Security Analyst – Jeff Soehner CISSP, GXPN,GPYC,GMOB,GCIH

Toronto business owner loses $14K to technical glitch at mobile payment company.
https://www.cbc.ca/news/canada/toronto/mobile-payment-glitch-1.5300313

You may remember the post a few months ago that may be related…

https://www.cbc.ca/news/canada/nova-scotia/spotify-charges-debit-account-unauthorized-withdrawals-1.5206053

If you are a security operations analyst, your job just got a whole lot harder.

Lock all your doors and keep your children inside; this one is hard to find…

https://www.microsoft.com/security/blog/2019/09/26/bring-your-own-lolbin-multi-stage-fileless-nodersok-campaign-delivers-rare-node-js-based-malware/?ranMID=24542&ranEAID=TnL5HPStwNw&ranSiteID=TnL5HPStwNw-9DImIrXueu1lqriAutG6sA&epi=TnL5HPStwNw-9DImIrXueu1lqriAutG6sA&irgwc=1&OCID=AID2000142_aff_7593_1243925&tduid=(ir__3nzqlj9gs9kfr1erkk0sohzn0m2xg16uu6zqpcyr00)(7593)(1243925)(TnL5HPStwNw-9DImIrXueu1lqriAutG6sA)()&irclickid=_3nzqlj9gs9kfr1erkk0sohzn0m2xg16uu6zqpcyr00

If you have ever visited a webpage that took a really long time to load or was filled with ads all over the site, you may have already heard that you need an ad blocker. If you were not sure of which one to use, you might be a victim of a knock off; a piece of software that is created with a similar name to the original but one that can monetize you use of it and put you at risk.

Learn about how many Google Chrome users were tricked into installing fake extensions and why you need to be sure of the names which extensions you trust.

https://cyware.com/news/over-1-million-google-chrome-users-affected-by-cookie-stuffing-from-two-popular-adblockers-5bd6dbcc

If you are a software developer (and not living in a cave) you may already know about vulnerabilities but did you know that there is a list of the 25 most dangerous put out by Mitre?

Well they have released the new 2019 list and some of these might surprise you…

https://cwe.mitre.org/top25/archive/2019/2019_cwe_top25.html