Port 22

~ 18 Oct 2023 ~

CIA exposed to potential intelligence interception due to X's URL bug

Better safe than sorry: 10 tips to build an effective business backup strategy

Critical Citrix NetScaler Flaw Exploited to Target from Government, Tech Firms

Data Security and Collaboration in the Modern Enterprise

Unraveling Real-Life Attack Paths Key Lessons Learned

Qubitstrike Targets Jupyter Notebooks with Crypto Mining and Rootkit Campaign

Analysis of Intellexas Predator Spyware

Updated MATA attacks industrial companies in Eastern Europe

Jupyter Notebook Ripe for Cloud Credential Theft, Researchers Warn

TetrisPhantom: Cyber Espionage via Secure USBs Targets APAC Governments

New Admin Takeover Vulnerability Exposed in Synology's DiskStation Manager

D-Link Confirms Data Breach: Employee Falls Victim to Phishing Attack

~ 17 Oct 2023 ~

Insiders Say Xs Crowdsourced Anti-Disinformation Tool Is Making the Problem Worse

Amazon Quietly Wades Into the Passkey Waters

Chatbot Offers Roadmap for How to Conduct a Bio Weapons Attack

UAE, US Partner to Bolster Financial Services Cybersecurity

Zero-Day Alert: Ten Thousand Cisco IOS XE Systems Now Compromised

Watch Out: Attackers Are Hiding Malware in 'Browser Updates'

Tech CEO Sentenced to 5 Years in IP Address Scheme

Etherhiding Blockchain Technique Hides Malicious Code in WordPress Sites

Discord: A Playground for Nation-State Hackers Targeting Critical Infrastructure

Critical Vulnerabilities Uncovered in Open Source CasaOS Cloud Software

Top 6 Mistakes in Incident Response Tabletop Exercises

US cybercops urge admins to patch amid ongoing Confluence chaos

Schneider Electric EcoStruxure Power Monitoring Expert and Power Operation Products

Rockwell Automation FactoryTalk Linx

Webinar: Locking Down Financial and Accounting Data Best Data Security Strategies

Security Vulnerability of Switzerlands E-Voting System

Exploring the Realm of Malicious Generative AI: A New Digital Security Challenge

Experts Warn of Severe Flaws Affecting Milesight Routers and Titan SFTP Servers

APT trends report Q3 2023

They Supported Air Strike Victims. Then They Were Doxed and Arrested

Operation King TUT: The universe of threats in LATAM

British boffins say aircraft could fly on trash, cutting pollution debt by 80%

CERT-UA Reports: 11 Ukrainian Telecom Providers Hit by Cyberattacks

Warning: Unpatched Cisco Zero-Day Vulnerability Actively Targeted in the Wild

Will you meet the directive?

5 Ways Hospitals Can Help Improve Their IoT Security

~ 16 Oct 2023 ~

Security Must Empower AI Developers Now

Malicious 'Airstrike Alert' App Targets Israelis

Kaspersky Launches Specialized Security Solution for Containerized Environments

Critical, Unpatched Cisco Zero-Day Bug Is Under Active Exploit

'RomCom' Cyber Campaign Targets Women Political Leaders

We're not in e-Kansas anymore: State courts reel from 'unauthorized incursion'

Name That Toon: Modern Monarchy

Pro-Israeli Hacktivist Group Predatory Sparrow Reappears

A hack in hand is worth two in the bush

BLOODALCHEMY provides backdoor to southeast Asian nations' secrets

How Data Changes the Cyber-Insurance Market Outlook

Pro-Russian Hackers Exploiting Recent WinRAR Vulnerability in New Campaign

SpyNote: Beware of This Android Trojan that Records Audio and Phone Calls

The Fast Evolution of SaaS Security from 2020 to 2024 (Told Through Video)

Coin Flips Are Biased

Deepfake Porn Is Out of Control

Signal Debunks Zero-Day Vulnerability Reports, Finds No Evidence

Why Zero Trust Is the Cloud Security Imperative

3 Essential Steps to Strengthen SaaS Security

Binance's Smart Chain Exploited in New 'EtherHiding' Malware Campaign

Regulator, insurers and customers all coming for Progress after MOVEit breach

A Visual Summary of SANS CloudSecNext Summit 2023

~ 14 Oct 2023 ~

The US Congress Was Targeted With Predator Spyware

Microsoft to Phase Out NTLM in Favor of Kerberos for Stronger Authentication

~ 13 Oct 2023 ~

Friday Squid Blogging: On Squid Intelligence

How MOVEit Is Likely to Shift Cyber Insurance Calculus

Feds: Beware AvosLocker Ransomware Attacks on Critical Infrastructure

Security Pros Warn that EU's Vulnerability Disclosure Rule is Risky

530K people's info feared stolen from cloud PC gaming biz Shadow

Bungled ransomware raid targeting WS_FTP servers demanded just 0.018 BTC

ShellBot Cracks Linux SSH Servers, Debuts New Evasion Tactic

Microsoft Debuts AI Bug-Bounty Program, Offers $15K

Rumors of a Global Day of Jihad Have Unleashed a Dangerous Wave of Disinformation

Gaza Conflict Paves Way for Pro-Hamas Information Operations

Passkeys Are Cool, But They Aren't Enterprise-Ready

Calls for Visual Studio security tweak fall on deaf ears despite one-click RCE exploit

Staying on top of security updates Week in security with Tony Anscombe

Can open source be saved from the EU's Cyber Resilience Act?

New PEAPOD Cyberattack Campaign Targeting Women Political Leaders

What the Hollywood Writers Strike Resolution Means for Cybersecurity

US House Republicans Had Their Phones Confiscated to Stop Leaks

Equifax scores 11.1M slap on wrist over 2017 mega breach

ChatGPT at work: how chatbots help employees, but threaten business

Researchers Unveil ToddyCat's New Set of Tools for Data Exfiltration

Hacking the High School Grading System

Ransomware attacks doubled year on year. Are organizations equipped to handle the evolution of Ransomware in 2023?

HTTP/2 Rapid Reset: A New Protocol Vulnerability Will Haunt the Web for Years

DarkGate Malware Spreading via Messaging Services Posing as PDF Files

FBI, CISA Warn of Rising AvosLocker Ransomware Attacks Against Critical Infrastructure

Squid games: 35 security holes still unpatched in proxy after 2 years, now public

~ 12 Oct 2023 ~

Making the Case for Cryptographic Agility and Orchestration

How to Scan Your Environment for Vulnerable Versions of Curl

DigiCert Announces Comprehensive Discovery of Cryptographic Assets

Appdome Announces Attack Evaluation Tools in Digital Economy's Mobile XDR

DarkGate Operator Uses Skype, Teams Messages to Distribute Malware

Brands Beware: X's New Badge System Is a Ripe Cyber-Target

Microsoft Set to Retire Grunge-Era VBScript, to Cybercrime's Chagrin

BlackBerry Unveils Next-Generation UEM Redefining the Endpoint Management Market

Simpson Manufacturing Launches Investigation After Cyberattack

The Cyberwar Between the East and the West Goes Through Africa

Backdoor Lurks Behind WordPress Caching Plugin to Hijack Websites

Protect Critical Infrastructure With Same Rigor as Classified Networks