Port 22

~ 29 Mar 2022 ~

Ukraine security agency shutters Russian disinformation bot farms

Hackers Gaining Power of Subpoena Via Fake Emergency Data Requests

Exploring the Intersection of Physical Security and Cybersecurity

A Detailed Look at the Conti Ransomware Gang

Stop Tracking Your Loved Ones

Cybercrooks target students with fake job opportunities

Philips e-Alert

Rockwell Automation ISaGRAF

Omron CX-Position

Hitachi Energy LinkOne WebView

Modbus Tools Modbus Slave

Europes quest for energy independence and how cyberrisks come into play

New Hacking Campaign by Transparent Tribe Hackers Targeting Indian Officials

Privid: A Privacy-Preserving Surveillance Video Analytics System

Critical Sophos Firewall RCE Vulnerability Under Active Exploitation

New Malware Loader 'Verblecon' Infects Hacked PCs with Cryptocurrency Miners

Experts Detail Virtual Machine Used by Wslink Malware Loader for Obfuscation

IcedID malware, in the hijacked email thread, with the insecure Exchange servers

A Large-Scale Supply Chain Attack Distributed Over 800 Malicious NPM Packages

New Report on Okta Hack Reveals the Entire Episode LAPSUS$ Attack

Low-Code/No-Code Tools Are Popular, But Untrusted

~ 28 Mar 2022 ~

Zero-Day Surge Led to More Rapid Exploitation of Bugs in 2021

Triton Malware Still Targeting Energy Firms

New Lapsus$ Hack Documents Make Oktas Response Look More Bizarre

Sophos fixes critical hijack flaw in firewall offering

Google Chrome, Microsoft Edge patched in race against exploitation

The Future of Digital Cash Is Not on the Blockchain

Vodafone Portugal: The Attack on Brand Reputations and Public Confidence Through Cybercrime

China APT group using Russia invasion, COVID-19 in phishing attacks

Security's Life Cycle Isn't the Developers' Life Cycle

Triton malware still a threat to energy sector, FBI warns

The first step to data privacy is admitting you have a problem, Google

Under the hood of Wslinks multilayered virtual machine

Will Chinese giants defy US sanctions on Russia? We asked a ZTE whistleblower

Hackers Hijack Email Reply Chains on Unpatched Exchange Servers to Spread Malware

Of Cybercriminals and IP Addresses

Okta acknowledges 'mistake' in handling of Lapsus$ attack

'Purple Fox' Hackers Spotted Using New Variant of FatalRAT in Recent Malware Attacks

Warnings of Impending Russian Cyberattacks: What to Do Now to Harden Your Systems

Kaspersky, China Telecom, China Mobile named 'threats to US national security'

~ 27 Mar 2022 ~

Muhstik Botnet Targeting Redis Servers Using Recently Disclosed Vulnerability

~ 26 Mar 2022 ~

Hunt for Lapsus$ Hackers Leads to a British Teen

Precursor malware infection may be sign you're about to get ransomware, says startup

FCC Adds Kaspersky and Chinese Telecom Firms to National Security Threat List

Another Chinese Hacking Group Spotted Targeting Ukraine Amid Russia Invasion

~ 25 Mar 2022 ~

Indictment of Russian National Offers Glimpse Into Methodical Targeting of Energy Firm

Friday Squid Blogging: Unexpectedly Low Squid Population in the Arctic

Unit 42: Ransomware demands averaged $2.2m last year

Pay to play: Ransom demands averaged $2.2m last year

The Fragile Open Source Ecosystem Isn't Ready for 'Protestware'

Google Issues Urgent Chrome Update to Patch Actively Exploited Zero-Day Vulnerability

How Do I Demonstrate the ROI of My Security Program?

WiCyS Members Now Have access to Cyber Defense Challenge Through Target

Estonian Tied to 13 Ransomware Attacks Gets 66 Months in Prison

Here's How Fast Ransomware Encrypts Files

Atlassian flags Bitbucket and Confluence Data Center flaws

Hackers remotely start, unlock Honda Civics with $300 tech

Week in security with Tony Anscombe

HR Alone Can't Solve the Great Resignation

Gus Simmonss Memoir

How AI can fend off supply-chain attacks

US DoJ reveals Russian supply chain attack targeting energy sector

U.S. Charges 4 Russian Govt. Employees Over Hacking Critical Infrastructure Worldwide

7 Suspected Members of LAPSUS$ Hacker Gang, Aged 16 to 21, Arrested in U.K.

Distributor dumps Kaspersky to show solidarity with Ukraine

Experts Uncover Campaign Stealing Cryptocurrency from Android and iPhone Users

We blocked North Korea's Chrome exploit, says Google

North Korean Hackers Exploited Chrome Zero-Day to Target Fintech, IT, and Media Firms

Feds Allege Destructive Russian Hackers Targeted US Refineries

~ 24 Mar 2022 ~

Microsoft Azure developers targeted by 200-plus data-stealing npm packages

Russian Nationals Indicted for Epic Triton/Trisis and Dragonfly Cyberattacks on Energy Firms

Downloaders Currently the Most Prevalent Android Malware

British cops arrest seven in Lapsus$ crime gang probe

How Casinos Can Prevent Loyalty Incentive and Account Takeover Fraud

Ransomware Payments, Demands Rose Dramatically in 2021

Pandemic Leaves Firms Scrambling for Cybersecurity Specialists

HP finance manager went on $5m personal spending spree with company card

For MSPs, Next-Gen Email Security Is a Must

APIs & the Software Supply Chain Evolving Security for Today's Digital Ecosystem

Is a nationstate digital deterrent scenario so farfetched?

What the Conti Ransomware Group Data Leak Tells Us

Crypto malware in patched wallets targeting Android and iOS devices

Linux Improves Its Random Number Generator

UK Ministry of Defence takes recruitment system offline, confirms data leak

Yokogawa CENTUM and Exaopc

Phishing-kit market: whats inside off-the-shelf phishing packages

mySCADA myPRO

IT outage at Scotland's Heriot-Watt University enters second week

Check Point spreading AI goodness throughout its security portfolio

23-Year-Old Russian Hacker Wanted by FBI for Running Marketplace of Stolen Logins

Chinese APT Hackers Targeting Betting Companies in Southeast Asia

How to Build a Custom Malware Analysis Sandbox

F-Secure spins out new enterprise security business: WithSecure

Researchers Trace LAPSUS$ Cyber Attacks to 16-Year-Old Hacker from England

Over 200 Malicious NPM Packages Caught Targeting Azure Developers

Cyber Kill Chain, MITRE ATT&CK, and Purple Team

~ 23 Mar 2022 ~

VMware fixes command injection, file upload flaws in Carbon Black security tool

US says Russian ran online marketplace of stolen logins

A Closer Look at the LAPSUS$ Data Extortion Group

Nestl says it leaked its own test data, not Anonymous