Port 22

Microsoft fixes Point of Sale bug that delayed Windows 11 startup for 40 minutes

Richard SpeedThe Register

Hitachi Energy System Data Manager

Advisory DocumentICS-Cert Advisories

The trouble with BEC: How to stop the costliest internet scam

Phil MuncasterESET

India inks tech pact with EU only the US has the same deal

Simon SharwoodThe Register

Emotet Testing New Delivery Ideas After Microsoft Disables VBA Macros by Default

noreply@blogger.com (Ravie Lakshmanan)The Hackers News

Gold Ulrick Hackers Still in Action Despite Massive Conti Ransomware Leak

noreply@blogger.com (Ravie Lakshmanan)The Hackers News

North Korean Hackers Target Journalists with GOLDBACKDOOR Malware

noreply@blogger.com (Ravie Lakshmanan)The Hackers News

Crooks steal NFTs worth '$3m' in Bored Ape Yacht Club heist

Jessica Lyons HardcastleThe Register

What the ECDSA Flaw in Java Means for Enterprises

Dark Reading Staff, Dark ReadingDark Reading - Threat Intelligence

Iranian Hacking Group Among Those Exploiting Recently Disclosed VMWare RCE Flaw

Jai Vijayan, Contributing WriterDark Reading - Threat Intelligence

Iranian Hackers Exploiting VMware RCE Bug to Deploy 'Code Impact' Backdoor

noreply@blogger.com (Ravie Lakshmanan)The Hackers News

North Korean State Actors Deploying Novel Malware to Spy on Journalists

Dark Reading Staff, Dark ReadingDark Reading - Threat Intelligence

Intuit sued over alleged cryptocurrency thefts via Mailchimp intrusion

Jeff BurtThe Register

When Security Meets Development: The DevSecOps Conundrum

Srinivas Mukkamala, Senior Vice President, Security Products, IvantiDark Reading - Threat Intelligence

Homeland Security bug bounty program uncovers 122 holes in its systems

Jessica Lyons HardcastleThe Register

Mastercard Launches Next-Generation Identity Technology with Microsoft

N/ADark Reading - Threat Intelligence

Ukraine Invasion Driving DDoS Attacks to All-Time Highs

Dark Reading Staff, Dark ReadingDark Reading - Threat Intelligence

The US Saw a Spike in Child Sexual Abuse URLs in 2021

Matt BurgessWired

Microsoft best practices for managing IoT security concerns

Christine BarrettMicrosoft Security Blog

Trend Micro Launches New Security Platform

N/ADark Reading - Threat Intelligence

Flaw could have granted criminals control over Ever Surf crypto wallets

Jeff BurtThe Register

Overlapping ICS/OT Mandates Distract From Threat Detection and Response

Mark Carrigan, Senior Vice President, Process Safety and OT Cybersecurity, Hexagon PPMDark Reading - Threat Intelligence

Researchers Report Critical RCE Vulnerability in Google's VirusTotal Platform

noreply@blogger.com (Ravie Lakshmanan)The Hackers News

SMS Phishing Attacks are on the Rise

Bruce SchneierSchneier on Security

DDoS attacks in Q1 2022

Alexander Gutnikov, Oleg Kupreev, Yaroslav ShmelevSecure List

Webcam hacking: How to know if someone may be spying on you through your webcam

Phil MuncasterESET

FBI: BlackCat ransomware scratched 60-plus orgs

Jessica Lyons HardcastleThe Register

Critical Bug in Everscale Wallet Could've Let Attackers Steal Cryptocurrencies

noreply@blogger.com (Ravie Lakshmanan)The Hackers News

New BotenaGo Malware Variant Targeting Lilin Security Camera DVR Devices

noreply@blogger.com (Ravie Lakshmanan)The Hackers News

FBI Warns of BlackCat Ransomware That Breached Over 60 Organisations Worldwide

noreply@blogger.com (Ravie Lakshmanan)The Hackers News

Which DFIR Mascots do you want to see as Lego giveaways at the DFIR Summit? Vote now!

