Port 22

~ 6 Sep 2022 ~

Cymulate Raises $70M Series D Funding for Continuous Security Posture Testing

Botnets in the Age of Remote Work

EvilProxy Commodifies Reverse-Proxy Tactic for Phishing, Bypassing 2FA

Unhappy about excluding nation-state attacks from cyberinsurance? Get ready to pay

Defenders Be Prepared: Cyberattacks Surge Against Linux Amid Cloud Migration

Worok Hackers Target High-Profile Asian Companies and Governments

Its Time to Get Real About TikToks Risks

Triangle Microworks Libraries

AVEVA Edge 2020 R2 SP1 and all prior versions

Cognex 3D-A1000 Dimensioning System

Hitachi Energy TXpert Hub CoreTec 4

TA505 Hackers Using TeslaGun Panel to Manage ServHelper Backdoor Attacks

Worok: The big picture

Integrating Live Patching in SecDevOps Workflows

Good game, well played: an overview of gaming-related cyberthreats in 2022

New EvilProxy Phishing Service Allowing Cybercriminals to Bypass 2-Factor Security

Researchers Find New Android Spyware Campaign Targeting Uyghur Community

QNAP Warns of New DeadBolt Ransomware Attacks Exploiting Photo Station Flaw

~ 5 Sep 2022 ~

TikTok Denies Data Breach Reportedly Exposing Over 2 Billion Users' Information

What Is Your Security Team Profile? Prevention, Detection, or Risk Management

3 Critical Steps for Reducing Cloud Risk

Maximum protection against hostile incursions

NATO investigates after criminals claim to be selling its stolen missile plans

Ransomware Attackers Abuse Genshin Impact Anti-Cheat System to Disable Antivirus

Nadine Dorries promotes 'Brexit rewards' of proposed UK data protection law

The nature of cyber incidents

Fake Antivirus and Cleaner Apps Caught Installing SharkBot Android Banking Trojan

Microsoft mistakenly rated Chromium, Electron, as malware

China orders tech companies to 'improve traceability' of users to control 'rumours and false information'

~ 4 Sep 2022 ~

Violence-as-a-Service: Brickings, Firebombings & Shootings for Hire

~ 3 Sep 2022 ~

Police Across US Bypass Warrants With Mass Location-Tracking Tool

Samsung Admits Data Breach that Exposed Details of Some U.S. Customers

Google Release Urgent Chrome Update to Patch New Zero-Day Vulnerability

~ 2 Sep 2022 ~

Google, YouTube ban election trolls ahead of US midterms

Friday Squid Blogging: Squid Images

Crook busted for 3D printing gun parts

Feds, npm Issue Supply Chain Security Guidance to Avert Another SolarWinds

Researchers Spot Snowballing BianLian Ransomware Gang Activity

4 Scenarios for the Digital World of 2040

4 Scenarios for the Digital World of 2040

Revealed: US telcos admit to storing, handing over location data

Raspberry Robin Malware Connected to Russian Evil Corp Gang

AWS Tokens Lurking in Android, iOS Apps Crack Open Corporate Cloud Data

Prynt Stealer Contains a Backdoor to Steal Victims' Data Stolen by Other Cybercriminals

Indian court directs chat app Telegram to disclose details of copyright infringers

The Makings of a Successful Threat-Hunting Program

Will cyberinsurance pay out? Week in security with Tony Anscombe

Ragnar Locker Brags About TAP Air Portugal Breach

Montenegro is the Victim of a Cyberattack

TikTok Users Were Vulnerable to a Single-Click Attack

A Windows 11 Automation Tool Can Easily Be Hijacked

JuiceLedger Hackers Behind the Recent Phishing Attacks Against PyPI Users

The Ultimate Security Blind Spot You Don't Know You Have

Warning: PyPI Feature Executes Code Automatically After Python Package Download

New Evidence Links Raspberry Robin Malware to Dridex and Russian Evil Corp Hackers

Google Chrome Bug Lets Sites Silently Overwrite System Clipboard Content

Ex-NSA trio who spied on Americans for UAE now banned from arms exports

Ghost Data Increases Enterprise Business Risk

~ 1 Sep 2022 ~

Neopets Hackers Had Network Access for 18 Months

Threat Actor Phishing PyPI Users Identified

Skyrocketing IoT Bug Disclosures Put Pressure on Security Teams

New Guidelines Spell Out How to Test IoT Security Products

Code-Injection Bugs Bite Google, Apache Open Source GitHub Projects

Apple Quietly Releases Another Patch for Zero-Day RCE Bug

(ISC)(2) Launches 'Certified in Cybersecurity' Entry-Level Certification to Address Global Workforce Gap

Stop Worrying About Passwords Forever

Real-World Cloud Attacks: The True Tasks of Cloud Ransomware Mitigation

Researchers Detail Emerging Cross-Platform BianLian Ransomware Attacks

Clever Phishing Scam Uses Legitimate PayPal Messages

The US May Soon Learn What a Kid-Friendly Internet Looks Like

Over 1,800 Android and iOS Apps Found Leaking Hard-Coded AWS Credentials

Contec Health CMS8000

Here's how 5 mobile banking apps put 300,000 users' digital fingerprints at risk

Infra Used in Cisco Hack Also Targeted Workforce Management Solution

Delta Electronics DOPSoft

Careless Errors in Hundreds of Apps Could Expose Troves of Data

Microsoft Discover Severe One-Click Exploit for TikTok Android App

Oh no, that James Webb Space Telescope snap might actually contain malware

LabMD gets another shot at defamation claim against 'extortionate' infosec biz

Apple Releases iOS Update for Older iPhones to Fix Actively Exploited Vulnerability

FBI: Look out, crooks stole $1.3b in cryptocurrency in just three months this year

~ 31 Aug 2022 ~

Closing the Security Gap Opened by the Rise of No-Code Tools

Google Fixes 24 Vulnerabilities with New Chrome Update

Crypto-Crooks Spread Trojanized Google Translate App in Watering-Hole Attack

The Pros and Cons of Managed Firewalls

James Webb Telescope Images Loaded With Malware Are Evading EDR

OpenText Goes All-in on Cybersecurity Size and Scale With Micro Focus Purchase

(ISC) Opens Global Enrollment for '1 Million Certified in Cybersecurity' Initiative

Vulnerability in TikTok Android app could lead to one-click account hijacking

TikTok for Android Bug Allows Single-Click Account Hijack

Final Thoughts on Ubiquiti

High-School Graduation Prank Hack

The Inevitability of Cloud Breaches: Tales of Real-World Cloud Attacks

SecureAuth Announces General Availability of Arculix, Its Next-Gen Passwordless, Continuous-Authentication Platform

Youre Not Stringer Bell, but You May Still Need a Burner Phone

Stop Ransomware with Microsoft Security digital event presents threat intelligence in action

Decisions on health data sharing should not be taken by politicians, citizen juries find

Apple Fixed a Serious iOS Security FlawHave You Updated Yet?

Experts Find Malicious Cookie Stuffing Chrome Extensions Used by 1.4 Million Users

How to take control over your digital legacy