Latest News from THREAT POST
- Threat Actors Use Telegram to Spread ‘Eternity’ Malware-as-a-ServiceAn account promoting the project—which offers a range of threat activity from info-stealing to crypto-mining to ransomware as individual modules—has more than 500 subscribers.
- Malware Builder Leverages Discord WebhooksResearchers discovered a simple malware builder designed to steal credentials, then pinging them to Discord webhooks.
- You Can’t Eliminate Cyberattacks, So Focus on Reducing the Blast RadiusTony Lauro, director of security technology and strategy at Akamai, discusses reducing your company's attack surface and the "blast radius" of a potential attack.
Latest News from KREBSONSECURITY
- DEA Investigating Breach of Law Enforcement Data PortalThe U.S. Drug Enforcement Administration (DEA) says it is investigating reports that hackers gained unauthorized access to an agency portal that taps into 16 different federal law enforcement databases. KrebsOnSecurity has learned the alleged compromise is tied to a cybercrime and online harassment community that routinely impersonates police and government officials to harvest personal information […]
- Microsoft Patch Tuesday, May 2022 EditionMicrosoft today released updates to fix at least 74 separate security problems in its Windows operating systems and related software. This month's patch batch includes fixes for seven "critical" flaws, as well as a zero-day vulnerability that affects all supported versions of Windows.
Latest News from DARK READING
- How to Turn a Coke Can Into an Eavesdropping DeviceCyber-researchers are testing the bounds of optical attacks with a technique that allows attackers to recover voice audio from meetings if there are shiny, lightweight objects nearby.
- US Agrees to International Electronic Cybercrime Evidence SwapThe Budapest Convention is a multinational coalition that agrees to share electronic evidence across international jurisdictions to track down cybercriminals.
- CISO Shares Top Strategies to Communicate Security's Value to the BizIn a keynote address at Black Hat Asia in Singapore this week, CISO and former NASA security engineer George Do discussed his go-to model for measuring security effectiveness – and getting others in the organization to listen.
Latest News from SECURITY BOULEVARD
- Security BSides Sofia 2022 – Svetlomir Balevski’s ‘Application Security Into DevOps’Our thanks to Security BSides Sofia for publishing their Presenter’s Security BSides Sofia 2022 superb security videos on the organization’s’ YouTube channel. Permalink The post Security BSides Sofia 2022 – Svetlomir Balevski’s ‘Application Security Into DevOps’ appeared first on Security Boulevard.
- CommitStrip ‘Your Smart Home’s Achilles’ Heel’via the textual amusements of Thomas Gx, along with the Illustration talents of Etienne Issartia and superb translation skillset of Mark Nightingale - the creators of CommitStrip! Permalink The post CommitStrip ‘Your Smart Home’s Achilles’ Heel’ appeared first on Security Boulevard.
- Escaping Groundhog DayBefore digging into this post, I need to set some context. Friday, May 13, 2022 was my last day at my, now, former employer of nearly seven years. I’m not mentioning the company name1 because this post is not about them2. This post is about burnout and the importance of continuous monitoring and maintenance of... […]
Latest News from NAKED SECURITY
- Firefox out-of-band update to 100.0.1 – just in time for Pwn2Own?A new point-release of Firefox. Not unusual, but the timing of this one is interesting, with Pwn2Own coming up in a few days.
- He sold cracked passwords for a living – now he’s serving 4 years in prisonCrooks don't need a password for every user on your network to break in and wreak havoc. One could be enough...
- S3 Ep82: Bugs, bugs, bugs (and Colonial Pipeline again) [Podcast]Latest episode - lots to learn - plain English - fun with a serious side - listen now!
