Port 22

~ 10 Jan 2022 ~

Fake QR Codes on Parking Meters

The FTC Wants Companies to Find Log4j Fast. It Won't Be So Easy

No defence for outdated defenders as consumer AV nears RIP

Researchers Find Bugs in Over A Dozen Widely Used URL Parser Libraries

Abcbot Botnet Linked to Operators of Xanthe Cryptomining malware

ICS Security Summit 2022: What to Expect

~ 9 Jan 2022 ~

BADNEWS! Patchwork APT Hackers Score Own Goal in Recent Malware Attacks

How to Read Your iOS 15 App Privacy Report

~ 8 Jan 2022 ~

500M Avira Antivirus Users Introduced to Cryptomining

Norton Put a Cryptominer in Its Antivirus Software

WebSpec, a formal framework for browser security analysis, reveals new cookie attack

~ 7 Jan 2022 ~

Facebook Launches 'Privacy Center' to Educate Users on Data Collection and Privacy Options

NHS Warns of Hackers Targeting Log4j Flaws in VMware Horizon

Friday Squid Blogging: Squid Prices Are Rising

NHS Warns of Attackers Targeting Log4j Flaws in VMware Horizon

MSP Thrive Acquires InCare Technologies

Cerberus Sentinel Acquires True Digital Security

IT/OT Convergence Is More Than a Catchy Phrase

The Future of Tech Is Here. Congress Isn't Ready for It

How to Proactively Limit Damage From BlackMatter Ransomware

Week in security with Tony Anscombe

CES 2022: Space security nomore flying blind

7 Predictions for Global Energy Cybersecurity in 2022

Nortons Antivirus Product Now Includes an Ethereum Miner

Salesforce mandates MFA by default

Log4Shell-like Critical RCE Flaw Discovered in H2 Database Console

Password Hash Cracking in Amazon Web Services: Burning Your Way to Success

~ 6 Jan 2022 ~

France Fines Google, Facebook 210 Million Over Privacy Violating Tracking Cookies

Enterprises Worry About Increased Data Risk in Cloud

Google Docs Comments Weaponized in New Phishing Campaign

New Mexico's Bernalillo County Investigates Ransomware Attack

Convergence Zone: CNAPP Aids in Integrated Cloud-Native Security

CDN Cache Poisoning Allows DoS Attacks Against Cloud Apps

Your backups can save you from ransomware. But how do you protect your backups?

Rethinking Cybersecurity Jobs as a Vocation Instead of a Profession

Norton 360 Now Comes With a Cryptominer

CES 2022: More sensors than people

New Mac Malware Samples Underscore Growing Threat

Signal's Cryptocurrency Feature Has Gone Worldwide

Hybrid Multicloud Strategies Are Keeping the Public Sector at the Forefront of Threat Mitigation

People Are Increasingly Choosing Private Web Search

Philips Engage Software

Omron CX-One

Fernhill SCADA

IDEC PLCs

North Korean Hackers Start New Year with Attacks on Russian Foreign Ministry

NIST Cybersecurity Framework: A Quick Guide for SaaS Security Compliance

New Trick Could Let Malware Fake iPhone Shutdown to Spy on Users Secretly

~ 5 Jan 2022 ~

You better have patched those Log4j holes or we'll see what a judge has to say FTC

VMware Patches Important Bug Affecting ESXi, Workstation and Fusion Products

New Attack Campaign Exploits Microsoft Signature Verification

Google Releases New Chrome Update to Patch Dozens of New Browser Vulnerabilities

NY AG: 1.1M Online Consumer Accounts Found Compromised in Credential-Stuffing Attacks

FTC: Companies Could Face Legal Action for Failing to Patch Log4j

US Army journal's top paper from 2021 says Taiwan should destroy TSMC if China invades

Which Cloud Strategy Is Right For My Organization's Security Needs?

Why We Need To Reframe the False-Positive Problem

Remember Norton 360's bundled cryptominer? Irritated folk realise Ethereum app is tricky to delete

Putting Ransomware Gangs Out of Business With AI

The World Is Increasingly Controlled and Transformed by Algorithms

More Russian Cyber Operations against Ukraine

Windows giant seeks Pluton-ic relationship with chip maker: AMD first out of the gates with Microsoft's security processor

Hackers Are Exploiting a Flaw Microsoft Fixed 9 Years Ago

5 ways hackers steal passwords (and how to stop them)

CredNinja Test Credential Validity of Dumped Credentials or Hashes

CredNinja Test Credential Validity of Dumped Credentials or Hashes

CredNinja Test Credential Validity of Dumped Credentials or Hashes

How ransomware gangs went pro

Researchers Uncover Hacker Group Behind Organized Financial-Theft Operation

New Zloader Banking Malware Campaign Exploiting Microsoft Signature Verification

~ 4 Jan 2022 ~

CrowdStrike Incorporates Intel CPU Telemetry into Falcon Sensor

Hackers Target Real Estate Websites with Skimmer in Latest Supply Chain Attack

McMenamins Breach Affected 23 Years of Employee Data

Attackers Exploit Log4j Flaws in Hands-on-Keyboard Attacks to Drop Reverse Shells

Google Buys Siemplify to Get Ahead in Cloud Security

Microsoft Warns of Continued Attacks Exploiting Apache Log4j Vulnerabilities

Mobile Application Security: 2021's Breaches

SlimPay fined 180k after 12 million customers' bank data publicly accessible for 5 years

What you need to know about how cryptography impacts your security strategy

Vinnie Liu Has a Mission: Keeping People Safe Online and Offline

Why CIOs Should Report to CISOs

Log4j Remediation Rules Now Available for WhiteSource Renovate and Enterprise

Palo Alto Networks Appoints Helmut Reisinger to Leadership Team

John Edwards takes the reins at the UK's data protection watchdog

Instagram and teens: A quick guide for parents to keep their kids safe

SAILFISH System to Find State-Inconsistency Bugs in Smart Contracts

Researchers Detail New HomeKit 'doorLock' Bug Affecting Apple iOS

~ 3 Jan 2022 ~

Beware of Fake Telegram Messenger App Hacking PCs with Purple Fox Malware

CISOs Plan What to Buy With Funds From the Infrastructure Bill

Florida's Broward Health Confirms October 2021 Breach

Pathr.ai Reaffirms Position as Privacy-Centric Solution for Retailers with Spatial Intelligence Platform

Log4j Highlights Need for Better Handle on Software Dependencies

Name That Edge Toon: In Your Face!

Creating the Next Generation of Secure Developers

6 Ways to Delete Yourself From the Internet

Breaking the habit: Top 10 bad cybersecurity habits to shed in 2022

Detecting Evasive Malware on IoT Devices Using Electromagnetic Emanations

Are Medical Devices at Risk of Ransomware Attacks?

~ 2 Jan 2022 ~

Microsoft Issues Fix for Exchange Y2K22 Bug That Crippled Email Delivery Service

~ 31 Dec 2021 ~

Friday Squid Blogging: Deep-Dwelling Squid