Port 22

Targeted Malware Reverse Engineering Workshop follow-up. Part 1

KasperskySecure List

Details on the Unlocking of the San Bernardino Terrorists iPhone

Bruce SchneierSchneier on Security

Grype Vulnerability Scanner For Container Images & Filesystems

DarknetDark Net Hackers

Brit authorities could legally do an FBI and scrub malware from compromised boxen without your knowledge

Gareth CorfieldThe Register

Pakistan cut off Facebook, Twitter, WhatsApp, and Telegram for just four hours

Simon SharwoodThe Register

Passwordless: More Mirage Than Reality

noreply@blogger.com (The Hacker News)The Hackers News

Malware Spreads Via Xcode Projects Now Targeting Apple's M1-based Macs

noreply@blogger.com (Ravie Lakshmanan)The Hackers News

How the FBI Got Into the San Bernardino Shooters iPhone

Lily Hay NewmanWired

SysAdmin of Billion-Dollar Hacking Group Gets 10-Year Sentence

noreply@blogger.com (Ravie Lakshmanan)The Hackers News

What are the different roles within cybersecurity?

noreply@blogger.com (The Hacker News)The Hackers News

Instructor Spotlight: Micah Hoffman, SEC487 Author

N/ASANS ICS

Friday Squid Blogging: Blobs of Squid Eggs Found Near Norway

Bruce SchneierSchneier on Security

Cybersecurity Experts to Follow on Twitter

Bruce SchneierSchneier on Security

Russian infosec firm Positive Technologies trying to stay positive after US sanctions

Gareth CorfieldThe Register

High-Level Admin of FIN7 Cybercrime Group Sentenced to 10 Years in Prison

Dark Reading StaffDark Reading - Threat Intelligence

Security Gaps in IoT Access Control Threaten Devices and Users

Kelly Sheridan Staff Editor, Dark ReadingDark Reading - Threat Intelligence

Microsoft received almost 25,000 requests for consumer data from law enforcement over the last six months

Richard SpeedThe Register

Week in security with Tony Anscombe

EditorESET

Did Someone at the Commerce Dept. Find a SolarWinds Backdoor in Aug. 2020?

BrianKrebsKrebs on Security

Watchdog thinks Google tricked Australians into giving up data, sues. Judge semi-agrees

Laura DobbersteinThe Register

Watchdog thinks Google tricked Australians into giving up data, sues. Judge semi-agrees

Laura DobbersteinThe Register

NSA Discloses Vulnerabilities in Microsoft Exchange

Bruce SchneierSchneier on Security

Spring cleaning? Dont forget about your digital footprint

Amer OwaidaESET

Severe Bugs Reported in EtherNet/IP Stack for Industrial Systems

noreply@blogger.com (Ravie Lakshmanan)The Hackers News

Strategically Managing Your Human Risk Leverage the Security Awareness Maturity Model

N/ASANS ICS

Mobile app security standard for IoT, VPNs proposed by group backed by Big Tech

Thomas ClaburnThe Register

US Sanctions on Russia Rewrite Cyberespionage's Rules

Andy GreenbergWired

US Formally Attributes SolarWinds Attack to Russian Intelligence Agency

Jai Vijayan Contributing WriterDark Reading - Threat Intelligence

Pandemic Pushes Bot Operators to Redirect Efforts

Robert Lemos Contributing WriterDark Reading - Threat Intelligence

It was Russia wot did it: SolarWinds hack was done by Kremlin's APT29 crew, say UK and US

Gareth CorfieldThe Register

One in six people use pets name as password

Amer OwaidaESET

University of Hertfordshire pulls the plug on, well, everything after cyber attack

Richard SpeedThe Register

6 Tips for Managing Operational Risk in a Downturn

Steve Durbin CEO of the Information Security ForumDark Reading - Threat Intelligence

