Port 22

~ 27 Sep 2021 ~

Microsoft Warns of FoggyWeb Malware Targeting Active Directory FS Servers

CISA: Wide Exploitation of New VMware vCenter Server Flaw Likely

Microsoft Adds Emergency Threat Mitigation to Its Exchange Server Software

Microsoft Warns of 'FoggyWeb' Malware Targeting AD FS Servers

7 Ways to Thwart Malicious Insiders

Women and People of Color Experience More Cyber Threats

Thoma Bravo Completes Strategic Investment in Intel 471

FoggyWeb: Targeted NOBELIUM malware leads to persistent backdoor

BloodyStealer: Advanced New Trojan Targets Accounts of Popular Online Gaming Platforms

A guide to combatting human-operated ransomware: Part 2

Cloudflare Ventures into Simplifying Email Security

Cloudflare Ventures into Simplifying Email Security

Zero Trust Comes to Industry's Broadest Cybersecurity Platform

Telos, Splunk, stackArmor, AWS Announce FASTTR Initiative to Accelerate Compliance

Google releases emergency fix to plug zeroday hole in Chrome

Google releases emergency fix to plug zeroday hole in Chrome

UK's National Crime Agency WLTM Deputy Director of Digital Data & Technology

How to Get Started With Zero Trust in a SaaS Environment

Research Highlights Significant Evolution in Email Security

Research Highlights Significant Evolution in Email Security

Cloudflare Is Taking a Shot at Email Security

Fake 'BT' caller fleeces elderly victim of 30k in APP app scam

Tracking Stolen Cryptocurrencies

BloodyStealer and gaming assets for sale

Russian Turla APT Group Deploying New Backdoor on Targeted Systems

Aunalytics Unveils Secure Managed Services with Integrated Security

New Android Malware Steals Financial Data from 378 Banking and Wallet Apps

How Does DMARC Prevent Phishing?

'Quad' group seeks to set security standards for global tech industry

STAR livestream with Katie Nickels: September 24, 2021 Episode NOTES

NEW FOR710: Reverse-Engineering Malware: Advanced Code Analysis - Beta opening at the Cyber Defense Initiative Event in December

~ 26 Sep 2021 ~

A New Jupyter Malware Version is Being Distributed via MSI Installers

How to Go Passwordless on Your Microsoft Account

~ 25 Sep 2021 ~

Even the CIA and NSA Use Ad Blockers to Stay Safe Online

~ 24 Sep 2021 ~

Urgent Chrome Update Released to Patch Actively Exploited Zero-Day Vulnerability

SonicWall Issues Patches for a New Critical Flaw in SMA 100 Series Devices

A New APT Hacker Group Spying On Hotels and Governments Worldwide

Friday Squid Blogging: Person in Squid Suit Takes Dog for a Walk

What Is the Difference Between Security and Resilience?

Frustrated dev drops three zero-day vulns affecting Apple iOS 15 after six-month wait

Consumers Share Security Fears as Risky Behaviors Persist

I Am Not Satoshi Nakamoto

TangleBot Campaign Underscores SMS Threat

The Proliferation of Zero-days

Contrast Application Security Platform Scales to Support OWASP Risks

Week in security with Tony Anscombe

Week in security with Tony Anscombe

Our Eye Is on the SPARROW

Endpoint Still a Prime Target for Attack

Stop worrying that crims could break the 'net, say cyber-diplomats only nations have tried

Apple's New iCloud Private Relay Service Leaks Users' Real IP Addresses

Google Warns of a New Way Hackers Can Make Malware Undetectable on Windows

Apple warns of arbitrary code execution zero-day being actively exploited on Macs

Cisco Releases Patches 3 New Critical Flaws Affecting IOS XE Software

~ 23 Sep 2021 ~

Google Spots New Technique to Sneak Malware Past Detection Tools

Primer: Microsoft Active Directory Security for AD Admins

FamousSparrow APT Group Flocks to Hotels, Governments, Businesses

SAIC Appoints Kevin Brown as Chief Information Security Officer

Supply Chain and Ransomware Threats Drove 60% Increase in Global Cyber Intelligence Sharing Among Financial Firms

BlackFog ARM 64 Edition Provides Anti Data Exfiltration Across New Patforms

Urgent Apple iOS and macOS Updates Released to Fix Actively Exploited Zero-Days

Apple Patches Zero-Days in iOS, Known Vuln in macOS

Microsoft Exchange Autodiscover Flaw Leaks Thousands of Credentials

How to Implement a Security Champions Program

Panorays Closes $42 Million Series B Funding Round

Bug in macOS Finder allows remote code execution

Bug in macOS Finder allows remote code execution

NIST Brings Threat Modeling into the Spotlight

Indictment, Lawsuits Revive Trump-Alfa Bank Story

ROT8000

UK Ministry of Defence apologises again after another major email blunder in Afghanistan

Ransomware Isn't Back. It Never Left

He Escaped the Dark Web's Biggest Bust. Now He's Back

Microsoft Exchange Bug Exposes ~100,000 Windows Domain Credentials

Trane Symbio

Trane Tracer

Researchers finger new APT group, FamousSparrow, for hotel attacks

FamousSparrow: Asuspicious hotel guest

FamousSparrow: Asuspicious hotel guest

Wake me up till SAS summit ends

A New Bug in Microsoft Windows Could Let Hackers Easily Install a Rootkit

Why You Should Consider QEMU Live Patching

New Android Malware Targeting US, Canadian Users with COVID-19 Lures

Colombian Real Estate Agency Leak Exposes Records of Over 100,000 Buyers

Managing Human Risk Should be a Regular Element on Any Cybersecurity Team

~ 22 Sep 2021 ~

Zoom's $15bn merger with Five9 probed by Uncle Sam for national security risks

Apple tried to patch this security hole in macOS Finder but didn't consider upper and lowercase characters

Password Reuse Problems Persist Despite Known Risks

What Are the Different Types of Cyber Insurance?

6 Lessons From Major Data Breaches This Year

Who Is BlackMatter?

UK MoD Data Breach Shows Cybersecurity Must Protect Both People and Data

Lithuania tells its citizens to throw Xiaomi mobile devices in the bin

A Cyber-Resilience Model for the Next Era

Strained Relationships Hinder DevSecOps Innovation

CISA, FBI, NSA Warn of Increase in Conti Ransomware Attacks

Midmarket Security: Think Youre Safe? Think Again

Ronald Deibert Wins Shaughnessy Cohen Prize for Political Writing

CyberGRX Shows Organizations Fail to Mitigate Third-Party Risk

FBI Had the REvil Decryption Key