Welcome to the 25th edition of the Secjuice Squeeze, a curated selection of interesting security articles and infosec news that you may have missed, lovingly curated for you on a weekly basis. This week's volume compiled by Secjuice writers Prasanna, Devesh Chande, Mike Peterson, Manmeet Singh Bhatia, Sinwindie, Thunder-Son, Miguel Calles, and Hartoyo Wahyu.
Apple iOS 13.5 Hacked: Zero-Day Flaw Exploited By iPhone Jailbreakers
Hacking group exploits iOS zero-day vulnerability to unlock any iPhone.
Huge Rise In Hacking Attacks On Home Workers During Lockdown
Cybercriminals are exploiting fears and chaos caused by coronavirus.
Documenting The Impossible: Unexploitable XSS labs
Have you ever found some risky behavior, but couldn't prove it was exploitable?
Hoaxcalls Botnet Exploits Symantec Secure Web Gateways
The fast-moving botnet has added an exploit for an unpatched bug in an unsupported version of the security gateway.
Norfund Scammed Out Of $10 Million By Hackers Who Used Spoofed Email Addresses
The Norwegian Investment Fund, more commonly known as Norfund, announced that scammers stole £8.2 million ($10 million) by spoofing an email address.
Signal To Move Away From Using Phone Nmbers As User IDs
Signal launches profile PINs, the first step in supporting Signal user accounts that are not tied to phone numbers.
How Cybersecurity Enables Government, Health, EduTech To Cope With COVID-19
Cybersecurity is proving increasingly essential to protect government, health, and edutech websites in the wake of growing reliance on remote working apps during the Covid-19 crisis.
EasyJet Admits Data Of Nine Million Hacked
The attack was "sophisticated" the airline said, adding that some credit card details had been accessed.
Commander Discusses a Decade of DOD Cyber Power
While the U.S. Cyber Command's mission has evolved over the last decade, defense of the nation in cyberspace remains as important as ever.
Israel Hack of Iran Port Is Latest Salvo in Exchange of Cyberattacks
Israel was behind a cyberattack that disrupted a major port in Iran, done in response to an attempt by the Revolutionary Guards to infiltrate an Israeli water facility.
Florida’s Unemployment System Breached
No information was released on when the hack took place, how many accounts were opened or if the breach will affect people being able to receive unemployment benefits.
ShinyHunters Is a Hacking Group on a Data Breach Spree
In the first two weeks of May, they've hit the dark web, hawking 200 million stolen records from over a dozen companies.
How To Stay Mentally Healthy While Doing OSINT
Listen to a podcast where OSINT specialist discuss a range of practical techniques that OSINT practitioners can apply – both on an individual basis and in teams - to keep mentally healthy while conducting investigations, and also talk about the impact of social media research on mental health.
Upcoming Events, Webcasts, Conferences, etc.
LASCON 20/20 - Call for Papers and Training
When: Now thru June 30, 2020