Port 22

~ 20 Oct 2023 ~

Critical SolarWinds RCE Bugs Enable Unauthorized Network Takeover

Cisco Finds New Zero Day Bug, Pledges Patches in Days

Admin behind E-Root stolen creds souk extradited to US

DoD Gets Closer to Nominating Cyber Policy Chief

Hackers Stole Access Tokens from Oktas Support Unit

Ducktail Infostealer, DarkGate RAT Linked to Same Threat Actors

SIM Card Ownership Slashed in Burkina Faso

Change From Within: 3 Cybersecurity Transformation Traps for CISOs to Avoid

Malvertisers Using Google Ads to Target Users Searching for Popular Software

Vietnamese Hackers Target U.K., U.S., and India with DarkGate Malware

What are Your Exception Expectations?

Spearphishing targets in Latin America Week in security with Tony Anscombe

Unleashing the Power of the Internet of Things and Cyber Security

AI and US Election Rules

ExelaStealer: A New Low-Cost Cybercrime Weapon Emerges

U.S. DoJ Cracks Down on North Korean IT Scammers Defrauding Global Businesses

Leveraging Artificial Intelligence (AI) to Manage Human Risk: Part 2 Generative AI Basics

Freelance Market Flooded with North Korean IT Actors

~ 19 Oct 2023 ~

Citing Hamas, the US Wants to Treat Crypto "Mixers" as Suspected Money Launderers

AI 'Will Have a Significant Impact on Energy Industry,' EPRI Tells Congress

Norton Boosts Security and Privacy With Enhanced Password Manager and AntiTrack

Spec Secures $15M Series A Funding, Accelerating Innovation in Fraud Defense

Fingerprint Raises $33M in Series C Funding to Accelerate Enterprise Device Intelligence and Fraud Prevention Adoption

SailPoint Unveils Annual 'Horizons of Identity Security' Report

23AndMe Hacker Leaks New Tranche of Stolen Data

North Korean State Actors Attack Critical Bug in TeamCity Server

Casio keyed up after data loss hits customers in 149 countries

Tips for a Successful SecOps Game Plan

AI-Powered Israeli 'Cyber Dome' Defense Operation Comes to Life

Why Do CVE Scores Need Real-World Context to Prioritize?

Europol knocks RagnarLocker offline in second major ransomware bust this year

Q&A: The Outlook for Israeli Cyber Startups, As War Clouds Gather

Cybercrim claims fresh 23andMe batch takes leaked records to 5 million

Microsoft Security Copilot Early Access Program: Harnessing generative AI to empower security teams

Patch Now: APTs Continue to Pummel WinRAR Bug

Iran-Linked 'MuddyWater' Spies on Mideast Gov't for 8 Months

Ex-Navy IT manager gets 5 years in slammer for 2018 database heist

The Trifecta of Consumer Data Privacy: Education, Advocacy & Accountability

Sophisticated MATA Framework Strikes Eastern European Oil and Gas Companies

October Cybersecurity Awareness Month to target internal security risks

Vulnerability Scanning: How Often Should I Scan?

Google Play Protect Introduces Real-Time Code-Level Scanning for Android Malware

Former Uber CISO Appealing His Conviction

Iran-Linked OilRig Targets Middle East Governments in 8-Month Cyber Campaign

Money-making scripts attack organizations

Strengthening the weakest link: top 3 security awareness topics for your employees

Microsoft Warns of North Korean Attacks Exploiting TeamCity Flaw

Europol Strike Wounds Ragnar Locker Ransomware Group

Google TAG Detects State-Backed Threat Actors Exploiting WinRAR Flaw

~ 18 Oct 2023 ~

What CISOs Should Exclude From SEC Cybersecurity Filings

Whos Responsible for the Gaza Hospital Explosion? Heres Why Its Hard to Know Whats Real

D-Link Confirms Breach, Rebuts Hacker's Claims About Scope

FBI: Hackers Are Extorting Plastic Surgery Providers, Patients

The Most Popular IT Admin Password Is Totally Depressing

OCP Launches SAFE to Standardize Firmware Audits

Critical Citrix Bug Exploited as a Zero-Day, 'Patching Is Not Enough'

Open-Source Security Agents Promise Greater Simplicity, Flexibility

EPA Turns Off Taps on Water Utility Cyber Regulations

Multiple North Korean threat actors exploiting the TeamCity CVE-2023-42793 vulnerability

North Korea's Kimsuky Doubles Down on Remote Desktop Control

Expanding audit logging and retention within Microsoft Purview for increased security visibility

PREDATOR : Predator

Lazarus Group Targeting Defense Experts with Fake Interviews via Trojanized VNC Apps

D-Link clears up 'exaggerations' around data breach

The Fake Browser Update Scam Gets a Makeover

The Need for a Cybersecurity-Centric Business Culture

Pro-Iranian Hacktivists Set Sights on Israeli Industrial Control Systems

Israeli Cybersecurity Startups: Impact of a Growing Conflict

CIA exposed to potential intelligence interception due to X's URL bug

Better safe than sorry: 10 tips to build an effective business backup strategy

Critical Citrix NetScaler Flaw Exploited to Target from Government, Tech Firms

Data Security and Collaboration in the Modern Enterprise

Unraveling Real-Life Attack Paths Key Lessons Learned

Qubitstrike Targets Jupyter Notebooks with Crypto Mining and Rootkit Campaign

Analysis of Intellexas Predator Spyware

Updated MATA attacks industrial companies in Eastern Europe

Jupyter Notebook Ripe for Cloud Credential Theft, Researchers Warn

TetrisPhantom: Cyber Espionage via Secure USBs Targets APAC Governments

New Admin Takeover Vulnerability Exposed in Synology's DiskStation Manager

D-Link Confirms Data Breach: Employee Falls Victim to Phishing Attack

~ 17 Oct 2023 ~

Insiders Say Xs Crowdsourced Anti-Disinformation Tool Is Making the Problem Worse

Amazon Quietly Wades Into the Passkey Waters

Chatbot Offers Roadmap for How to Conduct a Bio Weapons Attack

UAE, US Partner to Bolster Financial Services Cybersecurity

Zero-Day Alert: Ten Thousand Cisco IOS XE Systems Now Compromised

Watch Out: Attackers Are Hiding Malware in 'Browser Updates'

Tech CEO Sentenced to 5 Years in IP Address Scheme

Etherhiding Blockchain Technique Hides Malicious Code in WordPress Sites

Discord: A Playground for Nation-State Hackers Targeting Critical Infrastructure

Critical Vulnerabilities Uncovered in Open Source CasaOS Cloud Software

Top 6 Mistakes in Incident Response Tabletop Exercises

US cybercops urge admins to patch amid ongoing Confluence chaos

Schneider Electric EcoStruxure Power Monitoring Expert and Power Operation Products

Rockwell Automation FactoryTalk Linx

Webinar: Locking Down Financial and Accounting Data Best Data Security Strategies

Security Vulnerability of Switzerlands E-Voting System

Exploring the Realm of Malicious Generative AI: A New Digital Security Challenge

Experts Warn of Severe Flaws Affecting Milesight Routers and Titan SFTP Servers

APT trends report Q3 2023

They Supported Air Strike Victims. Then They Were Doxed and Arrested