Port 22

~ 23 Feb 2022 ~

Technology, Progress, and Climate

Financial cyberthreats in 2021

Cisco warns firewall customers of four-day window for urgent updates

China's APT10 state hackers targeted Taiwanese financial firms

Dridex Malware Deploying Entropy Ransomware on Hacked Computers

Samsung shipped '100 million' phones with flawed encryption

Chinese Experts Uncover Details of Equation Group's Bvp47 Covert Hacking Tool

Log4j Remediation Took Weeks or More for Over 50% of Organizations

~ 22 Feb 2022 ~

Hikvision Network Cyber-Protect Helps Ensure Physical Cybersecurity Protection

Palo Alto Networks Introduces the Autonomous Security Platform, Cortex XSIAM

9-Year-Old Unpatched Email Hacking Bug Uncovered in Horde Webmail Software

25 Malicious JavaScript Libraries Distributed via Official NPM Package Repository

GitHub Opens Security Database to Community Contributions

More Orgs Suffered Successful Phishing Attacks in 2021 Than in 2020

Name That Toon: Out in the Cold

How Instituting a 'Just Culture' Improves Security

The machine fights back: AI that fights cyber-threats on behalf of humans

An Optical Spy Trick Can Turn Any Shiny Object Into a Bug

IRS: Selfies Now Optional, Biometric Data to Be Deleted

The federal Zero Trust strategy and Microsofts deployment guidance for all

Report: Missouri Governors Office Responsible for Teacher Data Leak

A New Cybersecurity Social Contract

Hidden Costs of a Data Breach

Airtag clones can sidestep Apple anti-stalker tech, claims firm

Teenage cybercrime: How to stop kids from taking the wrong path

EncroChat defendants' lawyers make bid to halt trial

GE Proficy CIMPLICITY-IPM

GE Proficy CIMPLICITY-Cleartext

WIN-911 2021

Hackers Stole $1.7 Million Worth of NFTs from Users of OpenSea Marketplace

Chinese Hackers Target Taiwan's Financial Trading Sector with Supply Chain Attack

The New SANS Live Training Experience

~ 21 Feb 2022 ~

Hackers Backdoor Unpatched Microsoft SQL Database Servers with Cobalt Strike

Open Source Code: The Next Major Wave of Cyberattacks

Mobile malware evolution 2021

Stealing Bicycles by Swapping QR Codes

Integer overflow: How does it occur and how can it be prevented?

Time for people to patch backup plugin for WordPress

New Android Banking Trojan Spreading via Google Play Store Targets Europeans

Iranian State Broadcaster IRIB Hits by Destructive Wiper Malware

A Free Solution to Protect Your Business from 6 Biggest Cyber Threats in 2022

US to proactively attack cyber criminals if it protects victims

Hackers Exploiting Infected Android Devices to Register Disposable Accounts

Top chipmakers ignore India's semiconductor factory subsidies

Easy As (Pizza) Pie: Five Factors for Successful CFP Submissions

~ 20 Feb 2022 ~

How to Use Google Chrome's Enhanced Safety Mode

~ 19 Feb 2022 ~

Master Key for Hive Ransomware Retrieved Using a Flaw in its Encryption Algorithm

Millions of WordPress Sites Got a Forced Update for a Serious Bug

Russia Was Behind DDoS Attacks Against Ukraine, US Officials Say

Justice Department Appoints First Director of National Cryptocurrency Enforcement Team

Linux Snap package tool fixes make-me-root bugs

~ 18 Feb 2022 ~

U.S. Cybersecurity Agency Publishes List of Free Security Tools and Services

Critical Flaw Uncovered in WordPress Backup Plugin Used by Over 3 Million Sites

Friday Squid Blogging: South American Squid Stocks Threatened by Chinese Fishing

Key Application Security Metrics Show Little Sign of Improvement

CISA publishes list of free security tools for business protection

Adobe warns of second critical security hole in Adobe Commerce, Magento

Why You Need An Adversary-First Approach to Threats in the Cloud

Free Cybersecurity Tools and Services List Published by CISA

Axiomatics Introduces Orchestrated Authorization

Ukraine DDoS: 'Cyberattack' or Not?

Week in security with Tony Anscombe

2 :

PEARL 2 PEGASUS: Bahraini activists hacked with Pegasus just days after a report confirming other victims

Enterprises Look Beyond Antivirus Software for Remote Workers

Should we expect to keep communication private in the digital age?

Ransomware Adds New Wrinkle in Russian Cybercrime Market

If the Cloud Is More Secure, Then Why Is Everything Still Broken?

Microsoft offers defense against 'ice phishing' crypto scammers

When youre fending off cyber-attackers, it is possible to be just too tooled up

Microsoft Warns of 'Ice Phishing' Threat on Web3 and Decentralized Networks

PseudoManuscrypt Malware Spreading the Same Way as CryptBot Targets Koreans

New Linux Privilege Escalation Flaw Uncovered in Snap Package Manager

Taiwan cracks down on China spying on tech firms

~ 17 Feb 2022 ~

Iranian Hackers Targeting VMware Horizon Log4j Flaws to Deploy Ransomware

NSA Issues Guidance for Selecting Strong Cisco Password Types

4 Cloud Data Security Best Practices All Businesses Should Follow Today

Confluera Cloud Research Finds Cybersecurity Concern as Biggest Obstacle to Cloud and Multicloud Adoption

Darktrace Artificial Intelligence Stops Cyberattack at Italian Electronics Distributor

Attackers Hone Their Playbooks, Become More Agile

Attackers Can Crash Cisco Email Security Appliances by Sending Malicious Emails

US Agencies Say Russian Hackers Compromised Defense Contractors

Neustar Security Services Report Highlights Shifts in Threat Landscape Amid Maturing Cybercrime Economy

Another Critical RCE Discovered in Adobe Commerce and Magento Platforms

Security Teams Expect Attackers to Go After End Users First

Interpol: Policing model needs to change with cybercrime

US Government sets forth Zero Trust architecture strategy and requirements

Software-Developer Security Vendor Snyk Buys Cloud Security Company

4 best practices to implement a comprehensive Zero Trust security approach

Possible Government Surveillance of the Otter.ai Transcription App

SonicWall on ransomware 2022: 'Every good vendor' was hit

4 Keys to Bridging the Gap Between Security and Developers

4 Keys to Bridging the Gap Between Security and Developers

How to Fight Tomorrow's Novel Software Supply Chain Attacks

How to Fight the Novel Software Supply Chain Attacks of Tomorrow

If Russia Invades Ukraine, TikTok Will See It Up Close

Privacy and computer security are too important to be left to political meddling

Facebook is one bad Chrome extension away from another Cambridge Analytica scandal

UK cybersecurity revenue up 14% on last year to 10.1bn

Is a focus on tech skills for CISOs holding us back in the boardroom?