Port 22

~ 10 Jan 2023 ~

65% of Organizations Plan to Adopt a Security Service Edge Platform in Next 2 Years: Axis Security

Netskope Threat Research: Malware-Delivering Cloud Apps Nearly Tripled in 2022

The Resolution Every CSO/CISO Should Make This Year

Delinea 2022 State of Ransomware Report Reveals That Attacks Are Down 61% From the Previous Year, and Ransom Payments Are Also on the Decline

Moving Analytics Launches Single Sign on to Strengthen Data Security and Improve User Experience

Critical Security Flaw Found in "jsonwebtoken" Library Used by 22,000+ Projects

Black Hat Flashback: The Deadly Consequences of Weak Medical Device Security

Expert Analysis Reveals Cryptographic Weaknesses in Threema Messaging App

Italian Users Warned of Malware Attack Targeting Sensitive Information

ChatGPT-Written Malware

StrongPity espionage campaign targeting Android users

Black Box KVM

Pakistans government to agencies: Dark web is dangerous, please dont go there

DHS and CISA building an AI-based cybersecurity analytics sandbox

SAP Chief Trust Office Thinks Outside the Box on Fostering Talent with SANS

~ 9 Jan 2023 ~

Firmware Vulnerability in Chips Helps Hackers Take Control of Systems

Attackers Are Already Exploiting ChatGPT to Write Malicious Code

Serbia Slammed With DDoS Attacks

Rackspace Ransomware Incident Highlights Risks of Relying on Mitigation Alone

US Supremes deny Pegasus spyware maker's immunity claim

'Copyright Infringement' Lure Used for Facebook Credential Harvesting

JsonWebToken Security Bug Opens Servers to RCE

Microsoft Entra: 5 identity priorities for 2023

Schneider Electric and BitSight Announce Partnership to Improve Detection of Operational Technology (OT) Cybersecurity Exposure

7 Use Cases for Distributed Cloud Environments

Web 3.0 Shifts Attack Surface and Highlights Need for Continuous Security

Identity Thieves Bypassed Experian Security to View Credit Reports

Kinsing Cryptojacking Hits Kubernetes Clusters via Misconfigured PostgreSQL

Cracked it! Highlights from KringleCon 5: Golden Rings

New Study Uncovers Text-to-SQL Model Vulnerabilities Allowing Data Theft and DoS Attacks

Why Do User Permissions Matter for SaaS Security?

Identifying People Using Cell Phone Location Data

How much security is enough?

Hybrid work: Turning business platforms into preferred social spaces

Millions of Vehicles at Risk: API Vulnerabilities Uncovered in 16 Major Car Brands

Malicious PyPI Packages Using Cloudflare Tunnels to Sneak Through Firewalls

Top SaaS Cybersecurity Threats in 2023: Are You Ready?

Hackers Can Abuse Visual Studio Marketplace to Target Developers with Malicious Extensions

~ 8 Jan 2023 ~

No more holidays for US telcos, FCC is cracking down

Russian Turla Hackers Hijack Decade-Old Malware Infrastructure to Deploy New Backdoors

~ 7 Jan 2023 ~

Slack Discloses Breach of Its Github Code Repository

Chinese researchers' claimed quantum encryption crack looks unlikely

Here's how to remotely takeover a Ferrari...account, that is

~ 6 Jan 2023 ~

In Memoriam: Remembering Those Who Passed

Friday Squid Blogging: Squid Fetish

Russia-Linked Turla APT Sneakily Co-Opts Ancient Andromeda USB Infections

Freedom for MegaCortex ransomware victims - the fix is out

Vice Society Releases Info Stolen From 14 UK Schools, Including Passport Scans

Schneier on Security Audiobook Sale

CISOs Are Focused on These 3 Trends. Are You?

PurpleUrchin Gang Embraces DevOps In Massive Cloud Malware Campaign

Hackers Using CAPTCHA Bypass Tactics in Freejacking Campaign on GitHub

How to prioritize effectively with threat modeling

Remote Vulnerabilities in Automobiles

Dridex malware pops back up and turns its attention to macOS

From Ferrari to Ford, Cybersecurity Bugs Plague Automotive Safety

Don't Be Blindsided by Software Bills of Materials

ChatGPT Artificial Intelligence: An Upcoming Cybersecurity Threat?

Microsoft Reveals Tactics Used by 4 Ransomware Families Targeting macOS

Twitter Data Leak: What the Exposure of 200 Million User Emails Means for You

Dridex Malware Now Attacking macOS Systems with Novel Infection Method

January 6 Report: 11 Details You May Have Missed

JP Morgan must face suit from Ray-Ban maker after crooks drained $272m from accounts

Rackspace Confirms Play Ransomware Gang Responsible for Recent Breach

WhatsApp Introduces Proxy Support to Help Users Bypass Internet Censorship

SANS Institute proudly welcomes professor Ciaran Martin, founder of the UK National Cyber Security Centre, to its ranks

~ 5 Jan 2023 ~

Rackspace Sunsets Email Service Downed in Ransomware Attack

Rackspace blames ransomware woes on zero-day attack

How Confidential Computing Can Change Cybersecurity

200M Twitter Profiles, with Email Addys, Dumped on Dark Web for Free

Twitter data dump: 200m+ account database now free to download

LogRhythm Enhances Security Analytics With Expanded Security Operations Capabilities

New Survey: One In Four Schools Were Victims Of Cyber Attacks In the Last Year; Administrators To Increase Spending On Privacy and Security

Check Point Research Reports a 38% Increase In 2022 Global Cyberattacks

Turla, a Russian Espionage Group, Piggybacked on Other Hackers' USB Infections

CircleCI: Rotate Stored Secrets ASAP

Bluebottle Continues Bank Heist Assault With Signed Malware

Unraveling the techniques of Mac ransomware

Threat Actors Evade Detection Through Geofencing & Fingerprinting

WhatsApp Launches Proxy Tool to Fight Internet Censorship

Maternal & Family Health Services Issues Notice Of Cybersecurity Incident

DirectTrust and EHNAC Announce Closing Of Merger

US Based ICOIN Technology Announces Secure Messaging Solution Using Hardware Wallet Encryption

Space Race: Defenses Emerge as Satellite-Focused Cyberattacks Ramp Up

Netscope Receives $401M In New Funding

How to Ensure Cybersecurity Investments Remain a Priority Across Your Organization

Blind Eagle Hackers Return with Refined Tools and Sophisticated Infection Chain

Trend Micro Announces New Subsidiary for 5G Cybersecurity

Ransomware target list Week in security with Tony Anscombe

Bluebottle Cybercrime Group Preys on Financial Sector in French-Speaking African Nations

Twitter whistleblower Peiter 'Mudge' Zatko lands new gig at Rapid7

SpyNote Strikes Again: Android Spyware Targeting Financial Institutions

Mitigate the LastPass Attack Surface in Your Environment with this Free Tool

Hitachi Energy UNEM

Hitachi Energy FOXMAN-UN

Hitachi Energy Lumada Asset Performance Management

CircleCI Urges Customers to Rotate Secrets Following Security Incident

The Evolving Tactics of Vidar Stealer: From Phishing Emails to Social Media

Fortinet and Zoho Urge Customers to Patch Enterprise Software Vulnerabilities

Irish Regulators Fine Facebook $414 Million for Forcing Users to Accept Targeted Ads