CISO2CISO.COM & CYBER SECURITY GROUP

The Hacker News

The Hacker News
new-stealthy-bandit-stealer-targeting-web-browsers-and-cryptocurrency-wallets-–-source:thehackernews.com
New Stealthy Bandit Stealer Targeting Web Browsers and Cryptocurrency Wallets – Source:thehackernews.com
The Hacker News
critical-oauth-vulnerability-in-expo-framework-allows-account-hijacking-–-source:thehackernews.com
Critical OAuth Vulnerability in Expo Framework Allows Account Hijacking – Source:thehackernews.com
The Hacker News
Severe Flaw in Google Cloud’s Cloud SQL Service Exposed Confidential Data – Source:thehackernews.com
The Hacker News
Predator Android Spyware: Researchers Sound the Alarm on Alarming Capabilities – Source:thehackernews.com
The Hacker News
5 Must-Know Facts about 5G Network Security and Its Cloud Benefits – Source:thehackernews.com
The Hacker News
New COSMICENERGY Malware Exploits ICS Protocol to Sabotage Power Grids – Source:thehackernews.com
The Hacker News
Barracuda Warns of Zero-Day Exploited to Breach Email Security Gateway Appliances – Source:thehackernews.com
The Hacker News
dark-frost-botnet-launches-devastating-ddos-attacks-on-gaming-industry-–-source:thehackernews.com
Dark Frost Botnet Launches Devastating DDoS Attacks on Gaming Industry – Source:thehackernews.com
The Hacker News
Zyxel Issues Critical Security Patches for Firewall and VPN Products – Source:thehackernews.com

Threat Post Cyber Security News

threatpost
student-loan-breach-exposes-25m-records-–-source:-threatpost.com
Student Loan Breach Exposes 2.5M Records – Source: threatpost.com
threatpost
watering-hole-attacks-push-scanbox-keylogger-–-source:-threatpost.com
Watering Hole Attacks Push ScanBox Keylogger – Source: threatpost.com
threatpost
tentacles-of-‘0ktapus’-threat-group-victimize-130-firms-–-source:-threatpost.com
Tentacles of ‘0ktapus’ Threat Group Victimize 130 Firms – Source: threatpost.com
threatpost
ransomware-attacks-are-on-the-rise-–-source:-threatpost.com
Ransomware Attacks are on the Rise – Source: threatpost.com
threatpost
cybercriminals-are-selling-access-to-chinese-surveillance-cameras-–-source:-threatpost.com
Cybercriminals Are Selling Access to Chinese Surveillance Cameras – Source: threatpost.com
threatpost
twitter-whistleblower-complaint:-the-tl;dr-version-–-source:-threatpost.com
Twitter Whistleblower Complaint: The TL;DR Version – Source: threatpost.com
threatpost
firewall-bug-under-active-attack-triggers-cisa-warning-–-source:-threatpost.com
Firewall Bug Under Active Attack Triggers CISA Warning – Source: threatpost.com
threatpost
fake-reservation-links-prey-on-weary-travelers-–-source:-threatpost.com
Fake Reservation Links Prey on Weary Travelers – Source: threatpost.com
threatpost
iphone-users-urged-to-update-to-patch-2-zero-days-–-source:-threatpost.com
iPhone Users Urged to Update to Patch 2 Zero-Days – Source: threatpost.com

The Register News

The Register Security
Alien versus Predator? No, this Android spyware works together – Source: go.theregister.com
The Register Security
US govt pushes spyware to other countries? Senator Wyden would like a word – Source:...
The Register Security
blackbyte-ransomware-crew-lists-city-of-augusta-after-cyber-‘incident’-–-source:-gotheregister.com
BlackByte ransomware crew lists city of Augusta after cyber ‘incident’ – Source: go.theregister.com
The Register Security
It’s 2023 and Sri Lanka doesn’t have a cyber security authority – Source: go.theregister.com
The Register Security
Spotted: Suspected Russian malware designed to disrupt Euro, Asia energy grids – Source: go.theregister.com
The Register Security
So the FBI ‘persistently’ abused its snoop powers. What’s to worry about? – Source: go.theregister.com
The Register Security
Facial recog system used by Met Police shows racial bias at low thresholds – Source:...
The Register Security
five-eyes-and-microsoft-accuse-china-of-attacking-us-infrastructure-again-–-source:-gotheregister.com
Five Eyes and Microsoft accuse China of attacking US infrastructure again – Source: go.theregister.com
The Register Security
this-legit-android-app-turned-into-audio-snooping-malware-–-and-google-missed-it-–-source:-gotheregister.com
This legit Android app turned into audio-snooping malware – and Google missed it – Source:...

Graham Cluley Security Cyber News

grahamcluley.com
careless-it-security-worker-exploited-ransomware-attack-against-his-employer,-but-failed-to-cover-his-tracks-–-source:-wwwtripwire.com
Careless IT security worker exploited ransomware attack against his employer, but failed to cover his...
grahamcluley.com
Can zero trust be saved? – Source: grahamcluley.com
grahamcluley.com
Sorry scammer, I’m not cancelling my McAfee Antivirus subscription – Source: grahamcluley.com
grahamcluley.com
Smashing Security podcast #323: Botched Bitcoin blackmail, iSpoof, and Meta’s billion dollar data bungle –...
grahamcluley.com
83c0000b:-the-error-code-that-means-a-dodgy-software-update-bricked-your-hp-printer-–-source:-wwwbitdefender.com
83C0000B: The error code that means a dodgy software update bricked your HP printer –...
grahamcluley.com
suzuki-motorcycle-plant-shut-down-by-cyber-attack-–-source:-wwwbitdefender.com
Suzuki motorcycle plant shut down by cyber attack – Source: www.bitdefender.com
grahamcluley.com
m&s-and-diageo-pension-schemes-exposed-in-capita-hack-–-source:-grahamcluley.com
M&S and Diageo pension schemes exposed in Capita hack – Source: grahamcluley.com
grahamcluley.com
take-action-now-to-avoid-bianlian-ransomware-attacks,-us-government-warns-organisations-–-source:-wwwtripwire.com
Take action now to avoid BianLian ransomware attacks, US Government warns organisations – Source: www.tripwire.com
grahamcluley.com
smashing-security-podcast-#322:-when-you-buy-a-criminal’s-phone,-and-paying-for-social-media-scams-–-source:-grahamcluley.com
Smashing Security podcast #322: When you buy a criminal’s phone, and paying for social media...

