Port 22

~ 23 Apr 2024 ~

The not-so-silent type: Vulnerabilities across keyboard apps reveal keystrokes to network eavesdroppers

Webinar: Learn Proactive Supply Chain Threat Hunting Techniques

Microsoft and Security Incentives

Leicester streetlights take ransomware attack personally, shine on 24/7

Police Chiefs Call for Solutions to Access Encrypted Data in Serious Crime Cases

Unmasking the True Cost of Cyberattacks: Beyond Ransom and Recovery

German Authorities Issue Arrest Warrants for Three Suspected Chinese Spies

The vision behind Starmus A Q&A with the festivals co-founder Garik Israelian

Over a million Neighbourhood Watch members exposed through web app bug

U.S. Imposes Visa Restrictions on 13 Linked to Commercial Spyware Misuse

Misconfigured cloud server leaked clues of North Korean animation scam

Russia's APT28 Exploited Windows Print Spooler Flaw to Deploy 'GooseEgg' Malware

Change Healthcare Finally Admits It Paid Ransomware Hackersand Still Faces a Patient Data Leak

Old Windows print spooler bug is latest target of Russia's Fancy Bear gang

The Ripple Effect: NIS2's Impact on Cybersecurity Practices Across the EU

~ 22 Apr 2024 ~

FBI and friends get two more years of warrantless FISA Section 702 snooping

Russian FSB Counterintelligence Chief Gets 9 Years in Cybercrime Bribery Scheme

The Next US President Will Have Troubling New Surveillance Powers

Europol becomes latest law enforcement group to plead with big tech to ditch E2EE

Analyzing Forest Blizzards custom post-compromise tool for exploiting CVE-2022-38028 to obtain credentials

Germany arrests trio accused of trying to smuggle naval military tech to China

Using Legitimate GitHub URLs for Malware

Russian Hacker Group ToddyCat Uses Advanced Tools for Industrial-Scale Data Theft

Watchdog tells Dutch govt: 'Do not use Facebook if there is uncertainty about privacy'

US House of Representatives passes new TikTok ban bill to Senate

Pentera's 2024 Report Reveals Hundreds of Security Events per Week, Highlighting the Criticality of Continuous Validation

UK data watchdog questions how private Google's Privacy Sandbox is

MITRE Corporation Breached by Nation-State Hackers Exploiting Ivanti Flaws

Has the ever-present cyber danger just got worse?

Ransomware Double-Dip: Re-Victimization in Cyber Extortion

ToddyCat is making holes in your infrastructure

Researchers Uncover Windows Flaws Granting Hackers Rootkit-Like Powers

Google all at sea over rising tide of robo-spam

Rarest, strangest, form of Windows saved techie from moment of security madness

Microsoft Warns: North Korean Hackers Turn to AI-Fueled Cyber Espionage

North Koreans Secretly Animated Amazon and Max Shows, Researchers Say

Researchers claim Windows Defender can be fooled into deleting databases

China creates 'Information Support Force' to improve networked defence capabilities

MITRE admits 'nation state' attackers touched its NERVE R&D operation

~ 21 Apr 2024 ~

New RedLine Stealer Variant Disguised as Game Cheats Using Lua Bytecode for Stealth

~ 20 Apr 2024 ~

AI-Controlled Fighter Jets Are Dogfighting With Human Pilots Now

Palo Alto Networks Discloses More Details on Critical PAN-OS Flaw Under Attack

Critical Update: CrushFTP Zero-Day Flaw Exploited in Targeted Attacks

~ 19 Apr 2024 ~

Friday Squid Blogging: Squid Trackers

Sacramento airport goes no-fly after AT&T internet cable snipped

The Biggest Deepfake Porn Website Is Now Blocked in the UK

WhatsApp, Threads, more banished from Apple App Store in China

BlackTech Targets Tech, Research, and Gov Sectors New 'Deuterbear' Tool

Protecting yourself after a medical data breach Week in security with Tony Anscombe

