Summary: <br> Sarahah was Caught Uploading Contacts, ROPEMAKER Changes Emails Post-Delivery, default credentials are still impacting IoT devices, and a New Crowdfunding Campaign for MalwareTech is now up and running. All that coming up now on ThreatWire.<br> -------------------------------<br> Shop: <a href="http://www.hakshop.com">http://www.hakshop.com</a> <br> Support: <a href="http://www.patreon.com/threatwire">http://www.patreon.com/threatwire</a> <br> Subscribe: <a href="http://www.youtube.com/hak5">http://www.youtube.com/hak5</a> <br> Our Site: <a href="http://www.hak5.org">http://www.hak5.org</a> <br> Contact Us: <a href="http://www.twitter.com/hak5">http://www.twitter.com/hak5</a> <br> Threat Wire RSS: <a href="https://shannonmorse.podbean.com/feed/">https://shannonmorse.podbean.com/feed/</a> <br> Threat Wire iTunes: <a href="https://itunes.apple.com/us/podcast/threat-wire/id1197048999">https://itunes.apple.com/us/podcast/threat-wire/id1197048999</a> <br> Help us with Translations! <a href="http://www.youtube.com/timedtext_cs_panel?tab=2&c=UC3s0BtrBJpwNDaflRSoiieQ">http://www.youtube.com/timedtext_cs_panel?tab=2&c=UC3s0BtrBJpwNDaflRSoiieQ</a> <br> ------------------------------<br> Links:<br> <a href="https://threatpost.com/anonymous-messaging-app-sarahah-to-halt-collection-of-user-data-with-next-update/127668/">https://threatpost.com/anonymous-messaging-app-sarahah-to-halt-collection-of-user-data-with-next-update/127668/</a> <br> <a href="https://thehackernews.com/2017/08/sarahah-privacy.html">https://thehackernews.com/2017/08/sarahah-privacy.html</a> <br> <a href="https://theintercept.com/2017/08/27/hit-app-sarahah-quietly-uploads-your-address-book/">https://theintercept.com/2017/08/27/hit-app-sarahah-quietly-uploads-your-address-book/</a> <br> <a href="https://vimeo.com/223686149">https://vimeo.com/223686149</a> <br> <a href="https://twitter.com/ZainAlabdin878/status/901812205741629444">https://twitter.com/ZainAlabdin878/status/901812205741629444</a> <br> <a href="https://www.theregister.co.uk/2017/08/28/crowdfunding_for_hutchins_legal_fees/?mt=1503964117577">https://www.theregister.co.uk/2017/08/28/crowdfunding_for_hutchins_legal_fees/?mt=1503964117577</a> <br> <a href="https://www.theregister.co.uk/2017/08/23/ropemaker_exploit/">https://www.theregister.co.uk/2017/08/23/ropemaker_exploit/</a> <br> <a href="https://threatpost.com/ropemaker-exploit-allows-for-changing-of-email-post-delivery/127600/">https://threatpost.com/ropemaker-exploit-allows-for-changing-of-email-post-delivery/127600/</a> <br> <a href="https://www.mimecast.com/globalassets/documents/whitepapers/wp_the_ropemaker_email_exploit.pdf">https://www.mimecast.com/globalassets/documents/whitepapers/wp_the_ropemaker_email_exploit.pdf</a> <br> <a href="https://arstechnica.com/information-technology/2017/08/leak-of-1700-valid-passwords-could-make-the-iot-mess-much-worse/">https://arstechnica.com/information-technology/2017/08/leak-of-1700-valid-passwords-could-make-the-iot-mess-much-worse/</a> <br> <a href="https://twitter.com/ankit_anubhav/status/900803406914347008">https://twitter.com/ankit_anubhav/status/900803406914347008</a> <br> <a href="https://twitter.com/0xDUDE/status/901062772238274561">https://twitter.com/0xDUDE/status/901062772238274561</a> <br> <a href="http://www.securityweek.com/thousands-iot-devices-impacted-published-credentials-list">http://www.securityweek.com/thousands-iot-devices-impacted-published-credentials-list</a> <br> <a href="https://threatpost.com/race-is-on-to-notify-owners-after-public-list-of-iot-device-credentials-published/127661/">https://threatpost.com/race-is-on-to-notify-owners-after-public-list-of-iot-device-credentials-published/127661/</a> <br> <a href="https://arstechnica.com/tech-policy/2017/08/malwaretechs-legal-defense-fund-bombarded-with-fraudulent-donations/?comments=1">https://arstechnica.com/tech-policy/2017/08/malwaretechs-legal-defense-fund-bombarded-with-fraudul</a>