Databreachtoday.com

Data Breach Today
openai-ceo-altman-‘blackmails’-eu-over-ai-regulation-–-source:-wwwdatabreachtoday.com
OpenAI CEO Altman ‘Blackmails’ EU Over AI Regulation – Source: www.databreachtoday.com
Data Breach Today
Capita Hack Fallout: Regulator Sees Breach Reports Surge – Source: www.databreachtoday.com
Data Breach Today
Iranian Hackers Deploy New Ransomware Against Israeli Firms – Source: www.databreachtoday.com
Data Breach Today
ISMG Editors: How Ukraine’s Cyber Defenders Prepped for War – Source: www.databreachtoday.com
Data Breach Today
mitigating-ot-security-risks:-focusing-on-solutions,-not-products-–-source:-wwwdatabreachtoday.com
Mitigating OT Security Risks: Focusing on Solutions, not Products – Source: www.databreachtoday.com
Data Breach Today
cyberark-ceo-touts-new-browser-that-secures-privileged-users-–-source:-wwwdatabreachtoday.com
CyberArk CEO Touts New Browser That Secures Privileged Users – Source: www.databreachtoday.com
Data Breach Today
mass-exploitation-of-zyxel-network-appliances-underway-–-source:-wwwdatabreachtoday.com
Mass Exploitation of Zyxel Network Appliances Underway – Source: www.databreachtoday.com
Data Breach Today
key-strategies-for-secure-access-to-private-apps-–-source:-wwwdatabreachtoday.com
Key Strategies for Secure Access to Private Apps – Source: www.databreachtoday.com
Data Breach Today
chinese-state-hacker-‘volt-typhoon’-targets-guam-and-us-–-source:-wwwdatabreachtoday.com
Chinese State Hacker ‘Volt Typhoon’ Targets Guam and US – Source: www.databreachtoday.com

SOC Prime Cyber Security News

socprime.com
chinese-state-sponsored-cyber-actor-detection:-joint-cybersecurity-advisory-(csa)-aa23-144a-sheds-light-on-stealty-activity-by-volt-typhoon-targeting-us-critical-infrastructure-–-source:-socprime.com
Chinese State-Sponsored Cyber Actor Detection: Joint Cybersecurity Advisory (CSA) AA23-144a Sheds Light on Stealty Activity...
socprime.com
soc-prime-to-present-at-the-11th-eu-mitre-att&ck-community-workshop-–-source:-socprime.com
SOC Prime to Present at the 11th EU MITRE ATT&CK® Community Workshop – Source: socprime.com
socprime.com
uac-0063-cyber-espionage-activity-detection:-hackers-target-organizations-in-ukraine,-kazakhstan,-kyrgyzstan,-mongolia,-izrael,-and-india-to-gather-intelligence-–-source:-socprime.com
UAC-0063 Cyber-Espionage Activity Detection: Hackers Target Organizations in Ukraine, Kazakhstan, Kyrgyzstan, Mongolia, Izrael, and India...
socprime.com
merdoor-malware-detection:-lancefly-apt-uses-a-stealthy-backdoor-in-long-running-attacks-against-organizations-in-south-and-southeast-asia-–-source:-socprime.com
Merdoor Malware Detection: Lancefly APT Uses a Stealthy Backdoor in Long-Running Attacks Against Organizations in...
socprime.com
soc-prime-threat-bounty-— -april-2023-results-–-source:-socprime.com
SOC Prime Threat Bounty —  April 2023 Results – Source: socprime.com
socprime.com
cve-2023-25717-detection:-new-malware-botnet-andoryubot-exploits-rce-flaw-in-the-ruckus-wireless-admin-panel-–-source:-socprime.com
CVE-2023-25717 Detection: New Malware Botnet AndoryuBot Exploits RCE Flaw in the Ruckus Wireless Admin Panel...
socprime.com
snake-malware-detection:-cyber-espionage-implant-leveraged-by-russia-affiliated-turla-apt-in-a-long-lasting-campaign-against-nato-countries-–-source:-socprime.com
Snake Malware Detection: Cyber-Espionage Implant Leveraged by russia-Affiliated Turla APT in a Long-Lasting Campaign Against...
socprime.com
detecting-abused-legitimate-tools-applied-by-hackers-in-the-human-operated-ransomware-attacks-–-source:-socprime.com
Detecting Abused Legitimate Tools Applied by Hackers in the Human-Operated Ransomware Attacks – Source: socprime.com
socprime.com
smokeloader-malware-detection:-uac-0006-group-reemerges-to-launch-phishing-attacks-against-ukraine-using-financial-subject-lures-–-source:-socprime.com
SmokeLoader Malware Detection: UAC-0006 Group Reemerges to Launch Phishing Attacks Against Ukraine Using Financial Subject...

Welive Cyber Security News

Welivesecurity.com
shedding-light-on-acecryptor-and-its-operation-–-source:-wwwwelivesecurity.com
Shedding light on AceCryptor and its operation – Source: www.welivesecurity.com
Welivesecurity.com
digital-security-for-the-self‑employed:-staying-safe-without-an-it-team-to-help-–-source:-wwwwelivesecurity.com
Digital security for the self‑employed: Staying safe without an IT team to help – Source:...
Welivesecurity.com
android-app-breaking-bad:-from-legitimate-screen-recording-to-file-exfiltration-within-a-year-–-source:-wwwwelivesecurity.com
Android app breaking bad: From legitimate screen recording to file exfiltration within a year –...
Welivesecurity.com
the-real-cost-of-a-free-lunch-–-week-in-security-with-tony-anscombe-–-source:-wwwwelivesecurity.com
The real cost of a free lunch – Week in security with Tony Anscombe –...
Welivesecurity.com
5-useful-search-engines-for-internet‑connected-devices-and-services-–-source:-wwwwelivesecurity.com
5 useful search engines for internet‑connected devices and services – Source: www.welivesecurity.com
Welivesecurity.com
meet-“ai”,-your-new-colleague:-could-it-expose-your-company’s-secrets?-–-source:-wwwwelivesecurity.com
Meet “AI”, your new colleague: could it expose your company’s secrets? – Source: www.welivesecurity.com
Welivesecurity.com
you-may-not-care-where-you-download-software-from,-but-malware-does-–-source:-wwwwelivesecurity.com
You may not care where you download software from, but malware does – Source: www.welivesecurity.com
Welivesecurity.com
key-findings-from-eset’s-new-apt-activity-report-–-week-in-security-with-tony-anscombe-–-source:-wwwwelivesecurity.com
Key findings from ESET’s new APT Activity Report – Week in security with Tony Anscombe...
Welivesecurity.com
why-you-need-parental-control-software-–-and-5-features-to-look-for-–-source:-wwwwelivesecurity.com
Why you need parental control software – and 5 features to look for – Source:...

