Port 22

~ 25 Aug 2022 ~

ReasonLabs Launches Free Online Security Tool to Power Secure Web Experience for Millions of Global Users

Microsoft Security highlights from Black Hat USA 2022

MERCURY leveraging Log4j 2 vulnerabilities in unpatched systems to target Israeli organizations

More Bang for the Buck: Cross-Platform Ransomware Is the Next Problem

Wyden Renews Call to Encrypt Twitter DMs, Secure Americans' Data From Unfriendly Foreign Governments

Twitter, Meta kill hundreds of pro-Western troll accounts

Senior-Level Women Leaders in Cybersecurity Form New Nonprofit

Okta Hackers Behind Twilio and Cloudflare Breach Hit Over 130 Organizations

Cyberstarts Closes $60M in Seed Fund III

The (Nation) State of Cyber: 64% of Businesses Suspect They've Been Targeted or Impacted by Nation-State Attacks

What You Need to Know About the Psychology Behind Cyber Resilience

Penetration Testing Market Worth $2.7B By 2027: MarketsandMarkets(TM) Report

Ever present danger

U.S. Government Spending Billions on Cybersecurity

Microsoft Uncovers New Post-Compromise Malware Used by Nobelium Hackers

Optiv's Annual $40K Scholarship for Black, African-American-Identifying STEM Students Now Open for Applicants

Thousands of Organizations Remain at Risk From Critical Zero-Click IP Camera Bug

Scans of Students Homes During Tests Are Deemed Unconstitutional

New Exterro FTK Update Accelerates Mobile Digital Forensics

Man-in-the-Middle Phishing Attack

Researchers Uncover Kimusky Infra Targeting South Korean Politicians and Diplomats

FATEK Automation FvDesigner

What is doxing and how to protect yourself

Shout-out to whoever went to Black Hat and had North Korean malware on their PC

PyPI Repository Warns Python Project Maintainers About Ongoing Phishing Attacks

Kimsukys GoldDragon cluster and its C2 operations

Cyber Security Expertise - Where Should You Begin?

~ 24 Aug 2022 ~

Block sued after ex-staffer siphons customer data

80,000 internet-connected cameras still vulnerable after critical patch offered

CISA: Just-Disclosed Palo Alto Networks Firewall Bug Under Active Exploit

Efficient 'MagicWeb' Malware Subverts AD FS Authentication, Microsoft Warns

Ransomware Gang Demands $10M in Attack on French Hospital

Crypto Miners Using Tox P2P Messenger as Command and Control Server

VMware LPE Bug Allows Cyberattackers to Feast on Virtual Machine Data

New Zero-Trust Maturity Data: Charting Your Own Organization

MagicWeb: NOBELIUMs post-compromise trick to authenticate as anyone

VMware confirms Carbon Black causes BSODs, boot loops on Windows

Looking for the Sliver lining: Hunting for emerging command-and-control frameworks

Data governance: 5 tips for holistic data protection

Air-Gapped Devices Can Send Covert Morse Signals via Network Card LEDs

Unusual Microsoft 365 Phishing Campaign Spoofs eFax Via Compromised Dynamics Voice Account

Nearly 3 Years Later, SolarWinds CISO Shares 3 Lessons From the Infamous Attack

Acronis' Midyear Cyberthreats Report Finds Ransomware Is the No. 1 Threat to Organizations, Projects Damages to Exceed $30 Billion by 2023

Attacker snags account details from streaming service Plex

Why Empathy Is the Key to Better Threat Modeling

CyberRatings.org Announces New Web Browser Test Results for 2022

Report: Financial Institutions Are Overwhelmed When Facing Growing Firmware Security and Supply Chain Threats

Guide: How Service Providers can Deliver vCISO Services at Scale

Hackers Using Fake DDoS Protection Pages to Distribute Malware

Mudge Files Whistleblower Complaint against Twitter

The Privacy Flaw Threatening US Democracy

Ransomware updates & 1-day exploits

Researchers Warn of AiTM Attack Targeting Google G-Suite Enterprise Users

Lloyd's to exclude certain nation-state attacks from cyber insurance policies

GitLab Issues Patch for Critical Flaw in its Community and Enterprise Software

~ 23 Aug 2022 ~

The Twitter Whistleblower Reports Most Damning Allegation

Twitter savaged by former security boss Mudge in whistleblower complaint

DevSecOps Gains Traction but Security Still Lags

Thoma Bravo Buying Spree Highlights Hot Investor Interest in IAM Market

Smartphone gyroscopes threaten air-gapped systems, researcher finds

Mudge Blows Whistle on Alleged Twitter Security Nightmare

Proofpoint Introduces a Smarter Way to Stay Compliant with New Intelligent Compliance Platform

Facing the New Security Challenges That Come With Cloud

Secure Code Warrior Spotlights the Importance of Developer Security Skills with 2nd Annual Devlympics Competition

One-Third of Popular PyPI Packages Mistakenly Flagged as Malicious