Port 22

~ 23 May 2022 ~

Linux Trojan XorDdos Attacks Surge, Targeting Cloud, IoT

Anatomy of a DDoS amplification attack

Why the Employee Experience Is Cyber Resilience

How to improve risk management using Zero Trust architecture

Beneath the surface: Uncovering the shift in web skimming

Valeo Networks Acquires Next I.T.

Kingston Digital Releases Touch-Screen Hardware-Encrypted External SSD for Data Protection

After the Okta Breach, Diversify Your Sources of Truth

Forging Australian Drivers Licenses

How GDPR Is Failing

ISaPWN research on the security of ISaGRAF Runtime

Common NFT scams and how to avoid them

Yes, Containers Are Terrific, But Watch the Security Risks

How to find NPM dependencies vulnerable to account hijacking

Microsoft sounds the alarm on wait for it a Linux botnet

South Korean and US presidents gang up on North Korea's cyber-offensives

Fronton: Russian IoT Botnet Designed to Run Social Media Disinformation Campaigns

PayPal Pays a Hacker $200,000 for Discovering 'One-Click-Hack' Vulnerability

~ 22 May 2022 ~

How to Limit Who Can Contact You on Facebook

~ 21 May 2022 ~

North Korean IT Workers Are Infiltrating Tech Companies

Conti: Russian-backed rulers of Costa Rican hacktocracy?

~ 20 May 2022 ~

Researchers Find Backdoor in School Management Plugin for WordPress

Cisco Issues Patch for New IOS XR Zero-Day Vulnerability Exploited in the Wild

Friday Squid Blogging: Squid Street Art

China-linked Twisted Panda caught spying on Russian defense R&D

Chatbot Army Deployed in Latest DHL Shipping Phish

Partial Patching Still Provides Strong Protection Against APTs

The Onion on Google Map Surveillance

Quantum Key Distribution for a Post-Quantum World

Cryptocurrency: secure or not? Week in security with Tony Anscombe

Sandworm uses a new version of ArguePatch to attack targets in Ukraine

Microsoft Rushes a Fix After May Patch Tuesday Breaks Authentication

University of Toronto Magazine: The Extremism Machine

Authentication Is Static, Yet Attackers Are Dynamic: Filling the Critical Gap

Microsoft patches the patch that broke Windows authentication

New Open Source Project Brings Consistent Identity Access to Multicloud

Bluetooth Flaw Allows Remote Unlocking of Digital Locks

Microsoft Bing censors politically sensitive Chinese terms internationally, reports Citizen Lab

Protecting data now as the quantum era approaches

Canada bans Huawei and ZTE from 5G networks, citing national security risks

India slightly softens infosec incident reporting and data retention rules

Microsoft Warns Rise in XorDdos Malware Targeting Linux Devices

Cytrox's Predator Spyware Target Android Users with Zero-Day Exploits

Researchers Uncover Rust Supply-Chain Attack Targeting Cloud CI Pipelines

Hackers Exploiting VMware Horizon to Target South Korea with NukeSped Backdoor

US wont prosecute good faith security researchers under CFAA

~ 19 May 2022 ~

Hackers Trick Users with Fake Windows 11 Downloads to Distribute Vidar Malware

More Than 1,000 Cybersecurity Career Pursuers Complete the (ISC) Entry-Level Cybersecurity Certification Pilot Exam

Deadbolt Ransomware Targeting QNAP NAS Devices

US recovers a record $15m from the 3ve ad-fraud crew

QNAP Urges Users to Update NAS Devices to Prevent Deadbolt Ransomware Attacks

Pro-Russian Information Operations Escalate in Ukraine War

DoJ Won't Charge 'Good Faith' Security Researchers

Majority of Kubernetes API Servers Exposed to the Public Internet

Dig Exits Stealth With $11M for Cloud Data Detection and Response Solution

Spyware Vendors Target Android With Zero-Day Exploits

Rise in XorDdos: A deeper look at the stealthy DDoS malware targeting Linux devices

Iran, China-linked gangs join Putin's disinformation war online

6 Scary Tactics Used in Mobile App Attacks

Phishing Attacks for Initial Access Surged 54% in Q1

Bada Bing, Bada Boom: Microsoft Bings Chinese Political Censorship of Autosuggestions in North America

Websites that Collect Your Data as You Type

Mitsubishi Electric MELSEC iQ-F Series