Port 22

Month of PowerShell: Abusing Get-Clipboard

N/ASANS ICS

Gun Database Breach Leaks Details on Thousands of Owners

Matt BurgessWired

Google location tracking to forget you were ever at that medical clinic

Brandon VigliaroloThe Register

Month of PowerShell - Embracing the Pipeline

N/ASANS ICS

TikTok Assures U.S. Lawmakers it's Working to Safeguard User Data From Chinese Staff

noreply@blogger.com (Ravie Lakshmanan)The Hackers News

Friday Squid Blogging: Multiplexing SQUIDs for X-ray Telescopes

Bruce SchneierSchneier on Security

ICYMI: A Microsoft Warning, Follina, Atlassian, and More

Tara Seals, Managing Editor, News, Dark ReadingDark Reading - Threat Intelligence

Cyberattack shuts down unemployment, labor websites across the US

Jeff BurtThe Register

OpenSea NFT Marketplace Faces Insider Hack

Becky Bracken, Editor, Dark ReadingDark Reading - Threat Intelligence

Time Constraints Hamper Security Awareness Programs

Edge Editors, Dark ReadingDark Reading - Threat Intelligence

Crypto sleuths pin $100 million Harmony theft on Lazarus Group

Jeff BurtThe Register

Criminals Use Deepfake Videos to Interview for Remote Work

Ericka Chickowski, Contributing Writer, Dark ReadingDark Reading - Threat Intelligence

DragonForce Malaysia Releases LPE Exploit, Threatens Ransomware

Nathan Eddy, Contributing Writer, Dark ReadingDark Reading - Threat Intelligence

Watch out for survey scams Week in security with Tony Anscombe

EditorESET

Phishing scam poses as Canadian tax agency before Canada Day

Rene HoltESET

Analyzing the Swiss E-Voting System

Bruce SchneierSchneier on Security

When It Comes to SBOMs, Do You Know the Ingredients in Your Ingredients?

Donald Fischer, CEO and Co-Founder, TideliftDark Reading - Threat Intelligence

RSA 2022: Omdia Research Take Aways

Andrew Braunberg, Principal Analyst, SecOps, OmdiaDark Reading - Threat Intelligence

Microsoft Going Big on Identity with the Launch of Entra

Don Tait, Senior Analyst, OmdiaDark Reading - Threat Intelligence

Is Your New Car a Threat to National Security?

Justin LingWired

Microsoft Warns About Evolving Capabilities of Toll Fraud Android Malware Apps

noreply@blogger.com (Ravie Lakshmanan)The Hackers News

Google Improves Its Password Manager to Boost Security Across All Platforms

noreply@blogger.com (Ravie Lakshmanan)The Hackers News

Microsoft gives its partners power to change AD privileges on customer systems without permission

Simon SharwoodThe Register

Solving the indirect vulnerability enigma - fixing indirect vulnerabilities without breaking your dependency tree

noreply@blogger.com (The Hacker News)The Hackers News

New 'SessionManager' Backdoor Targeting Microsoft IIS Servers in the Wild

noreply@blogger.com (Ravie Lakshmanan)The Hackers News

Month of PowerShell: 5 Tips for Getting Started with PowerShell

N/ASANS ICS

Amazon Quietly Patches 'High Severity' Vulnerability in Android Photos App

noreply@blogger.com (Ravie Lakshmanan)The Hackers News

Microsoft Warns of Cryptomining Malware Campaign Targeting Linux Servers

noreply@blogger.com (Ravie Lakshmanan)The Hackers News

OpenSea phishing threat after rogue insider leaks customer email addresses

Jessica Lyons HardcastleThe Register

Jenkins warns of security holes in these 25 plugins

Thomas ClaburnThe Register

Google: Hack-for-Hire Groups Present a Potent Threat

Jai Vijayan, Contributing Writer, Dark ReadingDark Reading - Threat Intelligence

ZuoRAT Malware Is Targeting Routers

Bruce SchneierSchneier on Security

18 Zero-Days Exploited So Far in 2022

Tara Seals, Managing Editor, News, Dark ReadingDark Reading - Threat Intelligence

API Security Losses Total Billions, But It's Complicated

Robert Lemos, Contributing Writer, Dark ReadingDark Reading - Threat Intelligence