Naked Security News

bust
s3-ep136:-navigating-a-manic-malware-maelstrom-–-source:-nakedsecuritysophos.com
S3 Ep136: Navigating a manic malware maelstrom – Source: nakedsecurity.sophos.com
bust
ransomware-tales:-the-mitm-attack-that-really-had-a-man-in-the-middle-–-source:-nakedsecuritysophos.com
Ransomware tales: The MitM attack that really had a Man in the Middle – Source:...
Malware
pypi-open-source-code-repository-deals-with-manic-malware-maelstrom-–-source:-nakedsecuritysophos.com
PyPI open-source code repository deals with manic malware maelstrom – Source: nakedsecurity.sophos.com
bust
phone-scamming-kingpin-gets-13-years-for-running-“ispoof”-service-–-source:-nakedsecuritysophos.com
Phone scamming kingpin gets 13 years for running “iSpoof” service – Source: nakedsecurity.sophos.com
Apple
apple’s-secret-is-out:-3-zero-days-fixed,-so-be-sure-to-patch-now!-–-source:-nakedsecuritysophos.com
Apple’s secret is out: 3 zero-days fixed, so be sure to patch now! – Source:...
naked security
s3-ep135:-sysadmin-by-day,-extortionist-by-night-–-source:-nakedsecuritysophos.com
S3 Ep135: Sysadmin by day, extortionist by night – Source: nakedsecurity.sophos.com
babuk
us-offers-$10m-bounty-for-russian-ransomware-suspect-outed-in-indictment-–-source:-nakedsecuritysophos.com
US offers $10m bounty for Russian ransomware suspect outed in indictment – Source: nakedsecurity.sophos.com
belkin
belkin-wemo-smart-plug-v2-–-the-buffer-overflow-that-won’t-be-patched-–-source:-nakedsecuritysophos.com
Belkin Wemo Smart Plug V2 – the buffer overflow that won’t be patched – Source:...
Clearview
zut-alors!-raclage-crapuleux!-clearview-ai-in-20%-more-trouble-in-france-–-source:-nakedsecuritysophos.com
Zut alors! Raclage crapuleux! Clearview AI in 20% more trouble in France – Source: nakedsecurity.sophos.com

Krebs on Security Cyber News

Krebs On Security
phishing-domains-tanked-after-meta-sued-freenom-–-source:-krebsonsecurity.com
Phishing Domains Tanked After Meta Sued Freenom – Source: krebsonsecurity.com
Krebs On Security
interview-with-a-crypto-scam-investment-spammer-–-source:-krebsonsecurity.com
Interview With a Crypto Scam Investment Spammer – Source: krebsonsecurity.com
Krebs On Security
russian-hacker-“wazawaka”-indicted-for-ransomware-–-source:-krebsonsecurity.com
Russian Hacker “Wazawaka” Indicted for Ransomware – Source: krebsonsecurity.com
Krebs On Security
re-victimization-from-police-auctioned-cell-phones-–-source:-krebsonsecurity.com
Re-Victimization from Police-Auctioned Cell Phones – Source: krebsonsecurity.com
Krebs On Security
microsoft-patch-tuesday,-may-2023-edition-–-source:-krebsonsecurity.com
Microsoft Patch Tuesday, May 2023 Edition – Source: krebsonsecurity.com
Krebs On Security
feds-take-down-13-more-ddos-for-hire-services-–-source:-krebsonsecurity.com
Feds Take Down 13 More DDoS-for-Hire Services – Source: krebsonsecurity.com
Krebs On Security
$10m-is-yours-if-you-can-get-this-guy-to-leave-russia-–-source:-krebsonsecurity.com
$10M Is Yours If You Can Get This Guy to Leave Russia – Source: krebsonsecurity.com
Krebs On Security
promising-jobs-at-the-us-postal-service,-‘us-job-services’-leaks-customer-data-–-source:-krebsonsecurity.com
Promising Jobs at the U.S. Postal Service, ‘US Job Services’ Leaks Customer Data – Source:...
Krebs On Security
many-public-salesforce-sites-are-leaking-private-data-–-source:-krebsonsecurity.com
Many Public Salesforce Sites are Leaking Private Data – Source: krebsonsecurity.com

Haxf4All Cyber Security News

Haxf4rall Security
SilentHound – Quietly Enumerate An Active Directory Domain Via LDAP Parsing Users, Admins, Groups, Etc.
Haxf4rall Security
ESP32 Marauder v0.9.12 releases: suite of WiFi/Bluetooth offensive and defensive tools for the ESP32
Haxf4rall Security
Three Sentenced in the UK for Selling Drugs on the Darkweb
Haxf4rall Security
CVE-2022-29154: Rsync client-side arbitrary file write vulnerability
Haxf4rall Security
ForceAdmin: Create infinite UAC prompts forcing a user to run as admin
Haxf4rall Security
Woman Heads to Prison for Hiring a "Hitman” on the Darkweb
Haxf4rall Security
Security Scorecards v4.5 releases: OSS Security Scorecards
Haxf4rall Security
Apache Tomcat Scanner: scan for Apache Tomcat server vulnerabilities
Haxf4rall Security
Kage – Graphical User Interface For Metasploit Meterpreter And Session Handler