N/ASANS ICS

Now Mandiant says 2021 was a record year for exploited zero-day security bugs

Jessica Lyons HardcastleThe Register

T-Mobile Admits Lapsus$ Hackers Gained Access to its Internal Tools and Source Code

noreply@blogger.com (Ravie Lakshmanan)The Hackers News

Atlassian Drops Patches for Critical Jira Authentication Bypass Vulnerability

noreply@blogger.com (Ravie Lakshmanan)The Hackers News

Many Medical Device Makers Skimp on Security Practices

Dark Reading Staff, Dark ReadingDark Reading - Threat Intelligence

Friday Squid Blogging: Squid SkinInspired Insulating Material

Bruce SchneierSchneier on Security

US DOJ probes Google's $5.4b Mandiant acquisition

Jeff BurtThe Register

Sophos Buys Alert-Monitoring Automation Vendor

Dark Reading Staff, Dark ReadingDark Reading - Threat Intelligence

Neustar Security Services UltraDNS Integrates Terraform for Streamlined, Automated DNS Management

N/ADark Reading - Threat Intelligence

FBI Warns Ransomware Attacks on Agriculture Co-ops Could Upend Food Supply Chain

Dark Reading Staff, Dark ReadingDark Reading - Threat Intelligence

Early Discovery of Pipedream Malware a Success Story for Industrial Security

Robert Lemos, Contributing WriterDark Reading - Threat Intelligence

Hive ransomware affiliate zeros in on Exchange servers

Jeff BurtThe Register

Bitdefender Enhances Premium VPN Service With New Privacy Protection Technologies

N/ADark Reading - Threat Intelligence

Contrast Security Introduces Cloud-Native Automation

N/ADark Reading - Threat Intelligence

Forescout Enhances Continuum Platform With New OT Capabilities

N/ADark Reading - Threat Intelligence

PerimeterX Code Defender Extends Capability To Stop Supply Chain Attacks

N/ADark Reading - Threat Intelligence

CyberUSA, and Superus Careers Launch Cyber Career Exchange Platform

N/ADark Reading - Threat Intelligence

Fortress Information Security Receives $125M Strategic Investment from Goldman Sachs Asset Management

N/ADark Reading - Threat Intelligence

Comcast Business 2021 DDoS Threat Report: DDoS Becomes a Bigger Priority as Multivector Attacks are on the Rise

N/ADark Reading - Threat Intelligence

Cybersecurity threats to critical infrastructure Week in security with Tony Anscombe

EditorESET

Creating Cyberattack Resilience in Modern Education Environments

Michael J. Covington, Vice President of Portfolio Strategy, JamfDark Reading - Threat Intelligence

Leaked Chats Show LAPSUS$ Stole T-Mobile Source Code

BrianKrebsKrebs on Security

Java Cryptography Implementation Mistake Allows Digital-Signature Forgeries

Bruce SchneierSchneier on Security

A $3 Billion Silk Road Seizure Will Erase Ross Ulbricht's Debt

Andy GreenbergWired

REvil resurrected? Ransomware crew appears to be back. Keyword: Appears

Jessica Lyons HardcastleThe Register

Researcher Releases PoC for Recent Java Cryptographic Vulnerability

noreply@blogger.com (Ravie Lakshmanan)The Hackers News

Watch Out! Cryptocurrency Miners Targeting Dockers, AWS and Alibaba Cloud

noreply@blogger.com (Ravie Lakshmanan)The Hackers News

QNAP Advises Users to Update NAS Firmware to Patch Apache HTTP Vulnerabilities

noreply@blogger.com (Ravie Lakshmanan)The Hackers News

- .

N/ASANS ICS

Zero-Day Exploit Use Exploded in 2021

Jai Vijayan, Contributing WriterDark Reading - Threat Intelligence

Cisco Releases Security Patches for TelePresence, RoomOS and Umbrella VA

noreply@blogger.com (Ravie Lakshmanan)The Hackers News

What Steps Do I Take to Shift Left in Security?

Vishal Jain, co-founder and CTO, ValtixDark Reading - Threat Intelligence

Devo Acquires Threat Hunting Company Kognos

Dark Reading Staff, Dark ReadingDark Reading - Threat Intelligence

Exploring Biometrics and Trust at the Corporate Level

Kimberly Biddings, VP of Product, BIO-key International, Inc.Dark Reading - Threat Intelligence

UntitledNew Zscaler Research Shows Over 400% Increase in Phishing Attacks With Retail and Wholesale Industries at Greatest Risk

