S3 Ep108: You hid THREE BILLION dollars in a popcorn tin?Patches, busts, leaks and why even low-likelihood exploits can be high-severity risks - listen now!Leer másNaked...
Year: 2022
Log4Shell-like code execution hole in popular Backstage dev tool
Log4Shell-like code execution hole in popular Backstage dev toolGood old "string templating", also known as "string interpolation", in the spotlight again...Leer másNaked SecurityGood old "string templating",...
Unsupervised Machine Learning: Benefits for the Financial Services Industry
Unsupervised Machine Learning: Benefits for the Financial Services IndustryUnsupervised learning actually draws inferences from datasets without labels. It is best used if you want to find...
Quick Guide to Install SSL Certificate in RedHat Linux Server
Quick Guide to Install SSL Certificate in RedHat Linux ServerHere’s How You Can Install Your Purchased SSL Certificate in RedHat Linux Web Server RedHat is a...
“Gucci Master” business email scammer Hushpuppi gets 11 years
“Gucci Master” business email scammer Hushpuppi gets 11 yearsLearn how to protect yourself from big-money tricksters like the Hushpuppis of the world...Leer másNaked SecurityLearn how to...
0 - CT 0 - CT - SOC - CSIRT Operations - Cyber Incidents & Attacks Notepad 0 - CT - SOC - CSIRT Operations - Data Leak & Breach Incidents Notepad Cyber Security News Security Boulevard
China-Linked Cybercrime Group Attacks Asian Certificate Authority, Breaches Government Agencies
China-Linked Cybercrime Group Attacks Asian Certificate Authority, Breaches Government AgenciesChina-Linked Cybercrime Group Attacks Asian Certificate Authority, Breaches Government Agencies brooke.crothers Tue, 11/15/2022 - 15:14 8 views...
Kanye West Won a Grammy in 2006 for Anti-Semitism. Are You Really Surprised at Him Today?
Kanye West Won a Grammy in 2006 for Anti-Semitism. Are You Really Surprised at Him Today?Seems to me some obvious hate propaganda methods (even “fighting words”)...
Why Russian Hackers Fell Down and Ran Away When Ukraine Put Up Even a Little Defense
Why Russian Hackers Fell Down and Ran Away When Ukraine Put Up Even a Little DefenseThere’s an old bogus saw in IT that goes something like...
ForgeRock set to roll out new IAM capabilities designed for the cloud
ForgeRock set to roll out new IAM capabilities designed for the cloudIdentity and access management (IAM) vendor ForgeRock said Tuesday that it's set to start rolling...
XDR: Still confusing after all these years
XDR: Still confusing after all these yearsWe’ve been discussing extended detection and response (XDR) for years now, but a fundamental question remains: Just what the heck...
Lazarus Backdoor DTrack Evolves to Target Europe and Latin America
Lazarus Backdoor DTrack Evolves to Target Europe and Latin AmericaDTrack has not changed substantially, but Lazarus made some “interesting” modificationsLeer másDTrack has not changed substantially, but...
0 - CT 0 - CT - SOC - CSIRT Operations - Data Leak & Breach Incidents Notepad Cyber Security News SecurityAffairs
China-linked APT Billbug breached a certificate authority in Asia
China-linked APT Billbug breached a certificate authority in AsiaA suspected China-linked APT group breached a digital certificate authority in Asia as part of a campaign aimed...
0 - CT 0 - CT - SOC - CSIRT Operations - Malware & Ransomware Cyber Security News Info Security Magazine
LockBit Remains Most Prolific Ransomware in Q3
LockBit Remains Most Prolific Ransomware in Q3Phobos is a close second, according to TrellixLeer másPhobos is a close second, according to Trellix
Billbug Targets Government Agencies in Multiple Asian Countries
Billbug Targets Government Agencies in Multiple Asian CountriesAccording to Symantec, the targeting of a certificate authority was notableLeer másAccording to Symantec, the targeting of a certificate...
Remote Code Execution Discovered in Spotify’s Backstage
Remote Code Execution Discovered in Spotify's BackstageSpotify ranked the vulnerability as critical, with a CVSS score of 9.8Leer másSpotify ranked the vulnerability as critical, with a...
