Friday Squid Blogging: Squid and Chips
The excellent Montreal chef Marc-Olivier Frappier, of Joe Beef fame, has created a squid and chips dish for Brit & Chips restaurant.
As usual, you can also use this squid post to talk about the security stories in the news that I haven’t covered.
Read my blog posting guidelines here.
Ben A. • May 26, 2017 4:16 PM
Cloak & Dagger
“Cloak & Dagger is a new class of potential attacks affecting Android devices. These attacks allow a malicious app to completely control the UI feedback loop and take over the device — without giving the user a chance to notice the malicious activity.”
http://cloak-and-dagger.org/
Laptop Ban Reaction to X-Ray Equipment Stolen by ISIS
https://professional-troublemaker.com/2017/05/22/exclusive-laptop-ban-reaction-to-x-ray-equipment-stolen-by-isis/
How to build your own VPN if you’re (rightfully) wary of commercial options
Not a good option from an anonymity point of view.
https://arstechnica.com/gadgets/2017/05/how-to-build-your-own-vpn-if-youre-rightfully-wary-of-commercial-options/
Windows 10 Enterprise ignores various privacy settings
https://twitter.com/m8urnett/status/866353982217699328
https://news.ycombinator.com/item?id=14389441
In a throwback to the ’90s, NTFS bug lets anyone hang or crash Windows 7, 8.1
https://arstechnica.com/information-technology/2017/05/in-a-throwback-to-the-90s-ntfs-bug-lets-anyone-hang-or-crash-windows-7-8-1/
Crysis ransomware master keys posted to Pastebin
https://nakedsecurity.sophos.com/2017/05/26/crysis-ransomware-master-keys-posted-to-pastebin/
Samba exploit – not quite WannaCry for Linux, but patch anyway!
https://nakedsecurity.sophos.com/2017/05/26/samba-exploit-not-quite-wannacry-for-linux-but-patch-anyway/
http://www.fireeye.com/blog/threat-research/2017/05/smb-exploited-wannacry-use-of-eternalblue.html
Trump’s Dumps: ‘Making Dumps Great Again’
https://krebsonsecurity.com/2017/05/trumps-dumps-making-dumps-great-again/
Why are hidden files with a leading tilde treated as super-hidden?
“If there is a hidden file whose name begins with a tilde, then Explorer treats it as if the system and hidden attributes are both set, causing the file to be treated as super-hidden.”
https://blogs.msdn.microsoft.com/oldnewthing/20170526-00/?p=96235