DNIs Annual Threat Assessment

Bruce SchneierSchneier on Security

Schneider Electric C-Bus Toolkit

Advisory DocumentICS-Cert Advisories

EIPStackGroup OpENer Ethernet/IP

Advisory DocumentICS-Cert Advisories

US Sanctions Russia and Expels 10 Diplomats Over SolarWinds Cyberattack

noreply@blogger.com (Ravie Lakshmanan)The Hackers News

Malicious PowerShell Use, Attacks on Office 365 Accounts Surged in Q4

Jai Vijayan Contributing WriterDark Reading - Threat Intelligence

1-Click Hack Found in Popular Desktop Apps Check If You're Using Them

noreply@blogger.com (Ravie Lakshmanan)The Hackers News

Malware Variants: More Sophisticated, Prevalent and Evolving in 2021

noreply@blogger.com (The Hacker News)The Hackers News

YIKES! Hackers flood the web with 100,000 pages offering malicious PDFs

noreply@blogger.com (Ravie Lakshmanan)The Hackers News

Is it still possible to run malware in a browser using JavaScript and Rowhammer? Yes, yes it is (slowly)

Thomas ClaburnThe Register

The Biggest Security Threats to the US Are the Hardest to Define

Lily Hay NewmanWired

Nigerian email scammer sent down for 40 months in the US, ordered to pay back $2.7m to victims

Kieren McCarthyThe Register

The FBI Takes a Drastic Step to Fight Chinas Hacking Spree

Brian BarrettWired

Report: Aussie biz Azimuth cracked San Bernardino shooters iPhone, ending Apple-FBI privacy standoff

Kieren McCarthyThe Register

What the FLoC? Browser makers queue up to decry Google's latest ad-targeting initiative as invasive tracking

Tim AndersonThe Register

Upcoming Speaking Engagements

Schneier.com WebmasterSchneier on Security

Chrome and Chromium updated after yet another exploit is found in browser's V8 JavaScript engine

Gareth CorfieldThe Register

CISA Urges Caution for Security Researchers Targeted in Attack Campaign

Dark Reading StaffDark Reading - Threat Intelligence

FBI removes web shells from compromised Exchange servers

Amer OwaidaESET

FBI Operation Remotely Removes Web Shells From Exchange Servers

Kelly Sheridan Staff Editor, Dark ReadingDark Reading - Threat Intelligence

The FBI Is Now Securing Networks Without Their Owners Permission

Bruce SchneierSchneier on Security

Spy agency GCHQ told me Gmail's more secure than Microsoft 365, insists British MP as facepalming security bods tell him to zip it

Gareth CorfieldThe Register

New WhatsApp Bugs Could've Let Attackers Hack Your Phone Remotely

noreply@blogger.com (Ravie Lakshmanan)The Hackers News

New JavaScript Exploit Can Now Carry Out DDR4 Rowhammer Attacks

noreply@blogger.com (Ravie Lakshmanan)The Hackers News

FBI deletes web shells from hundreds of compromised Microsoft Exchange servers before alerting admins

Kieren McCarthyThe Register

Google Sites blight: Over 100,000 web pages for business form searches overrun with backdoor RATs

Thomas ClaburnThe Register

Simplify, then Add Lightness Consolidating the Technology to Better Defend Ourselves

noreply@blogger.com (The Hacker News)The Hackers News

Microsoft Patch Tuesday, April 2021 Edition

BrianKrebsKrebs on Security

2 New Chrome 0-Days Under Attack Update Your Browser ASAP!

noreply@blogger.com (Ravie Lakshmanan)The Hackers News

NSA Discovers New Vulnerabilities Affecting Microsoft Exchange Servers

noreply@blogger.com (Ravie Lakshmanan)The Hackers News

1Password targets developers with Secrets Automation, acquisition of SecretHub

Tim AndersonThe Register

NSA helps out Microsoft with critical Exchange Server vulnerability disclosures in an April shower of patches

Thomas ClaburnThe Register

DNS Vulnerabilities Expose Millions of Internet-Connected Devices to Attack

Jai Vijayan Contributing WriterDark Reading - Threat Intelligence

Port 22

~ 19 Apr 2021 ~

Targeted Malware Reverse Engineering Workshop follow-up. Part 1

Details on the Unlocking of the San Bernardino Terrorists iPhone

Grype Vulnerability Scanner For Container Images & Filesystems

Brit authorities could legally do an FBI and scrub malware from compromised boxen without your knowledge

Pakistan cut off Facebook, Twitter, WhatsApp, and Telegram for just four hours

Passwordless: More Mirage Than Reality

Malware Spreads Via Xcode Projects Now Targeting Apple's M1-based Macs

~ 17 Apr 2021 ~

How the FBI Got Into the San Bernardino Shooters iPhone

SysAdmin of Billion-Dollar Hacking Group Gets 10-Year Sentence

What are the different roles within cybersecurity?

