In case you weren’t able to catch up on the news last week, I’ve published some of the top Information Security stories that were identified by TigerTrax.

• New NTP vulnerabilities were disclosed by Cisco and Boston University http://www.securityweek.com/new-ntp-vulnerabilities-put-networks-risk
• Drupal released version 7.41 to address an open-redirect vulnerability http://news.softpedia.com/news/drupal-releases-version-7-41-to-fix-open-redirect-vulnerability-495083.shtml
• A new strain of ransomware is installing itself by brute force attacking Remote Desktop Services http://news.softpedia.com/news/new-ransomware-infects-computers-via-windows-remote-desktop-services-495067.shtml
• Apple patched flaws in OS X, iOS and other products http://www.securityweek.com/apple-patches-flaws-os-x-ios-other-products
• Oracle released security updates that addressed over 154 vulnerabilities in 54 products https://threatpost.com/oracle-quarterly-security-update-patches-154-vulnerabilities/115120/
• Researchers discovered weaknesses affecting Western Digital My Passport hard drives http://news.softpedia.com/news/western-digital-my-passport-hard-drives-come-with-a-slew-of-security-holes-494990.shtml
• Adobe patched a Flash zero-day that was exploited by Pawn Storm http://www.securityweek.com/adobe-patches-flash-zero-day-exploited-pawn-storm
• Fake “support services” that have affected Windows users for years are now starting to target Mac users http://arstechnica.com/security/2015/10/support-scams-that-plagued-windows-users-for-years-now-target-mac-customers/
• Researchers discovered over 250 iOS apps that collect user’s personal information and violate Apple’s App Store privacy policy http://arstechnica.com/security/2015/10/researchers-find-256-ios-apps-that-collect-users-personal-info/?utm_source=kwestin&utm_medium=twitter

Have a great week!

—Adam