Port 22

~ 4 Apr 2024 ~

A Vigilante Hacker Took Down North Koreas Internet. Now Hes Taking Off His Mask

When AI attacks

Ivanti Rushes Patches for 4 New Flaw in Connect Secure and Policy Secure

~ 3 Apr 2024 ~

Nearly 1M medical records feared stolen from City of Hope cancer centers

Omni Hotels IT systems down since Friday, hitting bookings, payments, door locks

Google Warns: Android Zero-Day Flaws in Pixel Phones Exploited by Forensic Companies

Get end-to-end protection with Microsofts unified security operations platform, now in public preview

U.S. Cyber Safety Board Slams Microsoft Over Breach by China-Based Hackers

The Mystery of Jia Tan, the XZ Backdoor Mastermind

The Manipulaters Improve Phishing, Still Fail at Opsec

Google Chrome Beta Tests New DBSC Protection Against Cookie-Stealing Attacks

Security pioneer Ross Anderson dies at 67

Google bakes new cookie strategy that will leave crooks with a bad taste

Attack Surface Management vs. Vulnerability Management

Class-Action Lawsuit against Googles Incognito Mode

Mispadu Trojan Targets Europe, Thousands of Credentials Compromised

How often should you change your passwords?

Meet clickjacking's slicker cousin, 'gesture jacking,' aka 'cross window forgery'

Critical Security Flaw Found in Popular LayerSlider WordPress Plugin

Microsoft slammed for lax security that led to Exchange Online attack

Microsoft slammed for lax security that led to China's cyber-raid on Exchange Online

4 Trends That Will Define the CISO's Role in 2024

~ 2 Apr 2024 ~

Feds finally decide to do something about years-old SS7 spy holes in phone networks

Citizen Lab submission to the Congressional-Executive Commission on China about the State of Human Rights in China

xz Utils Backdoor

OWASP server blunder exposes decade of resumes

Declassified NSA Newsletters

Pandabuy admits to data breach of 1.3 million unique records

Microsoft warns deepfake election subversion is disturbingly easy

Rubrik files to go public following alliance with Microsoft

Malicious Code in XZ Utils for Linux Systems Enables Remote Code Execution

Microsoft Priva announces new solutions to help modernize your privacy program

Polish officials may face criminal charges in Pegasus spyware probe

IOSIX IO-1020 Micro ELD

Harnessing the Power of CTEM for Cloud Security

INC Ransom claims to be behind 'cyber incident' at UK city council

China-linked Hackers Deploy New 'UNAPIMON' Malware for Stealthy Operations

Malware hiding in pictures? More likely than you think

Happy 20th birthday Gmail, you're mostly grown up now fix the spam

The XZ Backdoor: Everything You Need to Know

Apple's GoFetch silicon security fail was down to an obsession with speed

Google to Delete Billions of Browsing Records in 'Incognito Mode' Privacy Lawsuit Settlement

Massive Phishing Campaign Strikes Latin America: Venom RAT Targeting Multiple Sectors

A Visual Summary of SANS New2Cyber Summit 2024

Six banks share customer info to help Singapore fight money laundering

~ 1 Apr 2024 ~

US House of Reps tells staff: No Microsoft Copilot for you!

The Incognito Mode Myth Has Fully Unraveled

Malicious xz backdoor reveals fragility of open source

Nearly 3M people hit in Harvard Pilgrim healthcare data theft

Magic Security Dust

Indian Government Rescues 250 Citizens Forced into Cybercrime in Cambodia

Ex-White House CIO tells The Reg: TikTok ban may be diplomatic disaster

AT&T admits massive 70m+ mid-March data dump is real, but claims it's years old

Detecting Windows-based Malware Through Better Visibility

Malicious Apps Caught Secretly Turning Android Phones into Proxies for Cybercriminals

Vultur Android Banking Trojan Returns with Upgraded Remote Control Capabilities

A Ghost Ships Doomed Journey Through the Gate of Tears

4 Key Cybersecurity Trends to Watch in 2024

4 Cybersecurity Trends for Greater ROI in 2024

Ross Anderson

~ 31 Mar 2024 ~

Rust developers at Google are twice as productive as C++ teams

You Should Update Apple iOS and Google Chrome ASAP

~ 30 Mar 2024 ~

Yogurt Heist Reveals a Rampant Form of Online Fraud

Hackers Target macOS Users with Malicious Ads Spreading Stealer Malware

Urgent: Secret Backdoor Found in XZ Utils Library, Impacts Major Linux Distros

~ 29 Mar 2024 ~

Malicious backdoor sneaks into xz, Linux world's data compression library and tool

Easy-to-use make-me-root exploit lands for recent Linux kernels. Get patching

Friday Squid Blogging: The Geopolitics of Eating Squid

Dormakaba Locks Used in Millions of Hotel Rooms Could Be Cracked in Seconds

TheMoon Botnet Resurfaces, Exploiting EoL Devices to Power Criminal Proxy

The Golden Age of Automated Penetration Testing is Here

Lessons from a Ransomware Attack against the British Library

New Linux Bug Could Lead to User Password Leaks and Clipboard Hijacking

RDP remains a security concern Week in security with Tony Anscombe

PyPI Halts Sign-Ups Amid Surge of Malicious Package Uploads Targeting Developers

The Art of Possible: Your Guide to RSAC 2024

~ 28 Mar 2024 ~

Thread Hijacking: Phishes That Prey on Your Curiosity

JetBrains keeps mum on 26 'security problems' fixed after Rapid7 spat

Linux Version of DinodasRAT Spotted in Cyber Attacks Across Several Countries

Finland Blames Chinese Hacking Group APT31 for Parliament Cyber Attack

FTX crypto-crook Sam Bankman-Fried gets 25 years in prison

Nvidia's newborn ChatRTX bot patched for security bugs

Darcula Phishing Network Leveraging RCS and iMessage to Evade Detection

US critical infrastructure cyberattack reporting rules inch closer to reality

DinodasRAT Linux implant targeting entities worldwide

New Webinar: Avoiding Application Security Blind Spots with OPSWAT and F5

Canonical cracks down on crypto cons following Snap Store scam spree

Hardware Vulnerability in Apples M-Series Chips

Jeffrey Epstein's Island Visitors Exposed by Data Broker

Behind the Scenes: The Art of Safeguarding Non-Human Identities

New ZenHammer Attack Bypasses Rowhammer Defenses on AMD CPUs

Cybercriminals play dirty: A look back at 10 cyber hits on the sporting world

INC Ransom claims responsibility for attack on NHS Scotland

Telegram Offers Premium Subscription in Exchange for Using Your Number to Send OTPs

These 17,000 unpatched Microsoft Exchange servers are a ticking time bomb

AI hallucinates software packages and devs download them even if potentially poisoned with malware

Execs in Japan busted for winning dev bids then outsourcing to North Koreans

China encouraged armed offensive against Myanmar government to protest proliferation of online scams

~ 27 Mar 2024 ~

Apple fans flooded with phony password reset requests

Majority of Americans now use ad blockers