Instructor Spotlight: Micah Hoffman, SEC487 Author

~ 16 Apr 2021 ~

Friday Squid Blogging: Blobs of Squid Eggs Found Near Norway

Cybersecurity Experts to Follow on Twitter

Russian infosec firm Positive Technologies trying to stay positive after US sanctions

High-Level Admin of FIN7 Cybercrime Group Sentenced to 10 Years in Prison

Security Gaps in IoT Access Control Threaten Devices and Users

Microsoft received almost 25,000 requests for consumer data from law enforcement over the last six months

Week in security with Tony Anscombe

Did Someone at the Commerce Dept. Find a SolarWinds Backdoor in Aug. 2020?

Watchdog thinks Google tricked Australians into giving up data, sues. Judge semi-agrees

Watchdog thinks Google tricked Australians into giving up data, sues. Judge semi-agrees

NSA Discloses Vulnerabilities in Microsoft Exchange

Spring cleaning? Dont forget about your digital footprint

Severe Bugs Reported in EtherNet/IP Stack for Industrial Systems

Strategically Managing Your Human Risk Leverage the Security Awareness Maturity Model

~ 15 Apr 2021 ~

Mobile app security standard for IoT, VPNs proposed by group backed by Big Tech

US Sanctions on Russia Rewrite Cyberespionage's Rules

US Formally Attributes SolarWinds Attack to Russian Intelligence Agency

Pandemic Pushes Bot Operators to Redirect Efforts

It was Russia wot did it: SolarWinds hack was done by Kremlin's APT29 crew, say UK and US

One in six people use pets name as password

University of Hertfordshire pulls the plug on, well, everything after cyber attack

6 Tips for Managing Operational Risk in a Downturn

DNIs Annual Threat Assessment

Schneider Electric C-Bus Toolkit

EIPStackGroup OpENer Ethernet/IP

US Sanctions Russia and Expels 10 Diplomats Over SolarWinds Cyberattack

Malicious PowerShell Use, Attacks on Office 365 Accounts Surged in Q4

1-Click Hack Found in Popular Desktop Apps Check If You're Using Them

Malware Variants: More Sophisticated, Prevalent and Evolving in 2021

YIKES! Hackers flood the web with 100,000 pages offering malicious PDFs

Is it still possible to run malware in a browser using JavaScript and Rowhammer? Yes, yes it is (slowly)

~ 14 Apr 2021 ~

The Biggest Security Threats to the US Are the Hardest to Define

Nigerian email scammer sent down for 40 months in the US, ordered to pay back $2.7m to victims

The FBI Takes a Drastic Step to Fight Chinas Hacking Spree

Report: Aussie biz Azimuth cracked San Bernardino shooters iPhone, ending Apple-FBI privacy standoff

What the FLoC? Browser makers queue up to decry Google's latest ad-targeting initiative as invasive tracking

Upcoming Speaking Engagements

Chrome and Chromium updated after yet another exploit is found in browser's V8 JavaScript engine

CISA Urges Caution for Security Researchers Targeted in Attack Campaign

FBI removes web shells from compromised Exchange servers

FBI Operation Remotely Removes Web Shells From Exchange Servers

The FBI Is Now Securing Networks Without Their Owners Permission

Spy agency GCHQ told me Gmail's more secure than Microsoft 365, insists British MP as facepalming security bods tell him to zip it

New WhatsApp Bugs Could've Let Attackers Hack Your Phone Remotely

New JavaScript Exploit Can Now Carry Out DDR4 Rowhammer Attacks

FBI deletes web shells from hundreds of compromised Microsoft Exchange servers before alerting admins

Google Sites blight: Over 100,000 web pages for business form searches overrun with backdoor RATs

Simplify, then Add Lightness Consolidating the Technology to Better Defend Ourselves

~ 13 Apr 2021 ~

Microsoft Patch Tuesday, April 2021 Edition

2 New Chrome 0-Days Under Attack Update Your Browser ASAP!

NSA Discovers New Vulnerabilities Affecting Microsoft Exchange Servers

1Password targets developers with Secrets Automation, acquisition of SecretHub

NSA helps out Microsoft with critical Exchange Server vulnerability disclosures in an April shower of patches

DNS Vulnerabilities Expose Millions of Internet-Connected Devices to Attack