Inside | Real news, curated by real humans
Inside Security

Inside Security (Oct 9th, 2018)

Today’s premium story contains the details about the end of Google+, how it happened and what it means for keeping your Google stuff secure. If you would like to subscribe and receive this content, it will cost you $10/month for my newsletter or $25/month for unlimited subscriptions to multiple newsletters, with corporate discounts available. The premium stories will have more depth and my analysis, and you will also get your newsletters without any ads. Click on this link here to upgrade your account.  

-- David Strom

  • Email gray
  • Permalink gray

1. Google failed to disclose a huge breach of its Plus social network last spring. The breach began in 2015 and could have compromised half a million users’ accounts. The company will shutter Plus next summer as a result. We have more details in our premium story below. -- GOOGLE BLOG

  • Email gray
  • Permalink gray

2. Securing DNS isn’t simple. A new protocol, DNS over TLS, looks promising but has some issues, especially with its built-in browser support. -- HP ENTERPRISE.NXT BLOG

  • Email gray
  • Permalink gray

Learn about the state of hacker-powered security in a new 2018 study analyzing 78,000+ security vulnerabilities reported to 1,000+ companies. Explore why more and more companies flag critical vulnerabilities in a cost-effective and high-ROI way.

CLICK HERE for the Free Report. 

3. Here is a worthwhile review of the top two OWASP risks. It covers preventing injection and broken authentication threats, and eventually will have other articles describing the rest of the top 10 list. -- SUCURI BLOG

  • Email gray
  • Permalink gray

4 ways to improve collaboration on your team today

Our collaboration eBook shows you the four things your team can do right now to improve the way they work together and gives examples of what strong collaborative cultures across industries have in common. You’ll also learn how Dropbox Business can power your team’s best work.

Download now

4. Telegram’s desktop app has been leaking the private IP addresses of its users. The bug, which was observed during p2p voice calls, has been fixed and users are urged to update. -- INPUT ZERO BLOG

  • Email gray
  • Permalink gray

5. Shopify is rolling out its automated Fraud Protect service to a select group of U.S. merchants now. It was announced earlier this year. -- TECHCRUNCH

  • Email gray
  • Permalink gray

6. The Git command line client had a remote code execution bug. IT has been patched in various Git versions of web and desktop. -- BLEEPING COMPUTER

7. Despite privacy settings, Google had illegally accessed details of iPhone users’ internet browsing data. A class action lawsuit brought in the UK was dismissed this week. -- REUTERS

8. Hackers can bypass firewall detection with specially-crafted URLs. Here is how they do it, such as disguising them with their hex code equivalents.-- COFENSE

9. Here are several suggestions on best network security practices. They come from the pros at CERT and have suggestions on traffic isolation and sensor placement. -- CMU CERT

10. If you believe your server may be compromised by a potential spy chip attack as described by the Bloomberg article earlier this week, this vendor has developed a tool to help you identify malicious activity. -- HMATIX

  • Email gray
  • Permalink gray

The top news story today is the end is near for Google Plus (G+). This premium story goes into more details.

Content for premium users only

This developer added some documentation to a new office toilet. This is one place where having a data backup isn't a good thing. -- REDDIT

  • Email gray
  • Permalink gray

This newsletter is written and curated by David Strom. I live in St. Louis MO and have covered the infosec industry for decades. I also ran editorial operations for various B2B IT publications including Network Computing (USA), Tom’s Hardware and ReadWrite.com’s business websites. You can find me at @dstrom or my personal site.

Finally, we note our editing team: Lon Harris (editor-in-chief at Inside.com, game-master at Screen Junkies), Krystle Vermes (Breaking news editor at Inside, B2B marketing news reporter, host of the "All Day Paranormal" podcast), and Susmita Baral (editor at Inside, recent bylines in NatGeo, Teen Vogue, and Quartz. Runs the biggest mac and cheese account on Instagram).

  • Email gray
  • Permalink gray

Many thanks to Inside Security's corporate supporters.  Please go check them out!

 

Endgame

Endgame's endpoint security platform protects the world’s largest organizations from targeted attacks, eliminating the time & cost associated with incident response. Learn more

 

Nok Nok Labs has the ambition to transform authentication, by unifying it into one standard protocol, giving business the control they need. Learn more

 

[YOUR LOGO HERE – click for details]
 
   

Invest in Ring4, the 2nd phone number startup that was voted best product on ProductHunt. 

 

HackerOne is the #1 hacker-powered security platform for finding critical vulnerabilities.

Subscribe to Inside Security

MORE NEWSLETTERS

News, people, culture, events and the trends shaping the Bay area

Inside San Francisco

News, people, culture, events and the trends shaping the Bay area

DAILY
News, people, culture, events and the trends shaping the Bay area

Inside San Francisco

DAILY

SUBSCRIBED!

Share via

Drone news for hobbyists, professionals, and investors

Inside Drones

Drone news for hobbyists, professionals, and investors

TWICE WEEKLY
Drone news for hobbyists, professionals, and investors

Inside Drones

TWICE WEEKLY

SUBSCRIBED!

Share via

News, updates, reviews and analysis of industry and consumer trends in the world of streaming

Inside Streaming

News, updates, reviews and analysis of industry and consumer trends in the world of streaming

WEEKLY
News, updates, reviews and analysis of industry and consumer trends in the world of streaming

Inside Streaming

WEEKLY

SUBSCRIBED!

Share via

A hand-picked selection of products, deals, and ways to save money.

Inside Deals

A hand-picked selection of products, deals, and ways to save money.

TWICE WEEKLY
A hand-picked selection of products, deals, and ways to save money.

Inside Deals

TWICE WEEKLY

SUBSCRIBED!

Share via