Port 22

~ 2 Nov 2021 ~

SaaS and Third-Party Risk: Is Your Organization Asking the Hard Questions?

Man charged with hacking major US sports leagues to illegally stream games

Man charged with hacking major US sports leagues to illegally stream games

The Groove Ransomware Gang Was a Hoax

Protect your business with Microsoft Securitys comprehensive protection

How Microsoft Defender for IoT can secure your IoT devices

Should Our Security Controls Be More Like North Korea or Norway?

How Hackers Are Targeting Cryptocurrency

China says it applied to join digital free trade deal days after proposing law against cross-border data flow

On Cell Phone Metadata

How to Use iCloud+'s New Security Features

Sensormatic Electronics VideoEdge

WECON PI Studio (Update A)

Alert! Hackers Exploiting GitLab Unauthenticated RCE Flaw in the Wild

Google to Pay Hackers $31,337 for Exploiting Patched Linux Kernel Flaws

Streamline Fifteen SOC 2 Controls

~ 1 Nov 2021 ~

How AI-Driven Security Analytics Speeds Up Enterprise Defense

CISA and Partners Coordinate on Security, Combatting Misinformation for Election Day

Zscalers 2021 Encrypted Attacks Report Reveals 314% Spike in HTTPS Threats

New 'Trojan Source' Method Lets Attackers Hide Vulns in Source Code

CrowdStrike to Buy Zero-Trust SaaS Provider

SonicWall: 'The Year of Ransomware' Continues with Unprecedented Late-Summer Surge

Free Tool Scans Web Servers for Vulnerability to HTTP Header-Smuggling Attacks

Your data is wider and deeper than ever and so are the threats

Name That Edge Toon: Parting Thoughts

Trojan Source attack: Code that says one thing to humans tells your compiler something very different, warn academics

Hiding Vulnerabilities in Source Code

Understanding the Human Communications Attack Surface

Android has its head in the sand with AbstractEmu malware rooting phones

Spam and phishing in Q3 2021

Data transfers between the EU and the US: Still unclear on what you're supposed to do? Here's an explainer

The Demise of White House Market Will Shake Up the Dark Web

Critical Flaws Uncovered in Pentaho Business Analytics Software

Securing SaaS Apps CASB vs. SSPM

New 'Trojan Source' Technique Lets Hackers Hide Vulnerabilities in Source Code

Trojan Source Bug Threatens the Security of All Code

Researchers Uncover 'Pink' Botnet Malware That Infected Over 1.6 Million Devices

SEC275 + GFACT Bundle Promotion 2021

~ 30 Oct 2021 ~

The SolarWinds Hackers Are Looking for Their Next Big Score

Police Arrest Suspected Ransomware Hackers Behind 1,800 Attacks Worldwide

~ 29 Oct 2021 ~

Enterprises Allocating More IT Dollars on Cybersecurity

Snyk Agrees to Acquire CloudSkiff, Creators of driftctl

An Apparent Ransomware Hack Puts the NRA in a Bind

Friday Squid Blogging: Squid Game Has a Cryptocurrency

APTs, Teleworking, and Advanced VPN Exploits: The Perfect Storm

Russian National Accused of Role in Trickbot Is Extradited to US

Shrootless: Microsoft found a way to evade Apple's SIP macOS filesystem protection

Cybercriminals Take Aim at Connected Car Infrastructure

Cybercriminals Take Aim at Connected Car Infrastructure

Data-breached Guntrader website calls in liquidators, is reborn as Guntrader 2 Ltd

What Exactly Is Secure Access Service Edge (SASE)?

UK data watchdog calls for end-to-end encryption across video chat apps by default

Week in security with Tony Anscombe

Week in security with Tony Anscombe

A Treehouse of Security Horrors

Finding the Right Approach to Cloud Security Posture Management (CSPM)

This New Android Malware Can Gain Root Access to Your Smartphones

Feds cuff Russian said to be developer of 'Trickbot' ransomware

Winter is Coming for CentOS 8

India's Supreme Court starts probe into use of Pegasus spyware

New 'Shrootless' Bug Could Let Attackers Install Rootkit on macOS Systems

Russian TrickBot Gang Hacker Extradited to U.S. Charged with Cybercrime

~ 28 Oct 2021 ~

Google Releases Urgent Chrome Update to Patch 2 Actively Exploited 0-Day Bugs

6 Ways to Rewrite the Impossible Job Description

SEO Poisoning Used to Distribute Ransomware

Top Hardware Weaknesses List Debuts

ICS Security Firm Dragos Reaches $1.7B Valuation in Latest Funding Round

Ordr Unveils Cybersecurity Innovations and Ransom-Aware Rapid Assessment Service to Expand Its Leadership In Connected Device Security

NSA-CISA Series on Securing 5G Cloud Infrastructures

Yet again, Cream Finance skimmed by crooks: $130m in crypto assets stolen

Tech Companies Create Security Baseline for Enterprise Software

US to Create Diplomatic Bureau to Lead Cybersecurity Policy

Zales.com Leaked Customer Data, Just Like Sister Firms Jared, Kay Jewelers Did in 2018

Stop Zero-Day Ransomware Cold With AI

REvil gang member identified living luxury lifestyle in Russia, says German media

3 Security Lessons Learned From the Kaseya Ransomware Attack

Microsoft finds new macOS vulnerability, Shrootless, that could bypass System Integrity Protection

How we took part in MLSEC and (almost) won

You've Just Been Ransomed ... Now What?

Good Grief! Ransomware gang has only gone and pwned the NRA or so it claims

More Russian SVR Supply-Chain Attacks

Sensormatic Electronics victor

5 tips for parents for a cybersecure Halloween

5 tips for parents for a cybersecure Halloween

If your hair isn't already gray, 2022's security threats will get it there, warn infosec duo

Israeli Researcher Cracked Over 3500 Wi-Fi Networks in Tel Aviv City

A Guide to Shift Away from Legacy Authentication Protocols in Microsoft 365

New Wslink Malware Loader Runs as a Server and Executes Modules in Memory

Malicious NPM Libraries Caught Installing Password Stealer and Ransomware

~ 27 Oct 2021 ~

HelpSystems Acquires Digital Guardian, Extends DLP Capabilities

Defenders Worry Orgs Are More Vulnerable Than Last Year

QR Codes Help Attackers Sneak Emails Past Security Controls

NPM packages disguised as Roblox API code caught carrying ransomware

The Pixel 6 Chips Best Upgrade Isnt Speed. Its Security

Read Between the Lines: Finding Flaws in EPUB Reading Systems

Blind People Have Won the Right to Break Ebook DRMfor Now

Kaspersky Buys Brain4Net to Build SASE & XDR Tools

6 Eye-Opening Statistics About Software Supply Chain Security

Cybercriminals Ramp Up Attacks on Web APIs

New insights on cybersecurity in the age of hybrid work