California state's gun control websites expose 10 years of personal data

Jessica Lyons HardcastleThe Register

Exchange Servers Backdoored Globally by SessionManager

Becky Bracken, Editor, Dark ReadingDark Reading - Threat Intelligence

Study Reveals Traditional Data Security Tools Have a 60% Failure Rate Against Ransomware and Extortion

N/ADark Reading - Threat Intelligence

NXM Announces Platform That Protects Space Infrastructure and IoT Devices From Cyberattacks

N/ADark Reading - Threat Intelligence

A Fintech Horror Story: How One Company Prioritizes Cybersecurity

Cesar Cerrudo, Chief Research Officer, StrikeDark Reading - Threat Intelligence

Google battles bots, puts Workspace admins on alert

Jessica Lyons HardcastleThe Register

Critical ManageEngine ADAudit Plus Vulnerability Allows Network Takeover, Mass Data Exfiltration

Nathan Eddy, Contributing Writer, Dark ReadingDark Reading - Threat Intelligence

Zero-Days Aren't Going Away Anytime Soon & What Leaders Need to Know

Dan Schiappa, Chief Product Officer, Arctic WolfDark Reading - Threat Intelligence

Toll fraud malware: How an Android application can drain your wallet

Microsoft 365 Defender Threat Intelligence TeamMicrosoft Security Blog

Using process creation properties to catch evasion techniques

Microsoft 365 Defender Threat Intelligence TeamMicrosoft Security Blog

A New, Remarkably Sophisticated Malware Is Attacking Routers

Dan Goodin, Ars TechnicaWired

You Need to Update Windows and Chrome Right Now

Kate O'FlahertyWired

Exemys RME1

Advisory DocumentICS-Cert Advisories

Yokogawa Wide Area Communication Router

Advisory DocumentICS-Cert Advisories

Emerson DeltaV Distributed Control System

Advisory DocumentICS-Cert Advisories

Distributed Data Systems WebHMI

Advisory DocumentICS-Cert Advisories

CODESYS Gateway Server (Update A)

Advisory DocumentICS-Cert Advisories

Costco 40th anniversary scam targets WhatsApp users

Miguel ngel MendozaESET

Google Blocks Dozens of Malicious Domains Operated by Hack-for-Hire Groups

noreply@blogger.com (Ravie Lakshmanan)The Hackers News

The SessionManager IIS backdoor: a possibly overlooked GELSEMIUM artefact

Pierre DelcherSecure List

U.S. FCC Commissioner Asks Apple and Google to Remove TikTok from App Stores

noreply@blogger.com (Ravie Lakshmanan)The Hackers News

What is Shadow IT and why is it so risky?

noreply@blogger.com (The Hacker News)The Hackers News

Ex-Canadian Government Employee Pleads Guilty Over NetWalker Ransomware Attacks

noreply@blogger.com (Ravie Lakshmanan)The Hackers News

Israel plans Cyber-Dome to defeat digital attacks from Iran and others

Simon SharwoodThe Register

North Korean Hackers Suspected to be Behind $100M Horizon Bridge Hack

noreply@blogger.com (Ravie Lakshmanan)The Hackers News

Start using Modern Auth now for Exchange Online

Jeff BurtThe Register

Patch Now: Linux Container-Escape Flaw in Azure Service Fabric

Jai Vijayan, Contributing Writer, Dark ReadingDark Reading - Threat Intelligence

'Prolific' NetWalker extortionist pleads guilty to ransomware charges

Jessica Lyons HardcastleThe Register

ZuoRAT Hijacks SOHO Routers from Cisco, Netgear

Nathan Eddy, Contributing Writer, Dark ReadingDark Reading - Threat Intelligence

Broken Authentication Vuln Threatens Amazon Photos Android App

Dark Reading Staff, Dark ReadingDark Reading - Threat Intelligence

How to Master the Kill Chain Before Your Attackers Do

J.R. Cunningham, Chief Security Officer, NuspireDark Reading - Threat Intelligence

