Port 22

~ 9 Sep 2021 ~

AVEVA PCS Portal

Delta Electronics DOPSoft 2

Mitsubishi Electric Europe B.V. smartRTU and INEA ME-RTU

Threat landscape for industrial automation systems in H1 2021

LA cops told to harvest social media handles from people they stop, suspect or not

Russian Ransomware Group REvil Back Online After 2-Month Hiatus

Microsoft fixes flaw that could leak data between users of Azure container services

Fighting the Rogue Toaster Army: Why Secure Coding in Embedded Systems is Our Defensive Edge

A Visual Summary of SANS Blue Team Summit 2021

Hackers Leak VPN Account Passwords From 87,000 Fortinet FortiGate Devices

~ 8 Sep 2021 ~

CISA Warns of Actively Exploited Zoho ManageEngine ADSelfService Vulnerability

FireMon Acquires DisruptOps, Gains Cloud Security Operations Capabilities

ProtonMail Amends Its Policy After Giving Up Activists Data

New Zealand DDoS wave targets banks, post offices, weather forecasters and more

Proton welcomes Sir Tim Berners-Lee to its advisory board as ProtonMail suffers a privacy backlash

A Texas Abortion Whistleblower Site Still Can't Find a Host

3 years, 17 alphas, 2 betas, and over 7,500 commits later, OpenSSL version 3 is here

What Apple Can Do Next to Fight Child Sexual Abuse

Microsoft: Attackers Exploiting Windows Zero-Day Flaw

Pro-PRC Influence Campaign Expands to Dozens of Social Media Platforms, Websites, and Forums in at Least Seven Languages, Attempted to Physically Mobilize Protesters in the U.S.

Pro-PRC Influence Campaign Expands to Dozens of Social Media Platforms, Websites, and Forums in at Least Seven Languages, Attempted to Physically Mobilize Protesters in the U.S.

UK.gov is launching an anti-Facebook encryption push. Don't think of the children: Think of the nuances and edge cases instead

AT&T Alien Labs warns of 'zero or low detection' for TeamTNT's latest malware bundle

Global pandemic was good for business say UK infosec pros but we're still burning out

Security Risks of Relying on a Single Smartphone

Patch now? Why enterprise exploits are still partying like it's 1999

Ransomware attacks are inevitable. Paying the ransom isnt

3 Ways to Secure SAP SuccessFactors and Stay Compliant

HAProxy Found Vulnerable to Critical HTTP Request Smuggling Attack

Experts Uncover Mobile Spyware Attacks Targeting Kurdish Ethnic Group

Cyber Solutions Fest: Diversify and Conquer Keynote

[Ebook] The Guide for Speeding Time to Response for Lean IT Security Teams

~ 7 Sep 2021 ~

Miscreants fling booby-trapped Office files at victims, no patch yet, says Microsoft

Can WhatsApp moderators really read your encrypted texts? Yes ... if you forward them to the abuse dept

New 0-Day Attack Targeting Windows Users With Microsoft Office Documents

3 steps to prevent and recover from ransomware

ProtonMail forced to log users IP address after an order from Swiss authorities

BladeHawk group: Android espionage against Kurdish ethnic group

UK data watchdog brings cookies to G7 meeting pop-up consent requests, not the delicious baked treats

ProtonMail deletes 'we don't log your IP' boast from website after French climate activist reportedly arrested

Lightning Cable with Embedded Eavesdropping

Mitsubishi Electric MELSEC iQ-R Series

Guntrader breach perp: I don't think it's a crime to dump 111k people's details online in Google Earth format

Hitachi ABB Power Grids System Data Manager

Glasgow firm fined 150k after half a million nuisance calls, spoofing phone number, using false trading names

Latest Atlassian Confluence Flaw Exploited to Breach Jenkins Project Server

Who and What is a Security Awareness Officer?

