2661

Putting an end to Retadup
A malicious worm that infected hundreds of thousands.
https://blog.avast.com/avast-works-with-france-and-us-to-stop-cryptomining-avast
https://decoded.avast.io/janvojtesek/putting-an-end-to-retadup-a-malicious-worm-that-infected-hundreds-of-thousands/
https://www.zdnet.com/article/avast-and-french-police-take-over-malware-botnet-and-disinfect-850000-computers/#ftag=RSSbaffb68

2662

An advertising dropper in Google Play
https://securelist.com/dropper-in-google-play/92496/

2663

Dutch regulator sees potential privacy breach in Microsoft Windows
https://www.reuters.com/article/us-microsoft-privacy/dutch-regulator-sees-potential-privacy-breach-in-microsoft-windows-idUSKCN1VH18T

2664

Since in the US we don’t have a right to privacy, any improvement Microsoft makes will be a bonus for us.

2665

A very deep dive into iOS Exploit chains found in the wild
https://googleprojectzero.blogspot.com/2019/08/a-very-deep-dive-into-ios-exploit.html

2666

Trickbot Is Using Google Docs to Trick Proofpoint’s Gateway
https://cofense.com/trickbot-using-google-docs-trick-proofpoints-gateway/

2667

What’s new in this year’s Almanaq?
https://decoded.avast.io/romanalinkeova/whats-new-in-this-years-almanaq/

2668

Threat Actor behind Astaroth is now using Cloudflare Workers to bypass your Security Solutions
https://medium.com/@marcelx/threat-actor-behind-astaroth-is-now-using-cloudflare-workers-to-bypass-your-security-solutions-2c658d08f4c

2669

Today’s Firefox Blocks Third-Party Tracking Cookies and Cryptomining by Default
https://blog.mozilla.org/blog/2019/09/03/todays-firefox-blocks-third-party-tracking-cookies-and-cryptomining-by-default/

2670

A huge database of Facebook users’ phone numbers found online
https://techcrunch.com/2019/09/04/facebook-phone-numbers-exposed/

2671

Avast discovers widespread security flaws in GPS child trackers
https://blog.avast.com/unsecure-child-trackers
https://decoded.avast.io/martinhron/the-secret-life-of-gps-trackers/

2672

Critical flaw found in many Android smartphones
https://blog.avast.com/fake-provisioning-alerts-on-androids
https://www.zdnet.com/article/samsung-huawei-lg-and-sony-phones-vulnerable-to-rogue-provisioning-messages/
https://research.checkpoint.com/advanced-sms-phishing-attacks-against-modern-android-based-smartphones/

2673

Exploit Sellers Say There are More iPhone Hacks on the Market Than They’ve Ever Seen
https://www.vice.com/en_us/article/7x584y/exploit-sellers-say-there-are-more-iphone-hacks-on-the-market-than-theyve-ever-seen

2674

Facebook user phone numbers still online
https://www.cnet.com/news/facebook-user-phone-numbers-still-online/

2675

Initial Metasploit Exploit Module for BlueKeep (CVE-2019-0708)
https://blog.rapid7.com/2019/09/06/initial-metasploit-exploit-module-for-bluekeep-cve-2019-0708/

2676

Flashlight apps on Google Play request up to 77 permissions each, Avast finds
https://blog.avast.com/flashlight-apps-on-google-play-request-up-to-77-permissions-avast-finds
https://decoded.avast.io/luiscorrons/flashlight-apps-on-google-play-request-up-to-77-permissions/

2677

The September 2019 Security Update Review
https://www.zerodayinitiative.com/blog/2019/9/10/the-september-2019-security-update-review

2678

Thanks for the reminder.
I had three updates awaiting action when I checked.

Quite a big one for Win10 1903 Cumulative Update (KB4515384) this time around, even on a relatively fast connection it took a while to download and then install.

2679

Intel server-grade CPUs impacted by new NetCAT attack
https://www.zdnet.com/article/intel-server-grade-cpus-impacted-by-new-netcat-attack/
https://www.vusec.net/projects/netcat/
https://www.cs.vu.nl/~herbertb/download/papers/netcat_sp20.pdf
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00290.html

2680

Simjacker – Next Generation Spying Over Mobile
https://www.adaptivemobile.com/blog/simjacker-next-generation-spying-over-mobile