The Weekly Ink #8
THE WEEKLY INK
The Weekly Ink is the weekly newsletter brought to you by Duo Labs, with curated links of interest in the security world to help educate the company - and anyone else who will listen - on security happenings and culture.
If you have links of your own that you think would be interesting to the company, be sure to send them to firstname.lastname@example.org.
Wait, it was only 4 billion passwords leaked by Russian hackers. Oh sorry, it's actually 1.2 billion. Just kidding, it's actually 500 million. Well, some amount of passwords were leaked by some group at some time after said group hacked some websites and obtained some data and somehow Alex Holden, founder of Hold Security knows all the details. But apparently he can't share any info because "there is an ongoing investigation". Well, unless you pay him. Of course, no law enforcement agencies have stated they are investigating this "breach". This whole debacle is suspicious at best.
It's confirmed that Internet Explorer is now 100% secure. No vulnerabilities are possible because Internet Explorer will begin blocking out-of-date ActiveX. Snark aside, this is a surprisingly good move. Old ActiveX controls have many known vulnerabilities. Most of these vulnerabilities have been patched in recent updates, but users may or may not have updated. However, it's very likely that users who don't update ActiveX don't actively update Internet Explorer, so I'm not sure how effective this update will be.
Also DEF CON and Black Hat Happened or Something
We went, we saw, we conquered. People did things. Other people broke things. It was cool. Black Hat talks are now online. So are B-Sides talks. Only a few DEF CON talks are available online at the moment.