Port 22

~ 5 Sep 2022 ~

Fake Antivirus and Cleaner Apps Caught Installing SharkBot Android Banking Trojan

Microsoft mistakenly rated Chromium, Electron, as malware

China orders tech companies to 'improve traceability' of users to control 'rumours and false information'

~ 4 Sep 2022 ~

Violence-as-a-Service: Brickings, Firebombings & Shootings for Hire

~ 3 Sep 2022 ~

Police Across US Bypass Warrants With Mass Location-Tracking Tool

Samsung Admits Data Breach that Exposed Details of Some U.S. Customers

Google Release Urgent Chrome Update to Patch New Zero-Day Vulnerability

~ 2 Sep 2022 ~

Google, YouTube ban election trolls ahead of US midterms

Friday Squid Blogging: Squid Images

Crook busted for 3D printing gun parts

Feds, npm Issue Supply Chain Security Guidance to Avert Another SolarWinds

Researchers Spot Snowballing BianLian Ransomware Gang Activity

4 Scenarios for the Digital World of 2040

4 Scenarios for the Digital World of 2040

Revealed: US telcos admit to storing, handing over location data

Raspberry Robin Malware Connected to Russian Evil Corp Gang

AWS Tokens Lurking in Android, iOS Apps Crack Open Corporate Cloud Data

Prynt Stealer Contains a Backdoor to Steal Victims' Data Stolen by Other Cybercriminals

Indian court directs chat app Telegram to disclose details of copyright infringers

The Makings of a Successful Threat-Hunting Program

Will cyberinsurance pay out? Week in security with Tony Anscombe

Ragnar Locker Brags About TAP Air Portugal Breach

Montenegro is the Victim of a Cyberattack

TikTok Users Were Vulnerable to a Single-Click Attack

A Windows 11 Automation Tool Can Easily Be Hijacked

JuiceLedger Hackers Behind the Recent Phishing Attacks Against PyPI Users

The Ultimate Security Blind Spot You Don't Know You Have

Warning: PyPI Feature Executes Code Automatically After Python Package Download

New Evidence Links Raspberry Robin Malware to Dridex and Russian Evil Corp Hackers

Google Chrome Bug Lets Sites Silently Overwrite System Clipboard Content

Ex-NSA trio who spied on Americans for UAE now banned from arms exports

Ghost Data Increases Enterprise Business Risk

~ 1 Sep 2022 ~

Neopets Hackers Had Network Access for 18 Months

Threat Actor Phishing PyPI Users Identified

Skyrocketing IoT Bug Disclosures Put Pressure on Security Teams

New Guidelines Spell Out How to Test IoT Security Products

Code-Injection Bugs Bite Google, Apache Open Source GitHub Projects

Apple Quietly Releases Another Patch for Zero-Day RCE Bug

(ISC)(2) Launches 'Certified in Cybersecurity' Entry-Level Certification to Address Global Workforce Gap

Stop Worrying About Passwords Forever

Real-World Cloud Attacks: The True Tasks of Cloud Ransomware Mitigation

Researchers Detail Emerging Cross-Platform BianLian Ransomware Attacks

Clever Phishing Scam Uses Legitimate PayPal Messages

The US May Soon Learn What a Kid-Friendly Internet Looks Like

Over 1,800 Android and iOS Apps Found Leaking Hard-Coded AWS Credentials

Contec Health CMS8000

Here's how 5 mobile banking apps put 300,000 users' digital fingerprints at risk

Infra Used in Cisco Hack Also Targeted Workforce Management Solution

Delta Electronics DOPSoft

Careless Errors in Hundreds of Apps Could Expose Troves of Data

Microsoft Discover Severe One-Click Exploit for TikTok Android App

Oh no, that James Webb Space Telescope snap might actually contain malware

LabMD gets another shot at defamation claim against 'extortionate' infosec biz

Apple Releases iOS Update for Older iPhones to Fix Actively Exploited Vulnerability

FBI: Look out, crooks stole $1.3b in cryptocurrency in just three months this year

~ 31 Aug 2022 ~

Closing the Security Gap Opened by the Rise of No-Code Tools

Google Fixes 24 Vulnerabilities with New Chrome Update

Crypto-Crooks Spread Trojanized Google Translate App in Watering-Hole Attack

The Pros and Cons of Managed Firewalls

James Webb Telescope Images Loaded With Malware Are Evading EDR

OpenText Goes All-in on Cybersecurity Size and Scale With Micro Focus Purchase

(ISC) Opens Global Enrollment for '1 Million Certified in Cybersecurity' Initiative

Vulnerability in TikTok Android app could lead to one-click account hijacking

TikTok for Android Bug Allows Single-Click Account Hijack

Final Thoughts on Ubiquiti

High-School Graduation Prank Hack

The Inevitability of Cloud Breaches: Tales of Real-World Cloud Attacks

SecureAuth Announces General Availability of Arculix, Its Next-Gen Passwordless, Continuous-Authentication Platform

Youre Not Stringer Bell, but You May Still Need a Burner Phone

Stop Ransomware with Microsoft Security digital event presents threat intelligence in action

Decisions on health data sharing should not be taken by politicians, citizen juries find

Apple Fixed a Serious iOS Security FlawHave You Updated Yet?

Experts Find Malicious Cookie Stuffing Chrome Extensions Used by 1.4 Million Users

How to take control over your digital legacy

Hackers Hide Malware in Stunning Images Taken by James Webb Space Telescope

Interested in Reducing Your Risk Profile? Jamf Has a Solution for That

Google Launches New Open Source Bug Bounty to Tackle Supply Chain Attacks

China-linked APT40 gang targets wind farms, Australian government

Chinese Hackers Used ScanBox Framework in Recent Cyber Espionage Attacks

~ 30 Aug 2022 ~

Find a security hole in Google's open source and you could bag a $31,337 reward

New ODGen Tool Unearths 180 Zero-Days in Node.js Libraries

Don't Let 'Perfect' Be the Enemy of a Good AppSec Program

Malicious Chrome Extensions Plague 1.4M Users

Chinese Hackers Target Energy Sector in Australia, South China Sea

Security Culture: An OT Survival Story

Cohesity Research Reveals that Reliance on Legacy Technology Is Undermining How Organizations Respond to Ransomware

Cyber Signals: 3 strategies for protection against ransomware

How 1-Time Passcodes Became a Corporate Liability

Phishing Campaign Targets PyPI Users to Distribute Malicious Code

Building a Strong SOC Starts With People

Google Expands Bug Bounties to Its Open Source Projects

Cerberus Sentinel Announces Acquisition of CUATROi

Hackers Use ModernLoader to Infect Systems with Stealers and Cryptominers

Hands-on Review: Stellar Cyber Security Operations Platform for MSSPs

FTC Sues Data Broker

Hitachi Energy FACTS Control Platform (FCP) Product

Hitachi Energy Gateway Station (GWS) Product

Hitachi Energy MSM Product

Hitachi Energy RTU500 series

Fuji Electric D300win