previous gnews. aug - 4 patches – 1 critical - 42 cves ms14-052 – ie cumulative security update,...
TRANSCRIPT
PREVIO
US G
NEWS
• Aug - 4 Patches – 1 Critical - 42 CVEs
•
• MS14-052 – IE Cumulative Security Update, Remote Code
• MS14-053 – .NET Framework, DoS
• MS14-054 – Task Scheduler, Privilege Escalation
• MS14-055 – Lync Server, DoS
• MS14-045 – Re-Released / Kernel Mode Drivers
Other updates, MSRT, Defender Definitions, Junk Mail Filter
Patch Tuesday
• Oracle– Due in Oct
• Adobe– APSB14-20 Reader and Acrobat – APSB14-21 Adobe Flash Player
• Apple, – Safari 6.1.6 and 7.0.6
• Cisco– Cisco Intelligent Automation for
Cloudm multiple vulns– IOS XR DHCPv6 and IPv6, DoS
Holes / Patches
• Malvertising– Amazon, youtube, yahoo….
• Something happened on iCloud– #celebgate
• Wordpress– DoS / Auth Bypass
• Breaches– Communitty Health 4.5 mil
– Healthcare.gov
– Home Depot ??
– Google 5 mil
Hacking
Baseline Activity for Memory Forensicshttps://www.sans.org/reading-room/whitepapers/forensics/creating-baseline-process-activity-
memory-forensics-35387
Botnet Tracking Toolshttps://www.sans.org/reading-room/whitepapers/detection/botnet-tracking-tools-35347
f
Papers
Govt
• MS refuses to give email to feds
• Apple released some new crapCorp
VulnPryer
(then go watch Kyle and Alex’s talk)
Combine and TIQ-Test
Tools
• B-Sides Memphis – Sep 13
Multiple DC214 speakers
• ToorCon – Oct
• B-Sides Houston - Oct
• B-Sides DFW – Nov
Cons
DHA( 1st Wednesday / Allen Wicker Pub, plano )
TX2600( 1st Fri / Wild Turkey 35&WalnutHill, dallas )
(1st Fri / 1418 Coffeehouse, plano)
The Lab.MS( 2nd Monday / Allen Wicker Pub, plano )
Crypto Party( 3rd Thursday / Improving Enterprises, addison )
NAISG( 4th Thursday / CrossPointe Theatre, carrollton )
LockPick DFW( Last Monday / Trinity Hall, dallas )
Dallas MakerSpaceRandom / carrollton
Local
All images scavenged without permission
All images scavenged without permission