N/ADark Reading - Threat Intelligence

Port 22

~ 26 Apr 2022 ~

Microsoft fixes Point of Sale bug that delayed Windows 11 startup for 40 minutes

Hitachi Energy System Data Manager

The trouble with BEC: How to stop the costliest internet scam

India inks tech pact with EU only the US has the same deal

Emotet Testing New Delivery Ideas After Microsoft Disables VBA Macros by Default

Gold Ulrick Hackers Still in Action Despite Massive Conti Ransomware Leak

North Korean Hackers Target Journalists with GOLDBACKDOOR Malware

Crooks steal NFTs worth '$3m' in Bored Ape Yacht Club heist

~ 25 Apr 2022 ~

What the ECDSA Flaw in Java Means for Enterprises

Iranian Hacking Group Among Those Exploiting Recently Disclosed VMWare RCE Flaw

Iranian Hackers Exploiting VMware RCE Bug to Deploy 'Code Impact' Backdoor

North Korean State Actors Deploying Novel Malware to Spy on Journalists

Intuit sued over alleged cryptocurrency thefts via Mailchimp intrusion

When Security Meets Development: The DevSecOps Conundrum

Homeland Security bug bounty program uncovers 122 holes in its systems

Mastercard Launches Next-Generation Identity Technology with Microsoft

Ukraine Invasion Driving DDoS Attacks to All-Time Highs

The US Saw a Spike in Child Sexual Abuse URLs in 2021

Microsoft best practices for managing IoT security concerns

Trend Micro Launches New Security Platform

Flaw could have granted criminals control over Ever Surf crypto wallets

Overlapping ICS/OT Mandates Distract From Threat Detection and Response

Researchers Report Critical RCE Vulnerability in Google's VirusTotal Platform

SMS Phishing Attacks are on the Rise

DDoS attacks in Q1 2022

Webcam hacking: How to know if someone may be spying on you through your webcam

FBI: BlackCat ransomware scratched 60-plus orgs

Critical Bug in Everscale Wallet Could've Let Attackers Steal Cryptocurrencies

New BotenaGo Malware Variant Targeting Lilin Security Camera DVR Devices

~ 24 Apr 2022 ~

FBI Warns of BlackCat Ransomware That Breached Over 60 Organisations Worldwide

Which DFIR Mascots do you want to see as Lego giveaways at the DFIR Summit? Vote now!

~ 23 Apr 2022 ~

Now Mandiant says 2021 was a record year for exploited zero-day security bugs

~ 22 Apr 2022 ~

T-Mobile Admits Lapsus$ Hackers Gained Access to its Internal Tools and Source Code

Atlassian Drops Patches for Critical Jira Authentication Bypass Vulnerability

Many Medical Device Makers Skimp on Security Practices

Friday Squid Blogging: Squid SkinInspired Insulating Material

US DOJ probes Google's $5.4b Mandiant acquisition

Sophos Buys Alert-Monitoring Automation Vendor

Neustar Security Services UltraDNS Integrates Terraform for Streamlined, Automated DNS Management

FBI Warns Ransomware Attacks on Agriculture Co-ops Could Upend Food Supply Chain

Early Discovery of Pipedream Malware a Success Story for Industrial Security

Hive ransomware affiliate zeros in on Exchange servers

Bitdefender Enhances Premium VPN Service With New Privacy Protection Technologies

Contrast Security Introduces Cloud-Native Automation

Forescout Enhances Continuum Platform With New OT Capabilities

PerimeterX Code Defender Extends Capability To Stop Supply Chain Attacks

CyberUSA, and Superus Careers Launch Cyber Career Exchange Platform

Fortress Information Security Receives $125M Strategic Investment from Goldman Sachs Asset Management

Comcast Business 2021 DDoS Threat Report: DDoS Becomes a Bigger Priority as Multivector Attacks are on the Rise

Cybersecurity threats to critical infrastructure Week in security with Tony Anscombe

Creating Cyberattack Resilience in Modern Education Environments

Leaked Chats Show LAPSUS$ Stole T-Mobile Source Code

Java Cryptography Implementation Mistake Allows Digital-Signature Forgeries

A $3 Billion Silk Road Seizure Will Erase Ross Ulbricht's Debt

REvil resurrected? Ransomware crew appears to be back. Keyword: Appears

Researcher Releases PoC for Recent Java Cryptographic Vulnerability

Watch Out! Cryptocurrency Miners Targeting Dockers, AWS and Alibaba Cloud

QNAP Advises Users to Update NAS Firmware to Patch Apache HTTP Vulnerabilities

- .

~ 21 Apr 2022 ~

Zero-Day Exploit Use Exploded in 2021

Cisco Releases Security Patches for TelePresence, RoomOS and Umbrella VA

What Steps Do I Take to Shift Left in Security?

Devo Acquires Threat Hunting Company Kognos

Exploring Biometrics and Trust at the Corporate Level

UntitledNew Zscaler Research Shows Over 400% Increase in Phishing Attacks With Retail and Wholesale Industries at Greatest Risk