Port 22

~ 13 Mar 2024 ~

Cryptocurrency laundryman gets hung out to dry

Microsoft Copilot for Security prepares for April liftoff

Microsoft Copilot for Security is generally available on April 1, 2024, with new capabilities

Demystifying a Common Cybersecurity Myth

PixPirate Android Banking Trojan Using New Evasion Tactic to Target Brazilian Users

Stanford University failed to detect ransomware intruders for 4 months

There Are Dark Corners of the Internet. Then There's 764

Whats in your notepad? Infected text editors target Chinese users

Burglars Using Wi-Fi Jammers to Disable Security Cameras

Join Our Webinar on Protecting Human and Non-Human Identities in SaaS Platforms

How to share sensitive files securely online

Researchers Highlight Google's Gemini AI Susceptibility to LLM Threats

Alert: Cybercriminals Deploying VCURMS and STRRAT Trojans via AWS and GitHub

Porn Sites Need Age-Verification Systems in Texas, Court Rules

Reducing the cloud security overhead

Researchers jimmy OpenAI's and Google's closed models

The State of Stalkerware in 20232024

Microsoft's March Updates Fix 61 Vulnerabilities, Including Critical Hyper-V Flaws

March Patch Tuesday sees Hyper-V join the guest-host escape club

Beyond Management: Becoming a Leader in Your SOC

~ 12 Mar 2024 ~

Meta sues ex infra VP for allegedly stealing top-secret datacenter blueprints

Patch Tuesday, March 2024 Edition

US Lawmaker Cited NYC Protests in a Defense of Warrantless Spying

Biden's budget proposal boosts CISA funding to $3B

JetBrains is still mad at Rapid7 for the ransomware attacks on its customers

Watch Out: These PyPI Python Packages Can Drain Your Crypto Wallets

Schneider Electric EcoStruxure Power Design

UK council yanks IT systems and phone lines offline following cyber ambush

Jailbreaking LLMs with ASCII Art

CTEM 101 - Go Beyond Vulnerability Management with Continuous Threat Exposure Management

Election cybersecurity: Protecting the ballot box and building trust in election integrity

Top 10 web application vulnerabilities in 20212023

Malware Campaign Exploits Popup Builder WordPress Plugin to Infect 3,900+ Sites

South Korean Citizen Detained in Russia on Cyber Espionage Charges

French government sites disrupted by <i>trs grande</i> DDoS

Binances Top Crypto Crime Investigator Is Being Detained in Nigeria

White House and lawmakers increase pressure on UnitedHealth to ease providers' pain

~ 11 Mar 2024 ~

Kremlin accuses America of plotting cyberattack on Russian voting systems

The 4 Big Questions the Pentagons New UFO Report Fails to Answer

Incognito Darknet Market Mass-Extorts Buyers, Sellers

New Banking Trojan CHAVECLOAK Targets Brazilian Users via Phishing Tactics

Embracing the Cloud: Revolutionizing Privileged Access Management with One Identity PAM Essentials

Airbnb Bans All Indoor Security Cameras

British Library pushes the cloud button, says legacy IT estate cause of hefty rebuild

Data Leakage Prevention in the Age of Cloud Computing: A New Approach

How do you lot feel about Pay or say OK to ads model, asks ICO

Using LLMs to Unredact Text

BianLian Threat Actors Exploiting JetBrains TeamCity Flaws in Ransomware Attacks

Google Is Getting Thousands of Deepfake Porn Complaints

Proof-of-Concept Exploit Released for Progress Software OpenEdge Vulnerability

Magnet Goblin Hacker Group Leveraging 1-Day Exploits to Deploy Nerbian RAT

Microsoft waited 6 months to patch actively exploited admin-to-kernel vulnerability

~ 9 Mar 2024 ~

Russian Hackers Stole Microsoft Source Codeand the Attack Isnt Over

Microsoft Confirms Russian Hackers Stole Source Code, Some Customer Secrets

~ 8 Mar 2024 ~

Cybercrime crew Magnet Goblin bursts onto the scene exploiting Ivanti holes

Friday Squid Blogging: New Plant Looks Like a Squid

Essays from the Second IWORD

International Womens Day: Expanding cybersecurity opportunities in the era of AI

Microsoft confirms Russian spies stole source code, accessed internal systems

Change Healthcare registers pulse after crippling ransomware attack

Meta Details WhatsApp and Messenger Interoperability to Comply with EU's DMA Regulations

A Close Up Look at the Consumer Data Broker Radaris

APT attacks taking aim at Tibetans Week in security with Tony Anscombe

Swiss cheese security? Play ransomware gang milks government of 65,000 files

A Taxonomy of Prompt Injection Attacks

Secrets Sensei: Conquering Secrets Management Challenges

Cisco Issues Patch for High-Severity VPN Hijacking Bug in Secure Client

QEMU Emulator Exploited as Tunneling Tool to Breach Company Network

CISA Warns of Actively Exploited JetBrains TeamCity Vulnerability

Font security 'still a Helvetica of a problem' says Australian graphics outfit Canva

Securing open source software: Whose job is it, anyway?

Top 25 Cybersecurity Resources for International Womens Day

Top 20 Cybersecurity Resources for International Womens Day

~ 7 Mar 2024 ~

We're not Meta support: State AGs tell Zuck to fix rampant account takeover problem

Chrome users get an alert when extensions are in danger of falling into wrong hands

Possible China link to Change Healthcare ransomware attack

Evolving Microsoft Security Development Lifecycle (SDL): How continuous SDL can help you build more secure software

JetBrains TeamCity under attack by ransomware thugs after disclosure mess

Hacked WordPress Sites Abusing Visitors' Browsers for Distributed Brute-Force Attacks

Chinese State Hackers Target Tibetans with Supply Chain, Watering Hole Attacks

Belgian ale legend Duvels brewery borked as ransomware halts production

How Public AI Can Strengthen Democracy

Chirp Systems Chirp Access

Human vs. Non-Human Identity in SaaS

Evasive Panda leverages Monlam Festival to target Tibetans

Ex-Google Engineer Arrested for Stealing AI Technology Secrets for China

Spam and phishing in 2023

New Python-Based Snake Info Stealer Spreading Through Facebook Messages

VMware urges emergency action to blunt hypervisor flaws

Heres something else AI can do: expose bad infosec to give cyber-crims a toehold in your organization

Watch Out for Spoofed Zoom, Skype, Google Meet Sites Delivering Malware

US lawmakers want ByteDance to divest TikTok or face a ban

Lawsuit claims gift card fraud is the gift that keeps on giving, to Google

Chinese chap charged with stealing Googles AI datacenter secrets

Prevent Cloud Incidents from Becoming Cloud Breaches

Industrial Control Systems Cyber Threats and the Gulf Region ICS Blog Series: 3 of 3

Enhancing Operational Resilience in OT

~ 6 Mar 2024 ~

FBI: Critical infrastructure menaced by spike in ransomware attacks

Apple's trademark tight lips extend to new iPhone, iPad zero-days

Enhancing protection: Updates on Microsofts Secure Future Initiative