Bleeping Computer Cybersecurity News

Bleeping Computer
the-week-in-ransomware-–-may-26th-2023-–-cities-under-attack-–-source:-wwwbleepingcomputer.com
The Week in Ransomware – May 26th 2023 – Cities Under Attack – Source: www.bleepingcomputer.com
Bleeping Computer
microsoft-defender-antivirus-gets-‘performance-mode’-for-dev-drives-–-source:-wwwbleepingcomputer.com
Microsoft Defender Antivirus gets ‘performance mode’ for Dev Drives – Source: www.bleepingcomputer.com
Bleeping Computer
us-govt-contractor-abb-confirms-ransomware-attack,-data-theft-–-source:-wwwbleepingcomputer.com
US govt contractor ABB confirms ransomware attack, data theft – Source: www.bleepingcomputer.com
Bleeping Computer
Emby shuts down user media servers hacked in recent attack – Source: www.bleepingcomputer.com
Bleeping Computer
Mozilla stops Firefox fullscreen VPN ads after user outrage – Source: www.bleepingcomputer.com
Bleeping Computer
BlackByte ransomware claims City of Augusta cyberattack – Source: www.bleepingcomputer.com
Bleeping Computer
windows-11-finally-gets-a-‘never-combine-taskbar-buttons’-mode-–-source:-wwwbleepingcomputer.com
Windows 11 finally gets a ‘never combine taskbar buttons’ mode – Source: www.bleepingcomputer.com
Bleeping Computer
predator:-looking-under-the-hood-of-intellexa’s-android-spyware-–-source:-wwwbleepingcomputer.com
Predator: Looking under the hood of Intellexa’s Android spyware – Source: www.bleepingcomputer.com
Bleeping Computer
microsoft-365-phishing-attacks-use-encrypted-rpmsg-messages-–-source:-wwwbleepingcomputer.com
Microsoft 365 phishing attacks use encrypted RPMSG messages – Source: www.bleepingcomputer.com

Info Security Magazine Cyber News

Infosecurity Magazine
New Russian-Linked Malware Poses “Immediate Threat” to Energy Grids – Source: www.infosecurity-magazine.com
Infosecurity Magazine
Romania’s Safetech Leans into UK Cybersecurity Market – Source: www.infosecurity-magazine.com
Infosecurity Magazine
advanced-phishing-attacks-surge-356%-in-2022-–-source:-wwwinfosecurity-magazine.com
Advanced Phishing Attacks Surge 356% in 2022 – Source: www.infosecurity-magazine.com
Infosecurity Magazine
expo-framework-api-flaw-reveals-user-data-in-online-services-–-source:-wwwinfosecurity-magazine.com
Expo Framework API Flaw Reveals User Data in Online Services – Source: www.infosecurity-magazine.com
Infosecurity Magazine
ncsc-warns-against-chinese-cyber-attacks-on-critical-infrastructure-–-source:-wwwinfosecurity-magazine.com
NCSC Warns Against Chinese Cyber Attacks on Critical Infrastructure – Source: www.infosecurity-magazine.com
Infosecurity Magazine
smbs-targeted-by-state-aligned-actors-for-financial-theft-and-supply-chain-attacks-–-source:-wwwinfosecurity-magazine.com
SMBs Targeted by State-Aligned Actors for Financial Theft and Supply Chain Attacks – Source: www.infosecurity-magazine.com
Infosecurity Magazine
ai-used-to-create-malware,-withsecure-observes-–-source:-wwwinfosecurity-magazine.com
AI Used to Create Malware, WithSecure Observes – Source: www.infosecurity-magazine.com
Infosecurity Magazine
lazarus-group-targeting-microsoft-web-servers-to-launch-espionage-malware-–-source:-wwwinfosecurity-magazine.com
Lazarus Group Targeting Microsoft Web Servers to Launch Espionage Malware – Source: www.infosecurity-magazine.com
Infosecurity Magazine
us-sanctions-north-korean-entities-training-expat-it-workers-in-russia,-china-and-laos-–-source:-wwwinfosecurity-magazine.com
US Sanctions North Korean Entities Training Expat IT Workers in Russia, China and Laos –...

Cyber Talk Cybersecurity News

Cyber Talk
Unprecedented security risks, electric vehicle chargers – Source: www.cybertalk.org
Cyber Talk
Safeguarding SMBs: Trends, challenges, best practices & smart security strategies – Source: www.cybertalk.org
Cyber Talk
‘volt-typhoon’-infiltrates-us-critical-infrastructure-organizations-–-source:-wwwcybertalk.org
‘Volt Typhoon’ infiltrates US critical infrastructure organizations – Source: www.cybertalk.org
Cyber Talk
c-suite-and-managers,-the-disconnect-around-cyber-risk-–-source:-wwwcybertalk.org
C-suite and managers, the disconnect around cyber risk – Source: www.cybertalk.org
Cyber Talk
an-ounce-of-prevention-is-worth-a-pound-of-cure-–-source:-wwwcybertalk.org
An ounce of prevention is worth a pound of cure – Source: www.cybertalk.org
Cyber Talk
healthcare-attacks-are-increasing:-why-zero-trust-will-prevent-care-disruptions-–-source:-wwwcybertalk.org
Healthcare attacks are increasing: Why zero trust will prevent care disruptions – Source: www.cybertalk.org
Cyber Talk
what-is-business-identity-theft-and-how-can-you-prevent-it?-–-source:-wwwcybertalk.org
What is business identity theft and how can you prevent it? – Source: www.cybertalk.org
Cyber Talk
why-are-we-still-talking-about-email-security?-–-source:-wwwcybertalk.org
Why are we still talking about email security? – Source: www.cybertalk.org
Cyber Talk
a-new-malware-threat-is-stealing-2fa-codes-and-passwords-–-source:-wwwcybertalk.org
A new malware threat is stealing 2FA codes and passwords – Source: www.cybertalk.org

Security on Tech Republic News

Security TechRepublic
How to use Google Smart Lock on iOS to lock down your Google Account –...
Security TechRepublic
GitLab announces AI-DevSecOps platform GitLab 16 – Source: www.techrepublic.com
Security TechRepublic
Augmenting Your Microsoft 365 EOP and MDO Email Security Infrastructure – Source: www.techrepublic.com
Security TechRepublic
From CEO Fraud to Vendor Fraud: The Shift to Financial Supply Chain Compromise – Source:...
Security TechRepublic
CISO Guide to Business Email Compromise – Source: www.techrepublic.com
Security TechRepublic
The Essential Guide to Cloud Email Security – Source: www.techrepublic.com
Security TechRepublic
launch-your-cybersecurity-career-with-this-ethical-hacking-bundle-–-source:-wwwtechrepublic.com
Launch your cybersecurity career with this ethical hacking bundle – Source: www.techrepublic.com
Security TechRepublic
Experts laud GDPR at five year milestone – Source: www.techrepublic.com
Security TechRepublic
Microsoft warns of Volt Typhoon, latest salvo in global cyberwar – Source: www.techrepublic.com

