Port 22

Labour reminds UK.gov that it's supposed to be reforming the Computer Misuse Act

Gareth CorfieldThe Register

Prioritizing the Right Vulnerabilities to Reduce Risk

N/ADark Reading - Threat Intelligence

Experience is really everything with SASE

Joseph MartinsThe Register

Palestinian Hackers Using New NimbleMamba Implant in Recent Attacks

noreply@blogger.com (Ravie Lakshmanan)The Hackers News

Several Malware Families Using Pay-Per-Install Service to Expand Their Targets

noreply@blogger.com (Ravie Lakshmanan)The Hackers News

'Roaming Mantis' Android Malware Targeting Europeans via Smishing Campaigns

noreply@blogger.com (Ravie Lakshmanan)The Hackers News

Microsoft to block downloaded VBA macros in Office you may be able to run 'em anyway

Simon SharwoodThe Register

Medusa Android Banking Trojan Spreading Through Flubot's Attacks Network

noreply@blogger.com (Ravie Lakshmanan)The Hackers News

How Attack Surface Management Preempts Cyberattacks

noreply@blogger.com (The Hacker News)The Hackers News

Russian APT Steps Up Malicious Cyber Activity in Ukraine

Jai Vijayan, Contributing WriterDark Reading - Threat Intelligence

FBI Publishes Indicators of Compromise for LockBit 2.0 Ransomware

Dark Reading Staff, Dark ReadingDark Reading - Threat Intelligence

IRS To Ditch Biometric Requirement for Online Access

BrianKrebsKrebs on Security

Microsoft Disables Internet Macros in Office Apps by Default to Block Malware Attacks

noreply@blogger.com (Ravie Lakshmanan)The Hackers News

Microsoft Temporarily Disables MSIX App Installers to Prevent Malware Abuse

noreply@blogger.com (Ravie Lakshmanan)The Hackers News

SecurityScorecard Acquires LIFARS

N/ADark Reading - Threat Intelligence

A Prophylactic Approach for Today's Vulnerable Websites and Web Apps

N/ADark Reading - Threat Intelligence

When Multifactor Authentication Is Compromised: Fighting Back With AI

Max Heinemeyer, Director of Threat Hunting, DarktraceDark Reading - Threat Intelligence

Microsoft 365 gives you the tools to run your business. But where are the tools to protect it?

David GordonThe Register

Detect active network reconnaissance with Microsoft Defender for Endpoint

Pooja ParabMicrosoft Security Blog

Log4j: Getting From Stopgap Remedies to Long-Term Solutions

Jeremy Colvin, Technical Product Marketer, UptycsDark Reading - Threat Intelligence

Name That Edge Toon: Head of the Table

John Klossner, CartoonistDark Reading - Threat Intelligence

An Insidious Mac Malware Is Growing More Sophisticated

Dan Goodin, Ars TechnicaWired

Roaming Mantis reaches Europe

Suguru IshimaruSecure List

New CapraRAT Android Malware Targets Indian Government and Military Personnel

noreply@blogger.com (Ravie Lakshmanan)The Hackers News

US carriers want to junk three times more Chinese comms kit than planned

Simon SharwoodThe Register

Hackers Backdoored Systems at China's National Games Just Before Competition

noreply@blogger.com (Ravie Lakshmanan)The Hackers News

IoT/connected Device Discovery and Security Auditing in Corporate Networks

noreply@blogger.com (The Hacker News)The Hackers News

SANS DFIR Course Roadmap and Job Role Matrix

N/ASANS ICS

Recreating OneDrives folder structure from <UserCid>.dat

N/ASANS ICS

Chinese Hackers Target Taiwanese Financial Institutions with a new Stealthy Backdoor

noreply@blogger.com (Ravie Lakshmanan)The Hackers News

CISA Orders Federal Agencies to Patch Actively Exploited Windows Vulnerability

noreply@blogger.com (Ravie Lakshmanan)The Hackers News

Health Sites Let Ads Track Visitors Without Telling Them

Lily Hay NewmanWired

New Argo CD Bug Could Let Hackers Steal Secret Info from Kubernetes Apps

noreply@blogger.com (Ravie Lakshmanan)The Hackers News

A $320 Million Crypto Hack Sends the DeFi World Reeling

Brian BarrettWired

Microsoft Uncovers New Details of Russian Hacking Campaign Targeting Ukraine

noreply@blogger.com (Ravie Lakshmanan)The Hackers News

Friday Squid Blogging: Are Squid from Another Planet?

