I used to dread the Labor Day holiday in the United States because it signified the end of our summer, my favorite season. It wasn’t until I learned the background behind the holiday that I truly appreciated its meaning and the impact it has on our country. The turning point for labor laws here in the United States was the Pullman Strike that pitted the American Railway Union against the Pullman Company, the main railroads, and the federal government of the United States under President Grover Cleveland. The conflict began in Pullman, Chicago, when nearly 4,000 factory employees of the Pullman Company began a wildcat strike on May 11, 1894 in response to recent reductions in wages. The strike and boycott shut down much of the nation’s freight and passenger traffic west of Detroit, Michigan. In the end, things did not end well. Thirty people were killed in response to riots and sabotage that caused $80 million in damages, violence broke out in many cities and eventually, the strike collapsed. A national commission to study the causes of the 1894 strike found the operations of the Pullman “company town” to be “un-American.” In an effort to placate organized labor after the strike, President Cleveland and Congress designated Labor Day as a federal holiday.
Oddly enough, I ended up working this Labor Day, because when you’re in the security business, you never really have a holiday. We’re going to be really busy in the next few weeks. See what we have in store below!
Mobile Pwn2Own 2016
It’s back! After a year off (because we were busy being acquired by Trend Micro), our Zero Day Initiative will be hosting the fifth annual Mobile Pwn2Own on October 26-27, 2016 at the PacSec Security Conference in Tokyo. This year’s targets include three of the most popular smartphone platforms available:
All of these phones will be running the latest version of their respective operating systems with all available patches installed. There are rumors of new versions of these phones being introduced between now and the contest. Should a new phone become available in time to be integrated into the contest, we’ll work to add it as an available platform.
For more details on the targets, categories and the “Master of Pwn” style points, click here.
The full set of rules for Mobile Pwn2Own 2016 is available here. They may be changed at any time without notice. We encourage entrants to read the rules thoroughly and completely should they choose to participate.
HPE Protect – September 13-16, 2016
Trend Micro will be at HPE Protect 2016 next week at the Gaylord National Resort and Convention Center in Washington, DC as a Diamond sponsor. In addition to showcasing our solutions in the exhibitor showcase, we also have two speaking sessions at the event, including one from yours truly:
Session ID: B10532
Wednesday, September 14, 1:15 p.m.-2:15 p.m.
Elisa Lippincott, TippingPoint Global Product Marketing, Trend Micro
Session ID: B10515
Thursday, September 15, 10:00 a.m.-11:00 a.m.
Dave Abramowitz, Technical Advisor, Trend Micro
For more information and coverage from the conference, follow @TrendMicro on Twitter.
There are six new zero-day filters covering four vendors in this week’s Digital Vaccine (DV) package. A number of existing filters in this week’s DV package were modified to update the filter description, update specific filter deployment recommendation, increase filter accuracy and/or optimize performance. You can browse the list of published advisories and upcoming advisories on the Zero Day Initiative web site.
Removed Zero-Day Filters
A small number of pre-disclose filters have been removed in this week’s DV package. In certain rare cases, the TippingPoint DVLabs team provides zero-day filter coverage for vulnerabilities that may become irrelevant over time, are duplicated in other DV filters, or are no longer contractually viable via our Zero Day Initiative methodology and vendor agreement policy. Customers with any concerns or questions can contact TippingPoint support.
Missed Last Week’s News?
Catch up on last week’s news in my weekly recap.