CSO Online Cybersecurity News

CSO - Online
Researchers find new ICS malware toolkit designed to cause electric power outages – Source: www.csoonline.com
CSO - Online
BrandPost: New report reveals tips for building a skilled cybersecurity workforce – Source: www.csoonline.com
CSO - Online
BrandPost: The state of operational technology and cybersecurity – Source: www.csoonline.com
CSO - Online
brandpost:-adding-the-operation-focus-to-ot-security-–-source:-wwwcsoonline.com
BrandPost: Adding the operation focus to OT security – Source: www.csoonline.com
CSO - Online
how-to-check-for-new-exploits-in-real-time?-vulncheck-has-an-answer-–-source:-wwwcsoonline.com
How to check for new exploits in real time? VulnCheck has an answer – Source:...
CSO - Online
inactive-accounts-pose-significant-account-takeover-security-risks-–-source:-wwwcsoonline.com
Inactive accounts pose significant account takeover security risks – Source: www.csoonline.com
CSO - Online
microsoft-links-attacks-on-american-critical-infrastructure-systems-to-china-–-source:-wwwcsoonline.com
Microsoft links attacks on American critical infrastructure systems to China – Source: www.csoonline.com
CSO - Online
6-ways-generative-ai-chatbots-and-llms-can-enhance-cybersecurity-–-source:-wwwcsoonline.com
6 ways generative AI chatbots and LLMs can enhance cybersecurity – Source: www.csoonline.com
CSO - Online
attributes-of-a-mature-cyber-threat-intelligence-program-–-source:-wwwcsoonline.com
Attributes of a mature cyber-threat intelligence program – Source: www.csoonline.com

Schneier on Security Cyber News

Schneier on Security
Friday Squid Blogging: Online Cephalopod Course – Source: www.schneier.com
Schneier on Security
Expeditionary Cyberspace Operations – Source: www.schneier.com
Schneier on Security
on-the-poisoning-of-llms-–-source:-wwwschneier.com
On the Poisoning of LLMs – Source: www.schneier.com
Schneier on Security
indiana,-iowa,-and-tennessee-pass-comprehensive-privacy-laws-–-source:-wwwschneier.com
Indiana, Iowa, and Tennessee Pass Comprehensive Privacy Laws – Source: www.schneier.com
Schneier on Security
credible-handwriting-machine-–-source:-wwwschneier.com
Credible Handwriting Machine – Source: www.schneier.com
Schneier on Security
google-is-not-deleting-old-youtube-videos-–-source:-wwwschneier.com
Google Is Not Deleting Old YouTube Videos – Source: www.schneier.com
Schneier on Security
friday-squid-blogging:-peruvian-squid-fishing-regulation-drives-chinese-fleets-away-–-source:-wwwschneier.com
Friday Squid Blogging: Peruvian Squid-Fishing Regulation Drives Chinese Fleets Away – Source: www.schneier.com
Schneier on Security
Security Risks of New .zip and .mov Domains – Source: www.schneier.com
Schneier on Security
microsoft-secure-boot-bug-–-source:-wwwschneier.com
Microsoft Secure Boot Bug – Source: www.schneier.com

The Last Watchdog Cybersecurity News

The Last Watchdog
rsac-fireside-chat:-uptycs-emulates-google,-akamai-to-protect-cloud-native-apps-and-endpoints-–-source:-wwwlastwatchdog.com
RSAC Fireside Chat: Uptycs emulates Google, Akamai to protect cloud-native apps and endpoints – Source:...
The Last Watchdog
guest-essay:-a-primer-on-nist-207a-—-guidance-for-adding-ztna-to-cloud-native-platforms-–-source:-wwwlastwatchdog.com
GUEST ESSAY: A primer on NIST 207A — guidance for adding ZTNA to cloud-native platforms...
The Last Watchdog
guest-essay:-a-roadmap-for-wisely-tightening-cybersecurity-in-the-modern-workplace-–-source:-wwwlastwatchdog.com
GUEST ESSAY: A roadmap for wisely tightening cybersecurity in the modern workplace – Source: www.lastwatchdog.com
The Last Watchdog
rsac-fireside-chat:-the-need-to-stop-mobile-apps-from-exposing-api-keys,-user-credentials-in-runtime-–-source:-wwwlastwatchdog.com
RSAC Fireside Chat: The need to stop mobile apps from exposing API keys, user credentials...
The Last Watchdog
rsac-fireside-chat:-counteracting-putin’s-weaponizing-of-ransomware-—-with-containment-–-source:-wwwlastwatchdog.com
RSAC Fireside Chat: Counteracting Putin’s weaponizing of ransomware — with containment – Source: www.lastwatchdog.com
The Last Watchdog
rsac-fireside-chat:-upgrading-containment-to-counter-putin’s-weaponizing-of-ransomware-–-source:-wwwlastwatchdog.com
RSAC Fireside Chat: Upgrading containment to counter Putin’s weaponizing of ransomware – Source: www.lastwatchdog.com
The Last Watchdog
rsac-fireside-chat:-deploying-hollywood-tested-content-protection-to-improve-mobile-app-security-–-source:-wwwlastwatchdog.com
RSAC Fireside Chat: Deploying Hollywood-tested content protection to improve mobile app security – Source: www.lastwatchdog.com
The Last Watchdog
rsac-fireside-chat:-achieving-‘outcome-based-security’-by-blending-cybersecurity,-business-goals-–-source:-wwwlastwatchdog.com
RSAC Fireside Chat: Achieving ‘outcome-based security’ by blending cybersecurity, business goals – Source: www.lastwatchdog.com
The Last Watchdog
rsac-fireside-chat:-how-a-well-placed-‘ngwaf’-can-staunch-the-flow-of-web,-mobile-app-attacks-–-source:-wwwlastwatchdog.com
RSAC Fireside Chat: How a well-placed ‘NGWAF’ can staunch the flow of web, mobile app...