Bruce SchneierSchneier on Security

Suspected Chinese spies break into cloud accounts of News Corp journalists

Gareth CorfieldThe Register

The 3 Most Common Causes of Data Breaches in 2021

Edge Editors, Dark ReadingDark Reading - Threat Intelligence

Expert Insights: Training the Data Elephant in the AI Room

Gary McGraw Ph.D., Co-founder Berryville Institute of Machine LearningDark Reading - Threat Intelligence

ACTINIUM targets Ukrainian organizations

Microsoft 365 Defender Threat Intelligence TeamMicrosoft Security Blog

China-Linked Group Attacked Taiwanese Financial Firms for 18 Months

Robert Lemos, Contributing WriterDark Reading - Threat Intelligence

Week in security with Tony Anscombe

EditorESET

The EARN IT Act Is Back

Bruce SchneierSchneier on Security

Open-source Kubernetes tool Argo CD has a high-severity path traversal flaw: Patch now

Gareth CorfieldThe Register

Want to Be an Ethical Hacker? Here's Where to Begin

Luke Stephens (aka Hakluke), Security Researcher and Detectify Crowdsource HackerDark Reading - Threat Intelligence

Think before you scan: How fraudsters can exploit QR codes to steal money

Cecilia PastorinoESET

Another Israeli Firm, QuaDream, Caught Weaponizing iPhone Bug for Spyware

noreply@blogger.com (Ravie Lakshmanan)The Hackers News

US Authorities Charge 6 Indian Call Centers Scamming Thousands of Americans

noreply@blogger.com (Ravie Lakshmanan)The Hackers News

Russian Gamaredon Hackers Targeted 'Western Government Entity' in Ukraine

noreply@blogger.com (Ravie Lakshmanan)The Hackers News

That's a signature move: How $320m in Ether was stolen from crypto biz Wormhole

Thomas ClaburnThe Register

Cynet Log4Shell Webinar: A Thorough - And Clear - Explanation

noreply@blogger.com (The Hacker News)The Hackers News

Mac Malware-Dropping Adware Gets More Dangerous

Jai Vijayan, Contributing WriterDark Reading - Threat Intelligence

Mandiant Bolsters SaaS Platform With Integration of New Attack Surface Management Module

N/ADark Reading - Threat Intelligence

Several India-Based Call Centers Indicted by US DoJ

Dark Reading Staff, Dark ReadingDark Reading - Threat Intelligence

CISA Warns of Critical Vulnerabilities Discovered in Airspan Networks Mimosa

noreply@blogger.com (Ravie Lakshmanan)The Hackers News

The Future of Cybersecurity: Our Predictions for 2022

N/ADark Reading - Threat Intelligence

Tenable Launches Suite of New Features to Cloud-Native Application Security Platform

N/ADark Reading - Threat Intelligence

Research From Quantum and ESG Reveals Top Challenges in Data Management

N/ADark Reading - Threat Intelligence

Hackers Exploited 0-Day Vulnerability in Zimbra Email Platform to Spy on Users

noreply@blogger.com (Ravie Lakshmanan)The Hackers News

DHS Launches Cyber Safety Review Board to Analyze Major Vulnerability Events

Robert Lemos, Contributing WriterDark Reading - Threat Intelligence

Menlo Security Finds Cloud Migration and Remote Work Gives Rise to New Era of Malware, Highly Evasive Adaptive Threats (HEAT)

N/ADark Reading - Threat Intelligence

Privacy Shield: EU citizens might get right to challenge US access to their data

Lindsay ClarkThe Register

HackNotice Releases Combined Security and Threat Awareness Service for Free

N/ADark Reading - Threat Intelligence

BreachQuest Welcomes Sandy Dunn as Chief Information Security Officer

N/ADark Reading - Threat Intelligence

BIO-key to Expand Customer Reach and Talent in EMEA Region

N/ADark Reading - Threat Intelligence

Port 22

~ 8 Feb 2022 ~

Labour reminds UK.gov that it's supposed to be reforming the Computer Misuse Act

Prioritizing the Right Vulnerabilities to Reduce Risk

Experience is really everything with SASE

Palestinian Hackers Using New NimbleMamba Implant in Recent Attacks

Several Malware Families Using Pay-Per-Install Service to Expand Their Targets

'Roaming Mantis' Android Malware Targeting Europeans via Smishing Campaigns

Microsoft to block downloaded VBA macros in Office you may be able to run 'em anyway

