Our research team put together a list of the most interesting cybersecurity stories from the past week. Here are our recommendations of the latest industry news you need to know:
Researcher Finds Hole in Windows ASLR Security Defense: https://www.darkreading.com/vulnerabilities—threats/researcher-finds-hole-in-windows-aslr-security-defense/d/d-id/1330466
GOLDEN SAML attack technique forges authentication to cloud apps: http://securityaffairs.co/wordpress/66002/hacking/golden-saml-hacking.html
Fast and Furious Data Breach Scandal Overtakes Uber: https://www.bankinfosecurity.com/blogs/fast-furious-data-breach-scandal-overtakes-uber-p-2565
Necurs’ Business Is Booming In A New Partnership With Scarab Ransomware: https://labsblog.f-secure.com/2017/11/23/necurs-business-is-booming-in-a-new-partnership-with-scarab-ransomware/
Hackers hit Sacramento transit system, demand money to stop attack: https://www.helpnetsecurity.com/2017/11/21/sacramento-regional-transit-hack/
A fake antivirus blog is distributing a new variant of the Proton malware for Mac OS X: https://www.intego.com/mac-security-blog/watch-out-a-fake-antivirus-blog-is-distributing-proton-malware/
Learn about the main methods for delivering new malware variants, and how we recommend to evaluate endpoint security solutions in our new white paper.