WhatsApp Web App Account Takeover, and Yahoo Hackers Indicted - Threat Wire

Author: Hak5
12851 View
7m 9s Lenght
553 Rating

Twitter Counter gets hacked, WhatsApp and Telegram web apps vulnerable to account takeovers, four have been indicted in one of the Yahoo hacks, and the White House has a new cybersecurity coordinator. All that coming up now on Threat Wire. ------------------------------- Shop: http://www.hakshop.com Support: http://www.patreon.com/threatwire Subscribe: http://www.youtube.com/hak5 Our Site: http://www.hak5.org Contact Us: http://www.twitter.com/hak5 Threat Wire RSS: https://shannonmorse.podbean.com/feed/ Threat Wire iTunes: https://itunes.apple.com/us/podcast/threat-wire/id1197048999 ------------------------------ https://www.cnet.com/news/twitter-hack-fills-high-profile-accounts-with-nazi-references/ http://blog.twittercounter.com/2017/03/turkish-spam-and-cyber-defences/?utm_content=buffer22f5d&utm_medium=social&utm_source=twitter.com&utm_campaign=buffer https://twitter.com/thecounter/status/841936613752094721 https://www.wired.com/2017/03/hack-brief-high-profile-twitter-accounts-overrun-swastikas/ https://thehackernews.com/2017/03/twitter-account-hack.html https://www.cnet.com/news/whatsapp-telegram-flaws-left-accounts-vulnerable-to-hackers/ http://blog.checkpoint.com/2017/03/15/check-point-discloses-vulnerability-whatsapp-telegram/ https://thehackernews.com/2017/03/hack-whatsapp-telegram-account.html https://www.wired.com/2017/03/whatsapp-hack-shows-even-encryption-apps-vulnerable-browser/ https://krebsonsecurity.com/2017/03/four-men-charged-with-hacking-500m-yahoo-accounts/ https://www.wired.com/2017/03/yahoo-hack-russia-indictment/ https://www.justice.gov/opa/pr/us-charges-russian-fsb-officers-and-their-criminal-conspirators-hacking-yahoo-and-millions https://arstechnica.com/tech-policy/2017/03/fbi-hints-that-hack-of-semi-privileged-yahoo-employee-led-to-massive-breach/ https://www.cnet.com/news/yahoo-russian-spies-hack-cyber-security-department-of-justice-charged-breach/ https://fcw.com/articles/2017/03/15/joyce-white-house-cyber.aspx https://www.youtube.com/watch?v=bDJb8WOJYdA https://www.sans.org/critical-security-controls Youtube Thumbnail credit: https://c1.staticflickr.com/5/4141/4806442824_a906d7dda7_b.jpg

Comments

  1. Regarding the WhatsApp&Telegram web app exploit: The malicious URL would be a 3rd-party domain right? So if a user installed an extension like noscript on their browser, it seems like they wouldn't be vulnerable to this attack.
  2. sermmary
  3. if you turn the volume to zero, you can't hear the video
  4. if you turn the volume to zero, you can't hear the video
  5. I love this show.
  6. What should password managers not do? Leak your passwords? What a great idea, LastPass
    Two critical bugs found in Chrome, Firefox add-ons
    21 Mar 2017 at 19:54
    https://www.theregister.co.uk/2017/03/21/lastpass_vulnerabilities/
  7. Is that sort of things possible to do with HTML?? Is there malicious HTML code?
  8. I hate the fact that this segment of hak5 isn't bi weekly.
  9. So even after Vault 7 you still the CIA/FBI still has the power to create news stories?
  10. "... And before commenting..." So, Hak5 is finally becoming arrogant and dismissive therefore…
  11. Was Telegram/WhatsApp vuln to the MSF PHP backdoor?
  12. I know someone who's Whatsapp got hacked
  13. Kill the messenger? How about date the messenger? :P <3
  14. Twitter counter has lost soo much trust... XD
  15. first.
  16. turkish people want to come to the netherlands to make turkish-dutch people vote for erdogan or something, then rutte jumped into action and stopped them from comming here
  17. I should just really switch from my main yahoo mail account to gmail, right? It'll be a HUGE hassle, but I'll try to do it as fast as possible.
  18. #Eggsolent
  19. I dunno, the the Yahoo story seems like it could be easily fabricated by cough CIA cough who has the means to specialize in making hack attacks appear as if they were done by someone else. Everything in that court document could be easily fabricated by anyone including that screenshot that has text in Russian.
  20. 10/10