Port 22

~ 18 May 2022 ~

Lacework Integrates Kubernetes Features to Enhance Security Across Multi-Cloud Environments

How these crooks backdoor online shops and siphon victims' credit card info

CISA: Unpatched F5 BIG-IP Devices Under Active Attack

The Industry Must Better Secure Open Source Code From Threat Actors

Senators Urge FTC to Probe ID.me Over Selfie Data

Microsoft Flags Attack Targeting SQL Servers With Novel Approach

2022: The Year Zero Trust Becomes Mainstream

So you want to be a CISO: What you should know about data protection

How Threat Actors Are a Click Away From Becoming Quasi-APTs

Your data's auctioned off up to 987 times a day, NGO reports

iPhone Malware that Operates Even When the Phone Is Turned Off

This Hacktivist Site Lets You Prank-Call Russian Officials

Microsoft warns partners to revoke unused authorizations that drive <em>your</em> software

Fake news why do people believe it?

State of internet crime in Q1 2022: Bot traffic on the rise, and more

Monero-mining botnet targets Windows, Linux web servers

How to Protect Your Data When Ransomware Strikes

Researchers Expose Inner Workings of Billion-Dollar Wizard Spider Cybercrime Gang

[eBook] Your 90-Day MSSP Plan: How to Improve Margins and Scale-Up Service Delivery

Hackers Gain Fileless Persistence on Targeted SQL Servers Using a Built-in Utility

U.S. Warns Against North Korean Hackers Posing as IT Freelancers

Microsoft Warns of "Cryware" Info-Stealing Malware Targeting Crypto Wallets

When Your Smart ID Card Reader Comes With Malware

SANS MGT521 Security Culture Course New Version Released

~ 17 May 2022 ~

Russian Conti Ransomware Gang Threatens to Overthrow New Costa Rican Government

FBI warns of North Korean cyberspies posing as foreign IT workers

TorchLight Expands Cybersecurity Services With MDR Sentinel in Partnership With Microsoft

Critical VMware Bug Exploits Continue, as Botnet Operators Jump In

FBI: E-Tailers, Beware Web Injections for Scraping Credit-Card Data, Backdoors

New Venture Capital Fund Focuses on Emerging Cybersecurity Tech

(ISC) Unveils 100K in the UK Scheme to Expand the UK Cybersecurity Workforce with 100,000 Free Entry-Level Certification Exams and Education Opportunities

Rubrik Launches Rubrik Security Cloud to Secure Data, Wherever it Lives, Across Enterprise, Cloud, and SaaS

Your iPhone Is Vulnerable to a Malware Attack Even When Its Off

Widespread Attack on WordPress Sites Targets Tatsu Builder Plug-in

Training to Beat a Bad Cybersecurity Culture

Local Government's Guide to Minimizing the Risk of a Cyberattack

Easy authentication and authorization in Azure Active Directory with No-Code Datawiza

Pentester pops open Tesla Model 3 using low-cost Bluetooth module

Google assuring open source code to secure software supply chains

In hot pursuit of cryware: Defending hot wallets from attacks

Google Cloud Aims to Share Its Vetted Open Source Ecosystem

Barracuda Expands Cloud-Native SASE Platform to Protect Hybrid Cloud Deployments

Qualys Adds Custom Assessment and Remediation to Its Cloud Platform

YouMail Launches YouMail Protective Services for Carriers and Enterprises

Ericoms New ZTEdge Web Application Isolation Addresses Security Concerns Associated With Third-Party Contractor Application Access

Bitdefender Launches Identity Theft Protection Service for U.S. Consumers

Evaluation of cyber activities and the threat landscape in Ukraine

How Mobile Networks Have Become a Front in the Battle for Ukraine

Attacks on Managed Service Providers Expected to Increase

Circutor COMPACT DC-S BASIC

Facebook rated least safe e-commerce option in government rankings

Europe moves closer to stricter cybersecurity standards, reporting regs

UpdateAgent Returns with New macOS Malware Dropper Written in Swift

Are You Investing in Securing Your Data in the Cloud?

Venezuelan cardiologist charged with designing and selling ransomware

China reveals its top five sources of online fraud

U.S. Charges Venezuelan Doctor for Using and Selling Thanos Ransomware

New Sysrv Botnet Variant Hijacking Windows and Linux with Crypto Miners

Over 200 Apps on Play Store Caught Spying on Android Users Using Facestealer

~ 16 May 2022 ~

US brings first-of-its-kind criminal charges of Bitcoin-based sanctions-busting

RF Technologies Releases Safe Place Staff Protection for Healthcare Settings

50% of Orgs Rely on Email to Manage Security

iPhones Open to Attack Even When Off, Researchers Say

Watch Out! Hackers Begin Exploiting Recent Zyxel Firewalls RCE Vulnerability

Open Source Security Gets $150M Boost From Industry Heavy Hitters

You Can't Opt Out of Citizen Development

NSA Cyber Chief Vows 'No Backdoors' in Quantum Encryption Standards

Hackers are after your data. So why are you making it so easy for them?

Name That Toon: Knives Out

Critical Zyxel Firewall Bug Under Active Attack After PoC Exploit Debut

Microsoft showcases the future of comprehensive security at RSA 2022

US Cyber Director: Forging a Cybersecurity Social Contract Is Not Optional

US Courts Are Coming After Crypto Exchanges That Skirt Sanctions

Me, My Digital Self, and I: Why Identity Is the Foundation of a Decentralized Future

US National Cyber Director: Toward a New Cybersecurity Social Contract

The NSA Says that There are No Known Flaws in NISTs Quantum-Resistant Algorithms

San Francisco police use driverless cars for surveillance

The downside of debugging ransomware

HTML attachments in phishing e-mails

Fake Clickjacking Bug Bounty Reports: The Key Facts

Researchers Find Way to Run Malware on iPhone Even When It's OFF

Researchers Warn of "Eternity Project" Malware Service Being Sold via Telegram

~ 15 May 2022 ~

Europe Agrees to Adopt New NIS2 Directive Aimed at Hardening Cybersecurity

Ukrainian Hacker Jailed for 4-Years in U.S. for Selling Access to Hacked Servers

~ 14 May 2022 ~

Upcoming Speaking Engagements

How to Turn a Coke Can Into an Eavesdropping Device

The NSA Swears It Has No Backdoors in Next-Gen Encryption

Get Lifetime Access to 2022 Cybersecurity Certification Prep Courses @ 95% Off

Shopping for malware: $260 gets you a password stealer. $90 for a crypto-miner...

~ 13 May 2022 ~

SonicWall Releases Patches for New Flaws Affecting SSLVPN SMA1000 Devices

Ukrainian crook jailed in US for selling thousands of stolen login credentials

Friday Squid Blogging: Squidmobile

US Agrees to International Electronic Cybercrime Evidence Swap

CISO Shares Top Strategies to Communicate Security's Value to the Biz

Another ex-eBay exec admits cyberstalking web souk critics

Black Hat Asia: Democracy's Survival Depends on Taming Technology

Linux, OpenSSF Champion Plan to Improve Open Source Security

Software patching must work like car safety recalls, says US cyber boss

Log4Shell Exploit Threatens Enterprise Data Lakes, AI Poisoning

Most organizations hit by ransomware would pay up if hit again