday, June 4 - Wentzville R-IV School District
    • Tuesday, June 10 - Moberly Area Community College
    • Wednesday, June 11 - Mid-Continent Public Library, Kansas City
    • Thursday, June 12 - Online Webinar
    • Click this link to register

Do you know of any upcoming security-related training events?  Please send them to security@more.net for inclusion in this newsletter.
 

SECURITY AWARENESS TIP OF THE WEEK

Teaching Security Awareness – Need some pointers on how to effectively teach security awareness to your end users? Check out the following links for some great tips on how to do just that.
 
A Security Awareness Short List from SANS
The 7 elements of a successful security awareness program
9 tips, tricks and must-haves for security awareness programs