Hackers Target Middle East Governments with Evasive "CR4T" Backdoor

Cybercriminals threaten to leak all 5 million records from stolen database of high-risk individuals

How Attackers Can Own a Business Without Touching the Endpoint

Akira Ransomware Gang Extorts $42 Million; Now Targets Linux Servers

Germany cuffs alleged Russian spies over plot to bomb industrial and military targets

Following the Trail of Threat Actors in Google Workspace Audit Logs

~ 18 Apr 2024 ~

Ransomware feared as IT 'issues' force Octapharma Plasma to close 150+ centers

Crooks exploit OpenMetadata holes to mine crypto and leave a sob story for victims

The Trump Jury Has a Doxing Problem

House passes bill banning Uncle Sam from snooping on citizens via data brokers

Korean researcher details scheme abusing Apple's third-party pickup policy

OfflRouter Malware Evades Detection in Ukraine for Almost a Decade

185K people's sensitive data in the pits after ransomware raid on Cherry Health

FIN7 Cybercrime Group Targeting U.S. Auto Industry with Carbanak Backdoor

EU tells Meta it can't paywall privacy

Unitronics Vision Series PLCs

Recover from Ransomware in 5 MinutesWe will Teach You How!

Other Attempts to Take Over Open Source Projects

The Real-Time Deepfake Romance Scams Have Arrived

New Android Trojan 'SoumniBot' Evades Detection with Clever Tricks

How to Conduct Advanced Static Analysis in a Malware Sandbox

Global Police Operation Disrupts 'LabHost' Phishing Service, Over 30 Arrested Worldwide

Prolific phishing-made-easy emporium LabHost knocked offline in cyber-cop op

DuneQuixote campaign targets Middle Eastern entities with CR4T malware

The many faces of impersonation fraud: Spot an imposter before its too late

Cisco creates architecture to improve security and sell you new switches

Hackers Exploit OpenMetadata Flaws to Mine Crypto on Kubernetes

Singapore infosec boss warns China/West tech split will be bad for interoperability

Malicious Google Ads Pushing Fake IP Scanner Software with Hidden Backdoor

Taiwanese film studio snaps up Chinese surveillance camera specialist Dahua

~ 17 Apr 2024 ~

Hugely expanded Section 702 surveillance powers set for US Senate vote

Kremlin's Sandworm blamed for cyberattacks on US, European water utilities

Big Tech Squares Off Against US Spies

Attackers exploiting new critical OpenMetadata vulnerabilities on Kubernetes clusters

Russian APT Deploys New 'Kapeka' Backdoor in Eastern European Attacks

Exploit code for Palo Alto Networks zero-day now public

Using AI-Generated Legislative Amendments as a Delaying Technique

GenAI: A New Headache for SaaS Security Teams

Critical Atlassian Flaw Exploited to Deploy Linux Variant of Cerber Ransomware

Hackers Exploit Fortinet Flaw, Deploy ScreenConnect, Metasploit in New Campaign

OpenAI's GPT-4 can exploit real vulnerabilities by reading security advisories

SoumniBot: the new Android bankers unique techniques

Hackers Linked to Russias Military Claim Credit for Sabotaging US Water Utilities

Cisco Warns of Global Surge in Brute-Force Attacks Targeting VPN and SSH Services

Japanese government rejects Yahoo<i>!</i> infosec improvement plan

Enhancing Your Cyber Defense: Comparing Simulations and Tabletop Exercises

Fire in the Cisco! Networking giant's Duo MFA leaks message logs

~ 16 Apr 2024 ~

MGM says FTC can't possibly probe its ransomware downfall watchdog chief Lina Khan was a guest at the time

Change Healthcares New Ransomware Nightmare Goes From Bad to Worse

US Senate to Vote on a Wiretap Bill That Critics Call Stasi-Like

Alleged cryptojacker accused of stealing $3.5M from cloud to mine under $1M in crypto