Port 22

~ 25 May 2021 ~

South Korea plans large scale quantum cryptography adoption, thanks in part to tech partnership with USA

Businesses Boost Security Budgets. Where Will the Money Go?

Turn the Tables: Supply Chain Defense Needs Some Offense, Fortinet Says

Evolution of JSWorm ransomware

Hard cheese: Stilton snap shared via EncroChat leads to drug dealer's downfall

Chinas Digital Yuan not aimed at challenging US dollar, says former Peoples Bank governor

New High-Severity Vulnerability Reported in Pulse Connect Secure VPN

~ 24 May 2021 ~

New Bluetooth Flaws Let Attackers Impersonate Legitimate Devices

Apple Issues Patches to Combat Ongoing 0-Day Attacks on macOS, tvOS

Apple patches macOS flaw exploited by malware to secretly snap screenshots

Legacy data protection and modern ransomware? The odds are not in your favor

Resources for accelerating your Zero Trust journey

Icarus moment: Mozilla Thunderbird was saving OpenPGP keys in plaintext after encryption snafu

Microsoft recognized as a Leader in The Forrester Wave: Unstructured Data Security Platforms, Q2 2021

Air India Confirms Data of 4.5M Travelers Compromised

Sophos Research Uncovers Widespread Use of TLS By Cybercriminals

AIs and Fake Comments

Researchers Link CryptoCore Attacks On Cryptocurrency Exchanges to North Korea

As Threat Hunting Matures, Malware Labs Emerge

Romcon: How romance fraud targets older people and how to avoid it

Apple is happy to diss the desktop it knows who's got the most to lose

Air India admits to data breach impacting 4.5m customers, sat on the news for five weeks

What To Do When Your Business Is Hacked

Indonesias national health insurance scheme leaks at least a million citizens' records

Why security certifications are crucial

Managing Human Risk: Start with the Risks

Details Disclosed On Critical Flaws Affecting Nagios IT Monitoring Software

~ 23 May 2021 ~

How to Avoid App Store Scams

~ 22 May 2021 ~

Apple Exec Calls Mac Malware Levels Unacceptable Under Oath

How to Avoid Those Infuriating Cookie Pop-Ups

Goodbye Internet Explorerand Good Riddance

American insurance giant CNA reportedly pays $40m to ransomware crooks

FBI Analyst Charged With Stealing Counterterrorism and Cyber Threats Info

FBI Warns Conti Ransomware Hit 16 U.S. Health and Emergency Services

~ 21 May 2021 ~

Air India Hack Exposes Credit Card and Passport Info of 4.5 Million Passengers

Friday Squid Blogging: Picking up Squid on the Beach

How to Tell a Job Offer from an ID Theft Trap

Week in security with Tony Anscombe

FBI Issues Conti Ransomware Alert as Attacks Target Healthcare

Data in Danger Amid New IT Challenges

UK Computer Misuse Act convictions declined last year despite pandemic explosion in online criminal activity

Double-Encrypting Ransomware

Here's how we got persistent shell access on a Boeing 747 Pen Test Partners

Google's 'Ask me anything' on Privacy Sandbox was more about questions than answers

Doncaster insurance firm One Call hit by not-dead-at-all Darkside ransomware gang

Insurance Firm CNA Financial Reportedly Paid Hackers $40 Million in Ransom

Toyota rear-ended by twin cyber attacks that left ransomware-shaped dents

Microsoft Warns of Data Stealing Malware That Pretends to Be Ransomware

Six Steps to Mobile Validation Working Together for the Common Good

~ 20 May 2021 ~

Lack of Skills, Maturity Hamper Threat Hunting at Many Organizations

Android 12 will give you more control over how much data you share with apps

Phorpiex morphs: How a longstanding botnet persists and thrives in the current threat environment

Maricopa County CISO: Online Misinformation/Disinformation in 2020 Election a 'Gamechanger

SimuLand: Understand adversary tradecraft and improve detection strategies

100M Users' Data Exposed via Third-Party Cloud Misconfigurations

Security Providers Describe New Solutions (& Growing Threats) at RSAC

Cost Savings, Better Security Drive Adoption of Emerging Technologies

Bizarro Banking Trojan

UK data regulator fines American Express 0.14p per email after opted-out folk spammed 50 million times

3 Ways Anti-Vaxxers Will Undercut Security With Misinformation

The Full Story of the Stunning RSA Hack Can Finally Be Told

23 Android Apps Expose Over 100,000,000 Users' Personal Data

Is Single Sign-On Enough to Secure Your SaaS Applications?

Watering Hole Attack Was Used to Target Florida Water Utilities

Now Open | SANS 2021 Threat Hunting Survey

~ 19 May 2021 ~

Android Issues Patches for 4 New Zero-Day Bugs Exploited in the Wild

Protecting SAP applications with the new Azure Sentinel SAP threat monitoring solution

Attackers Took 5 Minutes to Start Scanning for Exchange Server Flaws

Forrester names Microsoft a Leader in The Forrester Wave: Cloud Security Gateways, Q2 2021

Recycle Your Phone, Sure, But Maybe Not Your Number

Miscreants started scanning for Exchange Hafnium vulns five minutes after Microsoft told world about zero-days

How to Adapt to Rising Consumer Expectations of Invisible Security

Apple Censorship and Surveillance in China

Im Not a Robot! So Why Wont Captchas Believe Me?

Credential Stuffing Reaches 193 Billion Login Attempts Annually

Uptime funk: Microsoft has lifted availability of Azure Key Vault to 99.99%

How Ransomware Encourages Opportunists to Become Criminals

Colonial Pipeline attack: Hacking the physical world

Australian Police hiring digital evidence retrieval specialists. You need to be a very good boy and have paws to get the gig

DarkSide Ransomware Gang Extorted $90 Million from Several Victims in 9 Months

The Microsoft Authenticator extension in the Chrome store wasn't actually made by Microsoft. Oops, Google

The Microsoft Authenticator extension in the Chrome store wasn't actually made by Microsoft. Oops, Google

Mozilla Begins Rolling Out 'Site Isolation' Security Feature to Firefox Browser

New Zealand hospitals infected by ransomware, cancel some surgeries

A Simple 1-Click Compromised Password Reset Feature Coming to Chrome Browser

~ 18 May 2021 ~

Android 12 Will Let You Fine-Tune Permissions for Apps

Us? Pwn SolarWinds? With our reputation? Russian spy chief makes laughable denial of supply chain attack

How Attackers Weigh the Pros and Cons of BEC Techniques

Business-intelligence-company-turned-Bitcoin-addict MicroStrategy grabs another $10m crypto-coin fix

Scams target families of missing persons, FBI warns

Mitigate OT security threats with these best practices

Adding a Russian Keyboard to Protect against Ransomware

The UK loves cybersecurity so much, it's going to regulate managed service providers' infosec practices in law

Splunk to Acquire TruStar for Data Management

1Password unsheathes Rusty key, hopes to unlock Linux Desktop world

FBI's IC3 Logs 1M Complaints in 14 Months

Researchers Create Covert Channel Over Apple AirTag Network

Emerson Rosemount X-STREAM

Cisco Plans to Create 'Premium' SecureX Offering With Kenna Security Features

Latest phones are great at thwarting Wi-Fi tracking. Other devices, not so much study