Port 22

~ 7 Dec 2021 ~

Eltima SDK Contain Multiple Vulnerabilities Affecting Several Cloud Service Provides

LINE Pay leaks around 133,000 users data to Github, of all places

SolarWinds Hackers Targeting Government and Business Entities Worldwide

Microsoft Seizes 42 Malicious Web Domains Used By Chinese Hackers

~ 6 Dec 2021 ~

MITRE Engenuity & Cybrary Surpass 25,000 Users in MITRE ATT&CK Defender Certification Program

Microsoft Seizes Malicious Websites Used by Prolific Chinese APT Group

Latest Firefox 95 Includes RLBox Sandboxing to Protect Browser from Malicious Code

NICKEL targeting government organizations across Latin America and Europe

US Military Has Acted Against Ransomware Groups: Report

Russian Actors Behind SolarWinds Attack Hit Global Business & Government Targets

5 Ways to Keep Fraudsters at Bay Over the Holidays

SEARCH for Hidden Cyber Threats: 6 Steps to Unleash a Hyper-effective Threat Hunting Team

Spar shops across northern UK shut after cyber attack hits payment processing abilities

Miscreants make off with $150m of digital assets in BitMart security breach

Thieves Using AirTags to Follow Cars

Why the C-Suite Doesn't Need Access to All Corporate Data

Cuba ransomware gang scores almost $44m in ransom payments across 49 orgs, say Feds

What are buffer overflow attacks and how are they thwarted?

Malicious KMSPico Windows Activator Stealing Users' Cryptocurrency Wallets

Vulnerability Scanning Frequency Best Practices

Hackers Steal $200 Million Worth of Cryptocurrency Tokens from BitMart Exchange

14 New XS-Leaks (Cross-Site Leaks) Attacks Affect All Modern Web Browsers

~ 4 Dec 2021 ~

A Planned Parenthood LA Hack Affects 400,000 Patients

American diplomats' iPhones reportedly compromised by NSO Group intrusion software

Pegasus Spyware Reportedly Hacked iPhones of U.S. State Department and Diplomats

~ 3 Dec 2021 ~

NSO Group Spyware Hits at Least 9 US State Department Phones

Utility biz Delta-Montrose Electric Association loses billing capability and two decades of records after cyber attack

Feds charge two men with claiming ownership of others' songs to steal YouTube royalty payments

Who Is the Network Access Broker Babam?

One-Third of Black Friday Shoppers Were Bots, Fake Users

Warning: Yet Another Zoho ManageEngine Product Found Under Active Attacks

NSO Group Spyware Used to Breach US State Dept. Phones

IGI Cybersecurity Introduces CISO Team-as-a-Service

Friday Squid Blogging: Squeeze the Squid

Protecting your critical infrastructure is one thingprotecting your backups is the same thing

How Criminals Are Using Synthetic Identities for Fraud

Logiq.ai Tackles Observability Problem With LogFlow

Netgear router flaws exploitable with authentication ... like the default creds on Netgear's website

Week in security with Tony Anscombe

Scammers exploit Omicron fears in new COVID19 phishing campaign

USB Devices the Common Denominator in All Attacks on Air-Gapped Systems

An Insider's Account of Disclosing Vulnerabilities

Testing Faraday Cages

Researchers Detail How Pakistani Hackers Targeting Indian and Afghan Governments

New Malvertising Campaigns Spreading Backdoors, Malicious Chrome Extensions

Why Everyone Needs to Take the Latest CISA Directive Seriously

New Payment Data Sealing Malware Hides in Nginx Process on Linux Servers

~ 2 Dec 2021 ~

A Software Bug Let Hackers Drain $31M From a Crypto Service

Ransomware, Carding, and Initial Access Brokers: Group-IB Presents Report on Trending Crimes

Darktrace Reports 30% More Ransomware Attacks Targeting Organizations During the Holiday Period

BadgerDAO DeFi defunded as hackers apparently nab millions in crypto tokens

Remote Browser Isolation Stars in Content Protection Role

CISA Warns of Actively Exploited Critical Zoho ManageEngine ServiceDesk Vulnerability

Top 5 Reasons to Get 'SASE' With Security

Planned Parenthood LA Breach Compromises 400,000 Patients' Data

Develop 'Foursight' Keep Your Post-COVID Transformation on Track

Structured threat hunting: One way Microsoft Threat Experts prioritizes customer defense

Facebook Will Force More At-Risk Accounts to Use Two-Factor

Key Characteristics of Malicious Domains: Report

Behind the unprecedented effort to protect customers against the NOBELIUM nation-state attack

When Will a Cloud Infrastructure Heavyweight Launch a SASE?

Ubiquiti Developer Charged With Extortion, Causing 2020 Breach

Breaking the Black Mirror and Other Lessons From Day of Shecurity

Smart Contract Bug Results in $31 Million Loss

Schneider Electric SESU

Johnson Controls Entrapass

Launching ESET Research Podcast: A peek behind the scenes of ESET discoveries

Distributed Data Systems WebHMI

Hitachi Energy RTU500 series BCI

Hitachi Energy Relion 670/650/SAM600-IO

Hitachi Energy APM Edge

Hitachi Energy PCM600 Update Manager

Hitachi Energy RTU500 series

New UK product security law won't be undercut by rogue traders upping and vanishing, government boasts

European Cybercrime Centre confident it's kicked credit card crims again

Meta Expands Facebook Protect Program to Activists, Journalists, Government Officials

Three key ransomware actors changed jobs on October 18 the same day REvil went dark

Let there be light: Ensuring visibility across the entire API lifecycle

Researches Detail 17 Malicious Frameworks Used to Attack Air-Gapped Networks

~ 1 Dec 2021 ~

Researchers Warn Iranian Users of Widespread SMS Phishing Campaigns

Military Vets Share Lessons That Helped Them Build Infosec Startups

APT Groups Adopt New Phishing Method. Will Cybercriminals Follow?

Russian Man Sentenced to 60 Months in Prison for Running 'Bulletproof' Hosting for Cybercrime

Neustar Security Services Spins Out as Own Company

VMware Carbon Black MDR Helps Analysts Respond to Attacks

New Ransomware Variant Could Become Next Big Threat

Russian Man Gets 60 Months Jail for Providing Bulletproof Hosting to Cyber Criminals

Critical Bug in Mozillas NSS Crypto Library Potentially Affects Several Other Software

Rewriting your disaster recovery plan might just save your companyand could transform it

CyCognito Raises $100 Million Series C Funding

ReliaQuest Valued At More Than $1 Billion Following Growth Round Led by KKR

CISA Names 23 Members to New Cybersecurity Advisory Committee

How Will Cyber Threats Impact the Beijing Winter Olympics?

CyCognito Secures $100M to Accelerate Next Evolution of Attack Surface Management

The Cyber Threats Facing Retailers This Holiday Shopping Season

Singapore and UK ink digital trade agreements at Future Tech Forum in London

Pension cold-calling financial services biz cops largest ever fine from UK data watchdog

Researchers Have a Method to Spot Reddits State-Backed Trolls

The Matrix Is the Best Hacker Movie

Jumping the air gap: 15 years of nationstate effort