Security Boulevard News

Security Boulevard
cosmicenergy:-‘russian’-threat-to-power-grids-ics/ot-–-source:-securityboulevard.com
COSMICENERGY: ‘Russian’ Threat to Power Grids ICS/OT – Source: securityboulevard.com
Security Boulevard
Revolutionize Zero-Trust Security With a Converged Identity Platform – Source: securityboulevard.com
Security Boulevard
Digital Trust Digest: This Week’s Must-Know News – Source: securityboulevard.com
Security Boulevard
Revolutionizing DMARC Solutions: Permission Management – Source: securityboulevard.com
Security Boulevard
Consumers Wary of Biometric Security – Source: securityboulevard.com
Security Boulevard
How to Scan Zip Files for Malware Threats – Source: securityboulevard.com
Security Boulevard
Connecting the dots: Development + business risk + due diligence – Source: securityboulevard.com
Security Boulevard
Federal Appellate Court Approves ‘Pretext’ Border Search – Source: securityboulevard.com
Security Boulevard
Expeditionary Cyberspace Operations – Source: securityboulevard.com

McAfee Security News

McAfee
From Workshops to Leader Panels: A Recap of Women’s History Month at McAfee
McAfee
Rising Trend of OneNote Documents for Malware delivery
McAfee
Digital Spring Cleaning: Seven Steps for Faster, Safer Devices
McAfee
How You May be Sharing Private Information Online Without Even Knowing
McAfee
What Parents Need To Know About TikTok’s New Screen Time Limits
McAfee
Protecting Your Parents from Scams with Our New Family Plans
McAfee
Mobile Myths: Can My Apple Devices Get Hacked?
McAfee
Spot and Remove Viruses from Your Android Phone
McAfee
4 Mobile Malware Threats You Can’t Even See

The Guardian Cybersecurity News

The Guardian UK
real-estate-agents-push-back-against-australian-privacy-law-changes-designed-to-protect-personal-data-–-source:-wwwtheguardian.com
Real estate agents push back against Australian privacy law changes designed to protect personal data...
The Guardian UK
drug-and-alcohol-tests-of-graduate-paramedics-revealed-in-ambulance-victoria-data-breach-–-source:-wwwtheguardian.com
Drug and alcohol tests of graduate paramedics revealed in Ambulance Victoria data breach – Source:...
The Guardian UK
twitter-admits-to-‘security-incident’-involving-circles-tweets-–-source:-wwwtheguardian.com
Twitter admits to ‘security incident’ involving Circles tweets – Source: www.theguardian.com
The Guardian UK
uk-competition-watchdog-launches-review-of-ai-market-–-source:-wwwtheguardian.com
UK competition watchdog launches review of AI market – Source: www.theguardian.com
The Guardian UK
labor-to-appoint-dedicated-privacy-commissioner-to-combat-data-breaches-–-source:-wwwtheguardian.com
Labor to appoint dedicated privacy commissioner to combat data breaches – Source: www.theguardian.com
The Guardian UK
australian-law-firm-hwl-ebsworth-hit-by-russian-linked-ransomware-attack-–-source:-wwwtheguardian.com
Australian law firm HWL Ebsworth hit by Russian-linked ransomware attack – Source: www.theguardian.com
The Guardian UK
australians-report-record-$3.1bn-losses-to-scams,-with-real-amount-even-higher,-accc-says
Australians report record $3.1bn losses to scams, with real amount even higher, ACCC says
The Guardian UK
labour-glitch-put-voting-intentions-data-of-millions-at-risk
Labour glitch put voting intentions data of millions at risk
The Guardian UK
former-tsb-chief-information-officer-fined-81,000-over-it-meltdown-in-2018
Former TSB chief information officer fined £81,000 over IT meltdown in 2018

CSH Cyber Security Hub Cybersecurity News

CSH - Cyber Security Hub
when-will-ai-be-fully-integrated-into-cyber-security?-–-source:-wwwcshub.com
When will AI be fully integrated into cyber security? – Source: www.cshub.com
CSH - Cyber Security Hub
the-role-of-api-inventory-in-sbom-and-cyber-security-–-source:-wwwcshub.com
The role of API inventory in SBOM and cyber security – Source: www.cshub.com
CSH - Cyber Security Hub
have-your-say:-the-global-state-of-cyber-security-–-source:-wwwcshub.com
Have your say: the global state of cyber security – Source: www.cshub.com
CSH - Cyber Security Hub
the-ultimate-guide-to-malware-–-source:-wwwcshub.com
The ultimate guide to malware – Source: www.cshub.com
CSH - Cyber Security Hub
we-are-less-than-a-year-away-from-a-cyber-attack-credited-to-chatgpt-–-source:-wwwcshub.com
We are less than a year away from a cyber attack credited to ChatGPT –...
CSH - Cyber Security Hub
the-benefits-of-automating-enterprise-cyber-security-–-source:-wwwcshub.com
The benefits of automating enterprise cyber security – Source: www.cshub.com
CSH - Cyber Security Hub
what-is-business-email-compromise?-–-source:-wwwcshub.com
What is business email compromise? – Source: www.cshub.com
CSH - Cyber Security Hub
the-dangerous-vulnerabilities-caused-by-weak-email-security-–-source:-wwwcshub.com
The dangerous vulnerabilities caused by weak email security – Source: www.cshub.com
CSH CYBER SECURITY HUB
IOTW: Latitude Financial data breach affects 14 million people

