Top News

• China now requires face scans to sign up for phone service

"It's meant to enforce rules, but it's also another blow to privacy."

https://www.engadget.com/2019/12/01/china-requires-face-scans-for-mobile...

TLP¹ : Green

• World-first mobile phone detection cameras rolled out in Australia

"New South Wales hopes to cut fatalities on the state’s roads by a third with devices that operate day and night in all weather"

https://www.theguardian.com/world/2019/dec/01/world-first-mobile-phone-d...

TLP¹ : Green

• TrueDialog database leaked online tens of millions of SMS text messages 

"Millions of SMS messages have been leaked by a database run by TrueDialog, a business SMS provider for businesses and higher education providers."

https://securityaffairs.co/wordpress/94593/data-breach/truedialog-data-l...

TLP¹ : Green

Cybersecurity State: Surveillance, Cyberwarfare, Cybercriminality and Hacktivism

• Concerns Mount as Israel Eases Rules on Cyber Weapons for Cyber Espionage

"Israel’s Defense Ministry is easing its rules on the marketing and export of both offensive and defensive cyber weapons, and that is causing consternation amongst global cyber security experts and human rights groups."

https://www.cpomagazine.com/cyber-security/concerns-mount-as-israel-ease...

TLP¹ : Green

• Global Cops Shut Down Notorious RAT

"Global police executed 85 warrants last week in a coordinated operation to shut down notorious remote access Trojan (RAT) Imminent Monitor."

https://www.infosecurity-magazine.com/news/global-cops-shut-down-notorio...

TLP¹ : Green

Breaches: Data Breaches and Hacks

• SAP Blunder Exposes Gun Owners’ Personal Data

"SAP has been forced to apologize after an internal error leaked the personal data of tens of thousands of gun owners to dealerships in New Zealand."

https://www.infosecurity-magazine.com/news/sap-blunder-exposes-gun-owners/

TLP¹ : Green

Vulnerabilities: Vulnerability Advisories, Zero-Days,Patches and Exploits

• Hospitality spends least on cyber-security shows sector-by-sector report

"Despite repeated data breaches and hacking attempts, firms in the food and hospitality sector have spent the least on cyber-security in 2018-19, says a research report; unsurprisingly, finance tops the spend table."

https://www.scmagazineuk.com/hospitality-spends-least-cyber-security-sho...

TLP¹ : Green

Incident Response: Infrastructure, Training, SIEM and Incident Handling

• Cybersecurity certification: lifting the EU into the cloud

"A candidate cybersecurity certification scheme for cloud services is in the works by ENISA, the European Union Agency for Cybersecurity."

https://www.enisa.europa.eu/news/enisa-news/cybersecurity-certification-...

TLP¹ : Green

Technical Articles: Forensics, Reverse Engineering, Malware, Phishing, Pentesting, Software Security and Cryptography

• ANDRAX v4 DragonFly - Penetration Testing on Android

"ANDRAX is a Penetration Testing platform developed specifically for Android smartphones, ANDRAX has the ability to run natively on Android so it behaves like a common Linux distribution, But more powerful than a common distribution!"

https://www.kitploit.com/2019/12/andrax-v4-dragonfly-penetration-testing...

TLP¹ : Green

¹Traffic Light Protocol (TLP) [1] for information sharing:

• Red:Not for disclosure, restricted to participants only.
• Amber: Limited disclosure, restricted to participants organizations.
• Green: Limited disclosure, restricted to the community.

[1]https://www.first.org/tlp