Port 22

~ 6 Dec 2023 ~

Shielding the data that drives AI

Scaling Security Operations with Automation

Hackers Exploited ColdFusion Vulnerability to Breach Federal Agency Servers

New macOS Trojan-Proxy piggybacking on cracked software

Atlassian Releases Critical Software Fixes to Prevent Remote Code Execution

Atlassian security advisory reveals four fresh critical flaws in mail with dead links

Microsoft issues deadline for end of Windows 10 support it's pay to play for security

Qualcomm Releases Details on Chip Vulnerabilities Exploited in Targeted Attacks

Cisco intros AI to find firewall flaws, warns this sort of thing can't be free

Fancy Bear goes phishing in US, European high-value networks

~ 5 Dec 2023 ~

The 23andMe Data Breach Keeps Spiraling

CISA details twin attacks on federal servers via unpatched ColdFusion flaw

Microsoft Incident Response lessons on preventing cloud identity compromise

DSPM deep dive: debunking data security myths

3 reasons why now is the time to go cloud native for device management

Warning for iPhone Users: Experts Warn of Sneaky Fake Lockdown Mode Attack

Russia's AI-Powered Disinformation Operation Targeting Ukraine, US, and Germany

BlackCat ransomware crims threaten to directly extort victim's customers

The Internet Enabled Mass Surveillance. AI Will Enable Mass Spying.

AI and Mass Spying

Zebra ZTC Industrial ZT400 and ZTC Desktop GK420d

Generative AI Security: Preventing Microsoft Copilot Data Exposure

A New Trick Uses AI to Jailbreak AI ModelsIncluding GPT-4

Beware of predatory fin(tech): Loan sharks use Android apps to reach new depths

It's ba-ack... UK watchdog publishes age verification proposals

15,000 Go Module Repositories on GitHub Vulnerable to Repojacking Attack

BlueNoroff: new Trojan attacking macOS users

New Threat Actor 'AeroBlade' Emerges in Espionage Attack on U.S. Aerospace

Microsoft Warns of Kremlin-Backed APT28 Exploiting Critical Outlook Vulnerability

UK government denies China/Russia nuke plant hack claim

ldr521-security-culture-leaders-challenge-coin

~ 4 Dec 2023 ~

US warns Iranian terrorist crew broke into 'multiple' US water facilities

Hershey phishes! - Crooks snarf chocolate lovers' creds

Protecting credentials against social engineering: Cyberattack Series

Two new versions of OpenZFS fix long-hidden corruption bug

US Lawmakers Want to Use a Powerful Spy Tool on Immigrants and Their Families

Exposed Hugging Face API tokens offered full access to Meta's Llama 2

New BLUFFS Bluetooth Attack Expose Devices to Adversary-in-the-Middle Attacks

AI and Trust

Make a Fresh Start for 2024: Clean Out Your User Inventory to Reduce SaaS Risk

New P2PInfect Botnet MIPS Variant Targeting Routers and IoT Devices

Kaspersky Security Bulletin 2023. Statistics

Inside America's School Internet Censorship Machine

LogoFAIL: UEFI Vulnerabilities Expose Devices to Stealth Malware Attacks

EU lawmakers finalize cyber security rules that panicked open source devs

New Relic's cyber-something revealed as attack on staging systems, some users

Microsoft Warns of Malvertising Scheme Spreading CACTUS Ransomware

MITREs Updated ATT&CK Framework: What Cloud Defenders Need to Know

~ 3 Dec 2023 ~

How to Not Get Hacked by a QR Code

~ 2 Dec 2023 ~

ChatGPT Spit Out Sensitive Data When Told to Repeat Poem Forever

Agent Racoon Backdoor Targets Organizations in Middle East, Africa, and U.S.

Russian Hacker Vladimir Dunaev Convicted for Creating TrickBot Malware

60 US credit unions offline after ransomware infects backend cloud outfit

~ 1 Dec 2023 ~

Friday Squid Blogging: Strawberry Squid in the Galpagos

Apple slaps patch on WebKit holes in iPhones and Macs amid fears of active attacks

When It Comes to January 6 Lawsuits, a Court Splits Donald Trump in Two

UEFI flaws allow bootkits to pwn potentially hundreds of devices using images

US readies prison cell for another Russian Trickbot developer

New FjordPhantom Android Malware Targets Banking Apps in Southeast Asia

Teaching appropriate use of AI tech Week in security with Tony Anscombe

AI Decides to Engage in Insider Trading

Qakbot Takedown Aftermath: Mitigations and Protecting Against Future Threats

Chinese Hackers Using SugarGh0st RAT to Target South Korea and Uzbekistan

Discover How Gcore Thwarted Powerful 1.1Tbps and 1.6Tbps DDoS Attacks

Regulator says stranger entered hospital, treated a patient, took a document ... then vanished

WhatsApp's New Secret Code Feature Lets Users Protect Private Chats with Password

IT threat evolution in Q3 2023. Mobile statistics

IT threat evolution Q3 2023

IT threat evolution in Q3 2023. Non-mobile statistics

U.S. Treasury Sanctions North Korean Kimsuky Hackers and 8 Foreign Agents

Interpol makes first border arrest using Biometric Hub to ID suspect

Zyxel Releases Patches to Fix 15 Flaws in NAS, Firewall, and AP Devices

Andurils New Drone Killer Is Locked on to AI-Powered Warfare

Zero-Day Alert: Apple Rolls Out iOS, macOS, and Safari Patches for 2 Actively Exploited Flaws

Today's 'China is misbehaving online' allegations come from Google, Meta

~ 30 Nov 2023 ~

Uh-oh, update Google Chrome exploit already out there for one of these 6 security holes

Admin of $19M marketplace that sold social security numbers gets 8 years in jail

Extracting GPTs Training Data

Google Fixes a Seventh Zero-Day Flaw in ChromeUpdate Now

Black Basta ransomware operation nets over $100M from victims in less than two years

Google Unveils RETVec - Gmail's New Defense Against Spam and Malicious Emails

Yokogawa STARDOM

The CDC's Gun Violence Research Is in Danger

PTC KEPServerEx

Mitsubishi Electric FA Engineering Software Products

Delta Electronics DOPSoft

This Free Solution Provides Essential Third-Party Risk Management for SaaS

North Korea's Lazarus Group Rakes in $3 Billion from Cryptocurrency Hacks

7 Uses for Generative AI to Enhance Security Operations

CACTUS Ransomware Exploits Qlik Sense Vulnerabilities in Targeted Attacks

Executives behaving badly: 5 ways to manage the executive cyberthreat

Locking down Industrial Control Systems

Weak session keys let snoops take a byte out of your Bluetooth traffic

U.S. Treasury Sanctions Sinbad Cryptocurrency Mixer Used by North Korean Hackers

US lawmakers have Chinese LiDAR on their threat-detection radar

Rogue ex-Motorola techie admits cyberattack on former employer, passport fraud

~ 29 Nov 2023 ~

Uncle Sam probes cyberattack on Pennsylvania water system by suspected Iranian crew

Okta: Breach Affected All Customer Support Users

Okta data breach dilemma dwarfs earlier estimates

Okta Breach Impacted All Customer Support UsersNot 1 Percent