Medusa Android Banking Trojan Spreading Through Flubot's Attacks Network

~ 7 Feb 2022 ~

How Attack Surface Management Preempts Cyberattacks

Russian APT Steps Up Malicious Cyber Activity in Ukraine

FBI Publishes Indicators of Compromise for LockBit 2.0 Ransomware

IRS To Ditch Biometric Requirement for Online Access

Microsoft Disables Internet Macros in Office Apps by Default to Block Malware Attacks

Microsoft Temporarily Disables MSIX App Installers to Prevent Malware Abuse

SecurityScorecard Acquires LIFARS

A Prophylactic Approach for Today's Vulnerable Websites and Web Apps

When Multifactor Authentication Is Compromised: Fighting Back With AI

Microsoft 365 gives you the tools to run your business. But where are the tools to protect it?

Detect active network reconnaissance with Microsoft Defender for Endpoint

Log4j: Getting From Stopgap Remedies to Long-Term Solutions

Name That Edge Toon: Head of the Table

An Insidious Mac Malware Is Growing More Sophisticated

Roaming Mantis reaches Europe

New CapraRAT Android Malware Targets Indian Government and Military Personnel

US carriers want to junk three times more Chinese comms kit than planned

Hackers Backdoored Systems at China's National Games Just Before Competition

IoT/connected Device Discovery and Security Auditing in Corporate Networks

SANS DFIR Course Roadmap and Job Role Matrix

Recreating OneDrives folder structure from <UserCid>.dat

~ 6 Feb 2022 ~

Chinese Hackers Target Taiwanese Financial Institutions with a new Stealthy Backdoor

CISA Orders Federal Agencies to Patch Actively Exploited Windows Vulnerability

Health Sites Let Ads Track Visitors Without Telling Them

~ 5 Feb 2022 ~

New Argo CD Bug Could Let Hackers Steal Secret Info from Kubernetes Apps

A $320 Million Crypto Hack Sends the DeFi World Reeling

~ 4 Feb 2022 ~

Microsoft Uncovers New Details of Russian Hacking Campaign Targeting Ukraine

Friday Squid Blogging: Are Squid from Another Planet?

Suspected Chinese spies break into cloud accounts of News Corp journalists

The 3 Most Common Causes of Data Breaches in 2021

Expert Insights: Training the Data Elephant in the AI Room

ACTINIUM targets Ukrainian organizations

China-Linked Group Attacked Taiwanese Financial Firms for 18 Months

Week in security with Tony Anscombe

The EARN IT Act Is Back

Open-source Kubernetes tool Argo CD has a high-severity path traversal flaw: Patch now

Want to Be an Ethical Hacker? Here's Where to Begin

Think before you scan: How fraudsters can exploit QR codes to steal money

Another Israeli Firm, QuaDream, Caught Weaponizing iPhone Bug for Spyware

US Authorities Charge 6 Indian Call Centers Scamming Thousands of Americans

Russian Gamaredon Hackers Targeted 'Western Government Entity' in Ukraine

That's a signature move: How $320m in Ether was stolen from crypto biz Wormhole

Cynet Log4Shell Webinar: A Thorough - And Clear - Explanation

~ 3 Feb 2022 ~

Mac Malware-Dropping Adware Gets More Dangerous

Mandiant Bolsters SaaS Platform With Integration of New Attack Surface Management Module

Several India-Based Call Centers Indicted by US DoJ

CISA Warns of Critical Vulnerabilities Discovered in Airspan Networks Mimosa

The Future of Cybersecurity: Our Predictions for 2022

Tenable Launches Suite of New Features to Cloud-Native Application Security Platform

Research From Quantum and ESG Reveals Top Challenges in Data Management

Hackers Exploited 0-Day Vulnerability in Zimbra Email Platform to Spy on Users

DHS Launches Cyber Safety Review Board to Analyze Major Vulnerability Events

Menlo Security Finds Cloud Migration and Remote Work Gives Rise to New Era of Malware, Highly Evasive Adaptive Threats (HEAT)

Privacy Shield: EU citizens might get right to challenge US access to their data

HackNotice Releases Combined Security and Threat Awareness Service for Free

BreachQuest Welcomes Sandy Dunn as Chief Information Security Officer

BIO-key to Expand Customer Reach and Talent in EMEA Region