Heimdal Security Cyber News

HeimdalSecurity.com
What Is ZTNA? Zero Trust Network Access Explained. – Source: heimdalsecurity.com
HeimdalSecurity.com
CosmicEnergy: The New Russian-Linked Malware Targets Industrial System – Source: heimdalsecurity.com
HeimdalSecurity.com
Buhti Ransomware: Blacktail’s Newest Operation Affects Multiple Countries – Source: heimdalsecurity.com
HeimdalSecurity.com
Heimdal®’s Threat Prevention Endpoint Wins ‘Cloud-Based Solution of the Year’ at the Network Computing Awards...
HeimdalSecurity.com
apria-loses-financial-data-of-nearly-two-million-customers-due-to-cyberattack-–-source:-heimdalsecurity.com
Apria Loses Financial Data of Nearly Two Million Customers Due to Cyberattack – Source: heimdalsecurity.com
HeimdalSecurity.com
breach-alert!-rheinmetall-ag-confirms-being-hit-by-blackbasta-ransomware-attack-–-source:-heimdalsecurity.com
Breach Alert! Rheinmetall AG Confirms Being Hit by BlackBasta Ransomware Attack – Source: heimdalsecurity.com
HeimdalSecurity.com
almost-300k-people-affected-by-ransomware-attack-on-dish-network-–-source:-heimdalsecurity.com
Almost 300k People Affected by Ransomware Attack on Dish Network – Source: heimdalsecurity.com
HeimdalSecurity.com
the-royal-gang-is-developing-its-own-malware-loader-–-source:-heimdalsecurity.com
The Royal Gang Is Developing Its Own Malware Loader – Source: heimdalsecurity.com
HeimdalSecurity.com
iam-driven-biometrics:-the-security-issues-with-biometric-identity-and-access-management-–-source:-heimdalsecurity.com
IAM-Driven Biometrics: The Security Issues with Biometric Identity and Access Management – Source: heimdalsecurity.com

Security affairs Cyber News

SecurityAffairs.com
New PowerExchange Backdoor linked to an Iranian APT group – Source: securityaffairs.com
SecurityAffairs.com
Dark Frost Botnet targets the gaming sector with powerful DDoS – Source: securityaffairs.com
SecurityAffairs.com
New CosmicEnergy ICS malware threatens energy grid assets – Source: securityaffairs.com
SecurityAffairs.com
D-Link fixes two critical flaws in D-View 8 network management suite – Source: securityaffairs.com
SecurityAffairs.com
Zyxel firewall and VPN devices affected by critical flaws – Source: securityaffairs.com
SecurityAffairs.com
China-linked APT Volt Typhoon targets critical infrastructure organizations – Source: securityaffairs.com
SecurityAffairs.com
North Korea-linked Lazarus APT targets Microsoft IIS servers to deploy malware – Source: securityaffairs.com
SecurityAffairs.com
Iran-linked Tortoiseshell APT behind watering hole attacks on shipping and logistics Israeli websites – Source:...
SecurityAffairs.com
barracuda-email-security-gateway-(esg)-hacked-via-zero-day-bug-–-source:-securityaffairs.com
Barracuda Email Security Gateway (ESG) hacked via zero-day bug – Source: securityaffairs.com

Helpnet Security Cyber News

help net security
keysight-e5081a-ena-x-produces-error-vector-magnitude-measurements-–-source:-wwwhelpnetsecurity.com
Keysight E5081A ENA-X produces error vector magnitude measurements – Source: www.helpnetsecurity.com
help net security
Edgewater Wireless launches MLX 488 WiFi7 Spectrum Slicing platform – Source: www.helpnetsecurity.com
help net security
Hopr raises $500K to accelerate product-led go-to-market strategy – Source: www.helpnetsecurity.com
help net security
Coalesce Partner Program helps automate the modern data stack – Source: www.helpnetsecurity.com
help net security
Cognigy and Black Box partnership to accelerate deployment of conversational AI – Source: www.helpnetsecurity.com
help net security
Phishers use encrypted file attachments to steal Microsoft 365 account credentials – Source: www.helpnetsecurity.com
help net security
New Buhti ransomware uses leaked payloads and public exploits – Source: www.helpnetsecurity.com
help net security
New infosec products of the week: May 26, 2023 – Source: www.helpnetsecurity.com
help net security
Threat actors exploit new channels for advanced phishing attacks – Source: www.helpnetsecurity.com

Cisco Security Blog Cyber News

Cisco Security Blog
Cisco Event Response: March 2023 Semiannual Cisco IOS and IOS XE Software Security Advisory Bundled...
Cisco Security Blog
Cisco Event Response: March 2023 Semiannual Cisco IOS XR Software Security Advisory Bundled Publication
Cisco Security Blog
Cisco Event Response: February 2023 Semiannual Cisco FXOS and NX-OS Software Security Advisory Bundled Publication
Cisco Security Blog
Cisco Event Response: September 2022 Semiannual Cisco IOS XR Software Security Advisory Bundled Publication
Cisco Security Blog
Cisco Event Response: September 2022 Semiannual Cisco IOS and IOS XE Software Security Advisory Bundled...
Cisco Security Blog
Cisco Event Response: November 2022 Semiannual Cisco ASA, FMC, and FTD Software Security Advisory Bundled...
Cisco Security Blog
Cisco Event Response: November 2022 Semiannual Cisco ASA, FMC, and FTD Software Security Advisory Bundled...
Cisco Security Blog
Cisco Event Response: September 2022 Semiannual Cisco IOS and IOS XE Software Security Advisory Bundled...
Cisco Security Blog
Cisco Event Response: September 2022 Semiannual Cisco IOS XR Software Security Advisory Bundled Publication