Euro Authorities Warn World Cup Fans Over Qatari Apps
Euro Authorities Warn World Cup Fans Over Qatari AppsSecurity and privacy concerns mount for those attending matchesLeer másSecurity and privacy concerns mount for those attending matches
Most Neurodiverse Women in Tech Feel Unsupported: Study
Most Neurodiverse Women in Tech Feel Unsupported: StudyReport suggests high demand for talent from security sector employersLeer másReport suggests high demand for talent from security sector...
Experts revealed details of critical SQLi and access issues in Zendesk Explore
Experts revealed details of critical SQLi and access issues in Zendesk ExploreResearchers disclosed technical details of critical SQLi and access vulnerabilities in the Zendesk Explore Service....
Happy birthday Security Affairs … 11 years together!
Happy birthday Security Affairs … 11 years together!Happy BirthDay Security Affairs! Eleven years together! I launched Security Affairs for passion in November 2011 and since then...
Experts found critical RCE in Spotify’s Backstage
Experts found critical RCE in Spotify’s BackstageResearchers discovered a critical vulnerability impacting Spotify’s Backstage Software Catalog and Developer Platform. Researchers from the security firm Oxeye discovered...
State-Backed APT Group Activity Continuing Apace
State-Backed APT Group Activity Continuing ApaceThe report outlines recent APT group activity from Russia, China, Iran and North KoreaLeer másThe report outlines recent APT group activity...
Beginning 2023 Google plans to rollout the initial Privacy Sandbox Beta
Beginning 2023 Google plans to rollout the initial Privacy Sandbox BetaGoogle announced it will roll out the Privacy Sandbox system for Android in beta to a...
0 - CT 0 - CT - Cybersecurity Tools - ANTI DDOS 0 - CT - SOC - CSIRT Operations - Cyber Incidents & Attacks Notepad 0 - CT - SOC - CSIRT Operations - DDOS Attacks Cyber Security News SecurityAffairs
New RapperBot Campaign targets game servers with DDoS attacks
New RapperBot Campaign targets game servers with DDoS attacksFortinet researchers discovered new samples of RapperBot used to build a botnet to launch Distributed DDoS attacks against...
Malicious For-Profit Group Impersonates Brands to Scam Users
Malicious For-Profit Group Impersonates Brands to Scam Users“Fangxiao,” a malicious for-profit company, has created a vast network of over 42,000 domains that imitate well-known companies to...
Billbug Threat Group Ongoing Campaign Unveiled
Billbug Threat Group Ongoing Campaign UnveiledThe threat actor called Billbug (a.k.a. Thrip, Lotus Blossom, Spring Dragon) is responsible for a campaign that targeted a certificate authority,...
High-Severity Flaw Reported in Spotify’s Backstage
High-Severity Flaw Reported in Spotify’s BackstageBackstage, the open-source developer portal from Spotify, has been discovered as vulnerable to a high-severity security flaw that could grant threat actors the...
0 - CT 0 - CT - Cybersecurity Tools - ANTI DDOS 0 - CT - SOC - CSIRT Operations - Cyber Incidents & Attacks Notepad 0 - CT - SOC - CSIRT Operations - DDOS Attacks Cyber Security News heimdalsecurity
New RapperBot Campaign Aims to Launch DDoS Attacks on Game Servers
New RapperBot Campaign Aims to Launch DDoS Attacks on Game ServersThe “RapperBot” malware group has been rapidly expanding since mid-June 2022. Researchers discovered new samples of...
Thales Global Tech Company Data Released by Lockbit Ransomware Gang
Thales Global Tech Company Data Released by Lockbit Ransomware GangThe Lockbit 3.0 ransomware group began leaking a 9.5 Gb archive file that is presumably stolen information...
It’s time. Delete your Twitter DMs
It’s time. Delete your Twitter DMsTwitter is in chaos. I'd rather delete my Direct Messages one-by-one than one day find that they are in the hands...
0 - CT 0 - CT - SOC - CSIRT Operations - Cyber Incidents & Attacks Notepad 0 - CT - SOC - CSIRT Operations - Malware & Ransomware Cyber Security News Grahamcluley
Healthcare sector warned of Venus ransomware attacks
Healthcare sector warned of Venus ransomware attacksHealthcare organisations in the United States are being warned to be on their guard once again, this time against a...