Port 22

~ 24 Jun 2021 ~

Clop Gang Partners Laundered $500 Million in Ransomware Payments

You won't want that Linux bling if it comes from Pling: Marketplace platform has critical vulnerabilities

Would-be password-killer FIDO Alliance aims to boost uptake with new UX guidelines

NFC Flaws Let Researchers Hack ATMs by Waving a Phone

D3FEND Framework Seeks to Lay Foundation for Cyber Defense

Romance in 2021: Using creepware to keep tabs on your partner or ex. Aww

Gaming industry under siege from cyberattacks during pandemic

Report picks holes in the Linux kernel release signing process

Tulsa Officials Warn Ransomware Attackers Leaked City Files

Banning Surveillance-Based Advertising

Google pushes bug databases to get on the same page for open-source security

UK watchdog fines biz 130k for 90,000+ direct marketing calls to folk who had opted out

Philips Interoperability Solution XDS

Malicious spam campaigns delivering banking Trojans

FATEK WinProladder

A Well-Meaning Feature Leaves Millions of Dell PCs Vulnerable

Fashion firm French Connection says 'FCUK' as REvil-linked breach sees company data stolen

BIOS Disconnect: New High-Severity Bugs Affect 128 Dell PC and Tablet Models

Reduce Business Risk By Fixing 3 Critical Endpoint-to-Cloud Security Requirements

One-Click Exploit Could Have Let Attackers Hijack Any Atlassian Account

Critical Auth Bypass Bug Affects VMware Carbon Black App Control

NEW DFIR COURSE - FOR608: Enterprise-Class Incident Response & Threat Hunting Coming in August

6 Reasons You Dont Want to Miss SANS DFIR Summit & Training 2021

~ 23 Jun 2021 ~

Three things that have vanished: $3.6bn in Bitcoin, a crypto investment biz, and the two brothers who ran it

Antivirus Pioneer John McAfee Found Dead in Spanish Jail

John McAfee Dies in Spanish Prison After Extradition Order

John McAfee dead: Antivirus tycoon killed himself in prison after court OK'd extradition, says lawyer

John McAfee dead: Antivirus tycoon found lifeless in prison after court OKs extradition

French Spyware Executives Are Indicted for Aiding Torture

VMs Help Ransomware Attackers Evade Detection, But It's Uncommon

Brave launches its own, privacyfocused search engine

Microsoft Tracks New BazaCall Malware Campaign

Boffins promise protection and perfect performance with new ZeR, No-FAT memory safety techniques

When Will Cybersecurity Operations Adopt the Peter Parker Principle?

How Cyber Sleuths Cracked an ATM Shimmer Gang

How to confuse antimalware neural networks. Adversarial attacks and protection

Mollitiam Industries is the Newest Cyberweapons Arms Manufacturer

How to tell if a website is safe

Pakistan-linked hackers targeted Indian power company with ReverseRat

[Whitepaper] Automate Your Security with Cynet to Protect from Ransomware

Patch Tor Browser Bug to Prevent Tracking of Your Online Activities

Sure looks like someone's pirating the REvil ransomware, tweaking the binary in a hex editor for their own crimes

~ 22 Jun 2021 ~

SEC still digging into SolarWinds fallout, nudges undeclared victims

SonicWall Left a VPN Flaw Partially Unpatched Amidst 0-Day Attacks

'Set it and forget it' attitude to open-source software has become a major security problem, says Veracode

There's no 'Skype' in Teams: Microsoft lets signing key for its Debian Skype repository slip gently into the night

Despite Heightened Cyber-Risks, Few Security Leaders Report to CEO

Strategies, tools, and frameworks for building an effective threat intelligence team

Identity Eclipses Malware Detection at RSAC Startup Competition

All the Ways Amazon Tracks Youand How to Stop It

Zephyr OS Bluetooth vulnerabilities left smart devices open to attack

Unpatched Supply-Chain Flaw Affects 'Pling Store' Platforms for Linux Users

Apple Will Offer Onion Routing for iCloud/Safari Users

MI5 still risks breaking the law on surveillance data through poor controls years after it was first warned

Advantech WebAccess HMI Designer

CODESYS V2 web server

CODESYS Control V2 communication

CODESYS Control V2 Linux SysFile library

Behind the scenes with the head of Kasperskys GReAT

US Air Force announces plan to assassinate molluscs with hypersonic missile

To CAPTCHA or not to CAPTCHA? Gartner analyst says OK but dont be robotic about it

Do you want speed or security as expected? Spectre CPU defenses can cripple performance on Linux in tests

Wormable DarkRadiation Ransomware Targets Linux and Docker Instances

APNIC left a dump from its Whois SQL database in a public Google Cloud bucket

NVIDIA Jetson Chipsets Found Vulnerable to High-severity Flaws

~ 21 Jun 2021 ~

It's 2021 and a printf format string in a wireless network's name can break iPhone Wi-Fi

Ex-NSA bigwig Chris Inglis appointed America's national cyber director by Senate

How Cyber Safe is Your Drinking Water Supply?

Did Companies Fail to Disclose Being Affected by SolarWinds Breach?

Software-Container Supply Chain Sees Spike in Attacks

Data Leaked in Fertility Clinic Ransomware Attack

Baltimore County Public Schools' Ransomware Recovery Tops $8M

The Future of Machine Learning and Cybersecurity

Statesponsored or financially motivated: Is there any difference anymore?

5 Critical Steps to Recovering From a Ransomware Attack

Sharpen your cybersecurity skills, however and wherever works for you, with these SANS Institute courses

South Koreas nuclear research agency breached by North Korea-affiliated cyberattackers, says malware analyst group

DroidMorph Shows Popular Android Antivirus Fail to Detect Cloned Malicious Apps

Beware! Connecting to This Wireless Network Can Break Your iPhone's Wi-Fi Feature

~ 19 Jun 2021 ~

A Bug in the Android Google App Put Privacy at Risk

~ 18 Jun 2021 ~

North Korea Exploited VPN Flaw to Hack South's Nuclear Research Institute

Cyber espionage by Chinese hackers in neighbouring nations is on the rise

Friday Squid Blogging: Video of Giant Squid Hunting Prey

This Week in Database Leaks: Cognyte, CVS, Wegmans

Microsoft announces recipients of academic grants for AI research on combating phishing

Racist malware blocks The Pirate Bay by tampering with victims' Windows hosts file

Week in security with Tony Anscombe

CREST president Ian Glover to retire after 13 years but where's the transparency, bossman?

A New Tool Wants to Save Open Source from Supply Chain Hacks

First American Financial Pays Farcical $500K Fine

Peloton Vulnerability Found and Fixed

Poltergeist attack could leave autonomous vehicles blind to obstacles or haunt them with new ones

4 Habits of Highly Effective Security Operators

5 essential things to do before ransomware strikes

Russia bans VyprVPN, Opera VPN services for not complying with blacklist request

SANS DFIR Summit 2021 Top 10 Summit improvements you must know

Computer Security Resources

Google Releases New Framework to Prevent Software Supply Chain Attacks

Google dishes out homemade SLSA, a recipe to thwart software supply-chain attacks

~ 17 Jun 2021 ~

[eBook] 7 Signs You Might Need a New Detection and Response Tool