Port 22

~ 3 Jul 2022 ~

Month of PowerShell: Abusing Get-Clipboard

~ 2 Jul 2022 ~

Gun Database Breach Leaks Details on Thousands of Owners

Google location tracking to forget you were ever at that medical clinic

Month of PowerShell - Embracing the Pipeline

~ 1 Jul 2022 ~

TikTok Assures U.S. Lawmakers it's Working to Safeguard User Data From Chinese Staff

Friday Squid Blogging: Multiplexing SQUIDs for X-ray Telescopes

ICYMI: A Microsoft Warning, Follina, Atlassian, and More

Cyberattack shuts down unemployment, labor websites across the US

OpenSea NFT Marketplace Faces Insider Hack

Time Constraints Hamper Security Awareness Programs

Crypto sleuths pin $100 million Harmony theft on Lazarus Group

Criminals Use Deepfake Videos to Interview for Remote Work

DragonForce Malaysia Releases LPE Exploit, Threatens Ransomware

Watch out for survey scams Week in security with Tony Anscombe

Phishing scam poses as Canadian tax agency before Canada Day

Analyzing the Swiss E-Voting System

When It Comes to SBOMs, Do You Know the Ingredients in Your Ingredients?

RSA 2022: Omdia Research Take Aways

Microsoft Going Big on Identity with the Launch of Entra

Is Your New Car a Threat to National Security?

Microsoft Warns About Evolving Capabilities of Toll Fraud Android Malware Apps

Google Improves Its Password Manager to Boost Security Across All Platforms

Microsoft gives its partners power to change AD privileges on customer systems without permission

Solving the indirect vulnerability enigma - fixing indirect vulnerabilities without breaking your dependency tree

New 'SessionManager' Backdoor Targeting Microsoft IIS Servers in the Wild

Month of PowerShell: 5 Tips for Getting Started with PowerShell

Amazon Quietly Patches 'High Severity' Vulnerability in Android Photos App

~ 30 Jun 2022 ~

Microsoft Warns of Cryptomining Malware Campaign Targeting Linux Servers

OpenSea phishing threat after rogue insider leaks customer email addresses

Jenkins warns of security holes in these 25 plugins

Google: Hack-for-Hire Groups Present a Potent Threat

ZuoRAT Malware Is Targeting Routers

18 Zero-Days Exploited So Far in 2022

API Security Losses Total Billions, But It's Complicated

California state's gun control websites expose 10 years of personal data

Exchange Servers Backdoored Globally by SessionManager

Study Reveals Traditional Data Security Tools Have a 60% Failure Rate Against Ransomware and Extortion

NXM Announces Platform That Protects Space Infrastructure and IoT Devices From Cyberattacks

A Fintech Horror Story: How One Company Prioritizes Cybersecurity

Google battles bots, puts Workspace admins on alert

Critical ManageEngine ADAudit Plus Vulnerability Allows Network Takeover, Mass Data Exfiltration

Zero-Days Aren't Going Away Anytime Soon & What Leaders Need to Know

Toll fraud malware: How an Android application can drain your wallet

Using process creation properties to catch evasion techniques

A New, Remarkably Sophisticated Malware Is Attacking Routers

You Need to Update Windows and Chrome Right Now

Exemys RME1

Yokogawa Wide Area Communication Router

Emerson DeltaV Distributed Control System

Distributed Data Systems WebHMI

CODESYS Gateway Server (Update A)

Costco 40th anniversary scam targets WhatsApp users

Google Blocks Dozens of Malicious Domains Operated by Hack-for-Hire Groups

The SessionManager IIS backdoor: a possibly overlooked GELSEMIUM artefact

U.S. FCC Commissioner Asks Apple and Google to Remove TikTok from App Stores

What is Shadow IT and why is it so risky?

Ex-Canadian Government Employee Pleads Guilty Over NetWalker Ransomware Attacks

Israel plans Cyber-Dome to defeat digital attacks from Iran and others

North Korean Hackers Suspected to be Behind $100M Horizon Bridge Hack

~ 29 Jun 2022 ~

Start using Modern Auth now for Exchange Online

Patch Now: Linux Container-Escape Flaw in Azure Service Fabric

'Prolific' NetWalker extortionist pleads guilty to ransomware charges

ZuoRAT Hijacks SOHO Routers from Cisco, Netgear

Broken Authentication Vuln Threatens Amazon Photos Android App

How to Master the Kill Chain Before Your Attackers Do