~ 6 Sep 2021 ~

FudCo Spam Empire Tied to Pakistani Software Firm

Jenkins struck by 'Confluenza' as US Cyber Command warns Atlassian flaw 'cannot wait'

Tracking People by their MAC Addresses

When the bits hit the fan: What to do when ransomware strikes

ProtonMail Shares Activist's IP Address With Authorities Despite Its "No Log" Policy

Traffic Exchange Networks Distributing Malware Disguised as Cracked Software

Critical Auth Bypass Bug Affect NETGEAR Smart Switches Patch and PoC Released

Indonesian President's COVID jab cert leaks authorities argue that's perfectly reasonable

~ 4 Sep 2021 ~

BrakTooth Flaws Affect Billions of Bluetooth Devices

Norwegian student tracks Bluetooth headset wearers by wardriving around Oslo on a bicycle

Apple Delays Plans to Scan Devices for Child Abuse Images After Privacy Backlash

Microsoft Says Chinese Hackers Were Behind SolarWinds Serv-U SSH 0-Day Attack

U.S. Cyber Command Warns of Ongoing Attacks Exploiting Atlassian Confluence Flaw

~ 3 Sep 2021 ~

Friday Squid Blogging: Squid Communication

Apple stalls CSAM auto-scan on devices after 'feedback' from everyone on Earth

Hacker-Themed Board Game

Apple Backs Down on Its Controversial Photo-Scanning Plans

History of the HX-63 Rotor Machine

Rapid7 says Computer Misuse Act should include 'good faith' infosec research exemption

Week in security with Tony Anscombe

New Zealand internet outage blamed on DDoS attack on nation's third largest internet provider

Why Ransomware Hackers Love a Holiday Weekend

Confessions of a ransomware negotiator: Well, somebody's got to talk to the criminals holding data hostage

Applied YARA training Q&A

PST, Want a Shell? ProxyShell Exploiting Microsoft Exchange Servers

PST, Want a Shell? ProxyShell Exploiting Microsoft Exchange Servers

A parents guide to smartphone security

This New Malware Family Using CLFS Log Files to Avoid Detection

FIN7 Hackers Using Windows 11 Themed Documents to Drop Javascript Backdoor

Protect Control Systems and Critical Infrastructure with GRID

~ 2 Sep 2021 ~

Cisco Issues Patch for Critical Enterprise NFVIS Flaw PoC Exploit Available

Spring or autumn, your biggest cyber threat could be in the cloud

FTC bans 'brazen' stalkerware maker SpyFone, orders data deletion, alerts to victims

Autodesk was one of the 18,000 firms breached in SolarWinds attack, firm admits

Gift Card Gang Extracts Cash From 100k Inboxes Daily

A deep-dive into the SolarWinds Serv-U SSH vulnerability

Twitter introduces new feature to automatically block abusive behavior

In space, no one can hear cyber security professionals scream

UK VoIP telco receives 'colossal ransom demand', reveals REvil cybercrooks suspected of 'organised' DDoS attacks on UK VoIP companies

Johnson Controls Sensormatic Electronics Illustra

JTEKT TOYOPUC TCC-6353 PC10G-CPU

QakBot technical analysis

Advantech WebAccess

What is AS-REP Roasting attack, really?

New BrakTooth Flaws Leave Millions of Bluetooth-enabled Devices Vulnerable

Dissected: A dropper-as-a-service miscreants pay to push their malware onto potentially 1,000s of victims

WhatsApp Photo Filter Bug Could Have Exposed Your Data to Remote Attackers

Is Traffic Mirroring for NDR Worth the Trouble? We Argue It Isn't

Chinese Authorities Arrest Hackers Behind Mozi IoT Botnet Attacks

Promociones de Entrenatiento SANS en Cyberseguridad para Latinoamrica

Making 'AutoMagic' Happen in the SOC

~ 1 Sep 2021 ~

Fired credit union employee admits: I wiped 21GB of files from company's shared drive in retaliation

FTC Bans Stalkerware App SpyFone; Orders Company to Erase Secretly Stolen Data