#HappyFriday
This is a weekly series to highlight the best articles and stories happening all around the web.
What was your favorite story? What topics would you like to see? Sound off in the comments!
Equifax Site Hacked Again? Links Redirect Users to Malicious URL
In a recent blog post, analyst Randy Abrams said that he visited the Equifax site to check and see whether false information from another credit bureau had made its way into his credit report on Equifax. When he tried to access his personal information, he said he was redirected to a site with a fake Flash Player update screen. In a tweet shortly following after, Abrams said it appeared that the issue might indicate Equifax' Web site had been breached again.
CIO Today has the full rundown.
Outlook Might Not Have Encrypted Your Emails If You Used S/MIME Encryption
Users who utilized Microsoft Outlook to send out secure emails encrypted via the S/MIME standard might have had the content of those emails leaked by an Outlook bug.
The encryption leak, even if limited to the scenarios above, is a sensitive issue. Companies use encryption to safeguard sensitive information they exchange via email. Most bug and vulnerabilities reports are also handled in an encrypted format.
Hop on over to BleepingComputer for the full story.
Hundreds of Printers Expose Backend Panels and Password Reset Functions Online
A security researcher has found nearly 700 Brother printers left exposed online, allowing access to the password reset function to anyone who knows what to look for.
"I'm surprised about so many known universities included in the list," Ankit Anubhav, Principal Researcher at NewSky Security, told Bleeping in a private conversation.
Organizations running Brother printers should verify if the printer exposes the administration panel by default online, and/or set a custom password to prevent unauthorized access to the device.
Bleeping has you covered here as well.
Some Motherboards Plagued by BIOS Firmware Implementation Flaws
Alex Matrosov, a security researcher for Cylance, has discovered several flaws in how some motherboard vendors implemented Intel's UEFI BIOS firmware into their products.
Matrosov says that an attacker can exploit these implementation errors to elevate privileges, bypass BIOS protections, and deliver rootkits on a modern operating system, such as Windows 10, for which Microsoft has worked tirelessly to safeguard against rootkits.
Get the full scoop from Bleeping.
Hackers Hijack Ongoing Email Conversations to Insert Malicious Documents
A group of hackers is using a sophisticated technique of hijacking ongoing email conversations to insert malicious documents that appear to be coming from a legitimate source and infect other targets participating in the same conversational thread.
These highly sophisticated spear-phishing attacks were detected by US security firm Palo Alto Networks, and have targeted a bank based in the Middle East, a trademark and intellectual property service companies based in Europe, an international sporting organization, and even lone individuals with indirect ties to a country in North East Asia.
Surprise, surprise, Bleeping covered this story.
What story from the last week the most important for you? We love hearing your feedback!