Top Recommended Posts

Telegram – How a Messenger Turned into a Cybercrime Ecosystem by 2023 by Kela Cybercrime...
Microsoft Zero Trust Maturity Model
CIS Software Supply Chain Security Guide by Center for Internet Security (CIS)
Chemical Sector Cybersecurity – Framework Implementation Guidance by CISA
Hacking Tools Cheat Sheet by Compass Security
Threat Hunting Survival Guide by Microsoft Security Experts
Security Protocols – SSL vs TLS – ALL YOU NEED TO KNOW.
Common TTPs of modern ransomware groups by Kaspersky Crimeware
Threat Hunting Introduction by Joas Antonio
Cisco Talos shares insights related to recent cyber attack on Cisco
Cybersecurity for SCADA Systems by William T. Shaw
10 WAYS ASSET VISIBILITY BUILDS THE FOUNDATION FOR OT CYBERSECURITY – KNOWING THE DATA YOU...
Master Cybersecurity with Eudureka – Getting Started with Cybersecurity
The Security Intelligence Handbook – How to Disrupt Adversaries and Reduce Risk with Security Intelligence...
How Can We Structure Cybersecurity Teams To Better Integrate Security In Agile At Scale?
7 CEO CYBERSECURITY ACTIONS – START WORKING ON IT TODAY , DON´T WAIT !!!
CROWDSTRIKE 2022 Global Threat Report by George Kurtz
2022 Global Digital Trust Insights – The C-suite guide to simplifyng for cyber readiness today...
2023 RISK IN FOCUS – Hot topics for internal auditors by ECIIA – VUCA context...
Building a cyber resilience strategy for a geopolitically unstable world
A SANS 2021 survey – Security operations center
THE TREATH REPORT SUMMER 2022 by Trelix
Microsoft 365 and the NIST Cybersecurity Framework
Building an Effective Cyber Security Strategy in four parts approach by Silent Breach
Malware and Vulnerability Trends Report H1 2022 by Recorded Future
HUNTPEDIA – Your Threat Hunting Knowledge Compendium by sqrrl
Hack the Cybersecurity Interview – A complete Interview Preparation Guide for jumpstarting your cybersecurity career...
You are probably doing DevSecOps Wrong by Practical DevSecOps – DevSecOps can seem like a...
MANDIANT – M-Trends 2023 – Mandiant Special Report
How to Recover From a Ransomware Attack by Gartner
5G Cybersecurity – Telecom Cybersecurity – Decoding the ecosystem and its vulnerabilities by SecurityGen –...
A Complete Guide to Implementing DevSecOps in AWS by aspire
A Brief Guide to Secure Multi Cloud by SPLUNK
Windows Ransomware Detection and Protection – Securing Windows endpoints , the cloud and infrastructure using...
Digest of Cyber Organized Crime by UNODC – United Nations Office on Drugs and Crime
Global Cybersecurity Outlook 2023 Insight Report by WEF – World Economic Forum in collaboration with...
2022 VEEAM Ransomware Trends Report
A Complete Guide to Cybersecurity Risk Management – Learn the ins and outs of risk...
Top 10 Open Source Security Testing Tools for Pentesters by Uendi Hoxha
Presentación “ModoSOC in Real Life” por Marcos Jaimovich en SEGURINFO Chile 2022.
Cybersecurity Resources and References Guide by U.S. Department of Defense
40 Methods for Privilege Escalation P1 by Hadess
Windows 11 Security Book – Powerful security from chip to cloud – Built with zero-trust...
How to design your Security Operations Center (SOC) to work smarter, not harder.
The RED REPORT 2023 – The Top 10 Most Prevalent MITRE ATT&ACK Techniques Used by...
The evolution of Cyber Hunt Processes from IOCs to TTPs by HHS
Secure Software Development Lifecycle Fundamentals by Codrut Andrei
Practical Guide for CSIRTs by OAS – A Sustainable Business Model.
A CISOs Guide to Defender Alignment by exabean
Cyber Risk and CFOs – Over-Confidence is Costly – 2022 Edition by KROLL
SANS Faculty Cybersecurity Free Tools – SANS Instructors have built more than 150 open source...
NCSC Cyber Security for Small Business “SMEs” Guide.
The evolution of Cyber Hunt Processes from IOCs to TTPs by HHS
RDP Penetration Testing by IGNITE Technologies
Malware Analysis Techniques – Tricks for the triage of adversarial software by Dylan Barker –...
How Can We Structure Cybersecurity Teams To Better Integrate Security In Agile At Scale?
Better Cybersecurity Metrics – SOC Metrics – Threat Hunting Metrics – Cyber Threat Intelligence (CTI)...
2022 ThreatLabz Research Team – State of Ransomware Report by Zscaler
CYBER ESSENTIALS STARTER KIT – The Basics for Building a Culture of Cyber Readiness –...
New to Cyber Field Manaul – The Ultimate Guide to Getting Into Cybersecurity by SANS...
NCSC Cyber Security for Small Business “SMEs” Guide.
The Pentester Blueprint – a Guide to Becoming a Pentester
DeepFakes Attacks – Facing reality Law enforcement and the challenge of deepfakes by EUROPOL
Blueprint for Ransomware Defense – An Action Plan for Ransomware Mitigation , Response and Recovery...
Industrial Cybersecurity USB Threath Report 2022 – Threats designed for USB exploitation rise to 52%....
ChatGPT Security Risks -A Guide for Cyber Security Professionals by Cybertalk.org
CYBER RESILIENCE ACT – New EU cybersecurity rules ensure more secure hardware and software products...
2022 Microsoft Vulnerabilities Report by BeyondTrust (you must read).
Blue Team Perspective & Red Team Tools by Black Hills Information Security – BHinfoSecurity
The Transformational CISOs Guide to Security Orchestration, Automation and Response – How giving security teams...
Awesome OSINT(Open-Source Intelligence) – Best curated list of amazingly awesome open source intelligence tools and...
81 Siem Very important Use Cases for your SOC by SPLUNK
Checkpoint Cyber Attack Trend 2022 Mid Year Report by Check Point Research
Director´s Handbook on CYBER-RISK OVERSIGHT by NACD – Internet Security Alliance
Ninjio´s Cyber Hygiene Checklist – Level Up Your Cybersecurity
CROWDSTRIKE 2022 Global Threat Report by George Kurtz
Microsoft Entra – The Comprensive Guide to Secure Azure AD & User Identities by Mohamed...
Threat Intel – Threat Intelligence JSSLoader – the shellcode edition
How to Build a Security Operation Center in Budget by AT&T Cybersecurity
The Unified Kill Chain by Paul Pols
KEEPING YOUR EMAIL SECURE – WHO DOES IT BEST ? A Especial analysis by Checkpoint.
The State of API Security Q1 2022 Report from Salt Labs
Cybersecurity Talent Crisis Today and Tomorrow by Codrut Andrei
List Of Top Penetration Testing Tools by Hacker Combat.
Securing the cloud by design and by Default by NCSC.GOV.UK – To reduce data breaches...
Chemical Sector Cybersecurity – Framework Implementation Guidance by CISA
Best vendor agnostic SIEM for SOCs solution implementation guide by Info-Tech Research Group
Azure DevOps Security Checklist by OKAN YILDIZ – Securedebug
Cybersecurity Risk Report 2023 by RiskLens
Security Guidance for Critical Areas of Focus in Cloud Computing v4.0 by CSA Cloud Security...
The Global Risks Report 2023 – Insight Report – 18th Edition by World Economic Forum...
The “Sand Clock” Model of Cybersecurity by Javier Stransky
OWASP Top 10 2021 (DRAFT FOR PEER REVIEW) What´s New!!
How to design your Security Operations Center (SOC) to work smarter, not harder.
Microsoft 365 Enterprise – Security Assessment Playbook – A field guide and toolkit for assessing...