Port 22

~ 6 Oct 2021 ~

Things that are not PogChamp: Twitch appearing to have its source code, streamer payout data leaked

Syniverse Hack

A Culture of Unity Is Key to Solving the Cyber Challenge

Element celebrates The Great Facebook Outage with a Signal bridge for Matrix

To the moon and hack: Fake SafeMoon app drops malware to spy on you

To the moon and hack: Fake SafeMoon app drops malware to spy on you

Iranian Hackers Abuse Dropbox in Cyberattacks Against Aerospace and Telecom Firms

Google to turn on 2-factor authentication by default for 150 million users

Google to auto-enroll 150m users, 2m YouTubers with two-factor authentication

Multiple Critical Flaws Discovered in Honeywell Experion PKS and ACE Controllers

~ 5 Oct 2021 ~

Mandiant Tackles Ransomware and Breaches With New Tools

Misconfigured Apache Airflow Platforms Threaten Organizations

Mandia Alerted NSA on FireEye's SolarWinds Breach

Google to Enable Two-Factor Authentication for 150M Users

Google to Enable Two-Factor Authentication for 150M More Users

Loss of Intellectual Property, Customer Data Pose Greatest Business Risks

Why Access Control Has Become an Important Front in the War Against Cybercrime

Practical tips on how to use application security testing and testing standards

CVE Data Is Often Misinterpreted: Here's What to Look For

Telegraph newspaper bares 10TB of subscriber data and server logs to world+dog

How to Get Your Family to Actually Use a Password Manager

Mitsubishi Electric GOT and Tension Controller

Emerson WirelessHART Gateway

Moxa MXview Network Management Software

Honeywell Experion PKS and ACE Controllers

Medtronic MiniMed MMT-500/MMT-503 Remote Controllers (Update A)

Researchers Discover UEFI Bootkit Targeting Windows Computers Since 2012

UEFI threats moving to the ESP: Introducing ESPecter bootkit

UEFI threats moving to the ESP: Introducing ESPecter bootkit

Apache Warns of Zero-Day Exploit in the Wild Patch You Web Servers Now!

New Study Links Seemingly Disparate Malware Attacks to Chinese Hackers

Ransomware Hackers Who Attacked Over 100 Companies Arrested in Ukraine

~ 4 Oct 2021 ~

Facebook Is Down

Windows 11 Available: What Security Pros Should Know

One Identity Acquires OneLogin to Boost Identity Security Portfolio

Why Facebook, Instagram, and WhatsApp All Went Down Today

Windows 11 offers chip to cloud protection to meet the new security challenges of hybrid work

New Atom Silo Ransomware Group Targets Confluence Servers

Law Enforcement Agencies Seize $375K in Ukraine Ransomware Bust

Lawsuit claims hospital ransomware infection cost baby her life

What Happened to Facebook, Instagram, & WhatsApp?

CISA Kicks Off Cybersecurity Awareness Month

Mandiant Confirms Name Change from FireEye, Inc. to Mandiant, Inc.

#BeCyberSmart: When we learn together, were more secure together

UK's 5bn National Cyber Force HQ to be sited in Lancashire beside Defence Secretary's constituency

Ukrainian cops cuff two over $150m ransomware gang allegations, seize $1.3m in cryptocurrency

Cheating on Tests

Name That Edge Toon: Mobile Monoliths

Top 5 Skills Modern SOC Teams Need to Succeed

Sir Tim Berners-Lee and the BBC stage a very British coup to rescue our data from Facebook and friends

Firewalls? Pfft it's no match for my mighty spares-bin PC

Creating Wireless Signals with Ethernet Cable to Steal Data from Air-Gapped Systems

Poorly Configured Apache Airflow Instances Leak Credentials for Popular Services

A New APT Hacking Group Targeting Fuel, Energy, and Aviation Industries

The Shortfalls of Mean Time Metrics in Cybersecurity

The NEW ICS418 Course: Step Up, Step Over, In Place - ICS Security Essentials for Managers

~ 3 Oct 2021 ~

A Simple Bug Is Leaving AirTag Users Vulnerable to an Attack

~ 2 Oct 2021 ~

Help Might Finally Be on the Way to Fight SIM-Swap Attacks

~ 1 Oct 2021 ~

Friday Squid Blogging: Squid Game

Internet Archive's 2046 Wayforward Machine says Google will cease to exist

Companies Face Issues as Let's Encrypt Root Certificate Expires

Sure, you can do Kubernetes at scale. But can you do it securely too?

Why Windows Print Spooler Remains a Big Attack Target

That 'anti-NSO Pegasus spyware' download is actually a Trojan so don't touch it

4.6M Neiman Marcus Online Customers Alerted to Data Breach

Week in security with Tony Anscombe

Week in security with Tony Anscombe

CISA and Girls Who Code Partner to Create Career Pathways for Young Women

FCC Proposal Targets SIM Swapping, Port-Out Fraud

A Death Due to Ransomware

It's Time to Rethink Identity and Authentication

IKEA: Cameras were hidden in the ceiling above warehouse toilets for 'health and safety'

October is Cybersecurity Awareness Month! Why being cybersmart matters

October is Cybersecurity Awareness Month! Why being cybersmart matters

2FA? More like 2F-in-the-way: It seems no one wants me to pay for their services after all

2FA? More like 2F-in-the-way: It seems no one wants me to pay for their services after all

Enterprises Planning SecOps Technology Deployments

Apple Pay Can be Abused to Make Contactless Payments From Locked iPhones

Chinese Hackers Used a New Rootkit to Spy on Targeted Windows 10 Users

Introduction to ICS Security Part 3

Beware of Fake Amnesty International Antivirus for Pegasus that Hacks PCs with Malware

~ 30 Sep 2021 ~

Revealed: How to steal money from victims' contactless Apple Pay wallets

More Than 90% of Q2 Malware Was Hidden in Encrypted Traffic

Akamai Acquires Guardicore in $600M Deal

Update Google Chrome ASAP to Patch 2 New Actively Exploited Zero-Day Flaws

10 Recent Examples of How Insider Threats Can Cause Big Breaches and Damage

The Senate Is Mad as Hell at FacebookAgain

Ransomware crim: Yeah, what I do is bad. No, I don't care. Yes, infosec bods are all mouth and no trousers

FireEye Products & McAfee Enterprise Merge to Create $2B Entity

You're Going to Be the Victim of a Ransomware Attack

Hardening Your VPN

Hackers could force locked iPhones to make contactless payments

Hackers could force locked iPhones to make contactless payments

The New Security Basics: 10 Most Common Defensive Actions

3 key resources to accelerate your passwordless journey

Which? survey finds people would actually pay the online giants not to take their data

How Google Geofence Warrants Helped Catch Capitol Rioters

UK MoD data strategy calls for social media surveillance on behalf of 'local authorities'

GhostEmperor: From ProxyLogon to kernel mode

Boston Scientific Zoom Latitude