Security 223 – A Whole Lotta News

We just fly threw the news topics this week.

WhatsApp bug: https://amp.news.com.au/technology/online/hacking/whatsapp-users-urged-to-update-as-hackers-break-into-phones-just-by-sending-them-a-gif/news-story/6fc5159ad8a406c9d7d7383067d8f645

Twitter 2FA issues: https://boingboing.net/2019/10/08/twitter-admits-two-factor-logi.html

FBI spied on citizens: https://www.theverge.com/2019/10/8/20905678/fbi-violated-americans-privacy-rights-court-ruling-fisc-surveillance-nsa

No more mixed content for TLS: https://security.googleblog.com/2019/10/no-more-mixed-messages-about-https_3.html

iterm2 software issue: https://blog.mozilla.org/security/2019/10/09/iterm2-critical-issue-moss-audit/

Security 219 – CamScanner Malware

https://youtu.be/Bj_LL2C9rbE

This week we are still having meeting problems, but we finally get things moving. We discuss CamScanner which infected many users with malware through the Android play store.

Basically a bad API snuck malware in.