Port 22

~ 4 May 2023 ~

Researchers Discover 3 Vulnerabilities in Microsoft Azure API Management Service

Researchers Uncover New Exploit for PaperCut Vulnerability That Can Bypass Detection

Microsoft Patches Serious Azure Cloud Security Flaws

How Microsoft can help you go passwordless this World Password Day

Why the Things You Don't Know about the Dark Web May Be Your Biggest Cybersecurity Threat

Meta Uncovers Massive Social Media Cyber Espionage Operations Across South Asia

Large Language Models and Elections

Not quite an Easter egg: a new family of Trojan subscribers on Google Play

New Generative AI Tools Aim to Improve Security

Creating strong, yet userfriendly passwords: Tips for your business password policy

Meta Takes Down Malware Campaign That Used ChatGPT as a Lure to Steal Accounts

Microsoft Digital Defense Report: Key Cybercrime Trends

VMMM-self-assessment-tool

Everything You Need to Know About Passwords for Your Organization

Cloud-Powered DFIR: Harnessing the cloud to improve investigator efficiency

Go ahead, forget that password. Use a passkey instead, says Google

~ 3 May 2023 ~

Meta does the 'We found baddies and crushed them' thing again this time for AI

Moonsense Raises $4.2M in Seed Funding and Introduces Next-Gen User Behavior and Network Intelligence Solution

Threat Spotlight: Proportion of Malicious HTML Attachments Doubles Within a Year

The Daily Number of Human-Driven Cyber Incidents Increased by 1.5 Times in 2022

Google Chrome Drops Browser Lock Icon

Give NotPetya-hit Merck that $1.4B, appeals court tells insurers

DNA Sequencing Equipment Vulnerability Adds New Twist to Medical Device Cyber Threats

Chrome's HTTPS padlock heads to Google Graveyard

What's the Secret to Finding the Next Big Thing in Cybersecurity?

Court Rejects Merck Insurers' Attempt to Refuse Coverage for NotPetya Damages

Anatomy of a Malicious Package Attack

Forrester names Microsoft a Leader in 2023 Infrastructure-as-a-Service Platform Native Security report

Legitimate Software Abuse: A Disturbing Trend in Ransomware Attacks

Google Introduces Passwordless Secure Sign-In with Passkeys for Google Accounts

Meta Expunges Multiple APT, Cybercrime Groups from Facebook, Instagram

Chinese Hacker Group Earth Longzhi Resurfaces with Advanced Malware Tactics

Hotels at Risk From Bug in Oracle Property Management Software

Meta Moves to Counter New Malware and Repeat Account Takeovers

Google Is Rolling Out Passkeys, the Password-Killing Tech, to All Accounts

Operation SpecTor: $53.4 Million Seized, 288 Vendors Arrested in Dark Web Drug Bust

Download the eBook: What Does it Take to be a Full-Fledged Virtual CISO?

SolarWinds Detected Six Months Earlier

Palo Alto Networks Unveils New Cloud Firewall for Azure

Using Discord? Dont play down its privacy and security risks

Apple and Google Join Forces to Stop Unauthorized Tracking Alert System

Hackers Exploiting 5-year-old Unpatched Vulnerability in TBK DVR Devices

CISA Issues Advisory on Critical RCE Affecting ME RTU Remote Terminal Units

The importance of being certified

The Banana Incident

~ 2 May 2023 ~

Apple pushes first-ever 'rapid' patch and rapidly screws up

Mirai botnet loves exploiting your unpatched TP-Link routers, CISA warns

Promising Jobs at the U.S. Postal Service, US Job Services Leaks Customer Data

APT41 Subgroup Plows Through Asia-Pacific, Utilizing Layered Stealth Tactics

PrivateGPT Tackles Sensitive Info in ChatGPT Prompts

Apple, Google propose anti-stalking spec for Bluetooth tracker tags

Apple Debuts Its Rapid Response Security Update Approach

T-Mobile Experiences Yet Another Data Breach

288 arrested in multinational Monopoly Market takedown

American College of Pediatricians Leak Exposes 10,000 Confidential Files

AppSec Making Progress or Spinning Its Wheels?

With 288 Arrests, Feds Reveal a Widening Dragnet of Dark-Web Busts

North Korean APT Gets Around Macro-Blocking With LNK Switch-Up

Google Ads Abused to Lure Corporate Workers to LOBSHOT Backdoor

Researchers Uncover New BGP Flaws in Popular Internet Routing Protocol Software

In the face of data disaster

NIST Draft Document on Post-Quantum Cryptography Guidance

4 Principles for Creating a New Blueprint for Secure Software Development

China 'Innovated' Its Cyberattack Tradecraft, Mandia Says

Mitsubishi Electric Factory Automation Products

BouldSpy Android Spyware: Iranian Government's Alleged Tool for Spying on Minority Groups

Why Telecoms Struggle with SaaS Security

Data loss costs are going up and not just for those who choose to pay thieves

SolarWinds: The Untold Story of the Boldest Supply-Chain Hack

APT groups muddying the waters for MSPs

Managed Detection and Response in 2022

LOBSHOT: A Stealthy, Financial Trojan and Info Stealer Delivered through Google Ads

Microsoft Digital Defense Report: Trends In Device and Infrastructure Attacks

North Korea's ScarCruft Deploys RokRAT Malware via LNK File Infection Chains

Russia's APT28 targets Ukraine government with bogus Windows updates

Alert: Active Exploitation of TP-Link, Apache, and Oracle Vulnerabilities Detected

Feds rethink warrantless search stats and oh look, a huge drop in numbers

~ 1 May 2023 ~

US Wellness Provides Notification of Data Security Incident

Enterprise Strategy Group Research Reveals 75% of Organizations Change or Update APIs on a Daily or Weekly Basis

FBI Focuses on Cybersecurity With $90M Budget Request

APT28 Employs Windows Update Lures to Trick Ukrainian Targets

BlackCat Trolls Western Digital With Leaked Response Meeting Image

IT giant Bitmarck shuts down customer, internal systems after cyberattack

APT28 Targets Ukrainian Government Entities with Fake "Windows Update" Emails

Centralized secrets management picks up pace

What the Cybersecurity Industry Can Learn From the SVB Crisis

Name That Edge Toon: Fare Thee Well

New Decoy Dog Malware Toolkit Uncovered: Targeting Enterprise Networks

Google adds account sync for Authenticator, without E2EE

The High-Stakes Scramble to Stop Classified Leaks

Wanted Dead or Alive: Real-Time Protection Against Lateral Movement

What does ChatGPT know about phishing?

Vietnamese Threat Actor Infects 500,000 Devices Using 'Malverposting' Tactics

Your security failure was so bad we have to close the company .... NOT!

Google Blocks 1.43 Million Malicious Apps, Bans 73,000 Bad Accounts in 2022

China has 50 hackers for every FBI cyber agent, says Bureau boss

A Visual Summary of SANS ICS Summit 2023

~ 30 Apr 2023 ~

Apple, Google, and Microsoft Just Fixed Zero-Day Security Flaws

~ 29 Apr 2023 ~

The Tragic Fallout From a School Districts Ransomware Breach

How to Remove Your Personal Info From Google's Search Results