- Slack, Docker, Kubernetes, and other applications that allow developers to collaborate have become the latest vector for software supply chain attacks.
- The ongoing ad fraud campaign can be traced back to 2019, but recently expanded into the iOS ecosystem, researchers say.
- The bug allows unauthenticated code execution on the company's firewall products, and CISA says it poses "significant risk" to federal government.
- Cybercriminals took control of enterprise Exchange Servers to spread large amounts of spam aimed at signing people up for bogus subscriptions.
- Manufacturers need to document a medical device's intended use and operational environment, as well as plan for misuse, such as a cyberattack.
- From creating a software bill of materials for applications your company uses to supporting open source projects and maintainers, businesses need to step up their efforts to help reduce risks.
- With the update, Microsoft adds features to allow easier deployment of zero-trust capabilities. Considering the 1.3 billion global Windows users, the support could make a difference.
- Protecting against risk is a shared responsibility that only gets more complex as you mix the different approaches of common cloud services.
- Researchers from SentinelLabs laid out what they know about the attackers and implored the researcher community for help in learning more about the shadowy group.
- Code could allow other attackers to develop copycat versions of the malware, but it could help researchers understand the threat better as well.
- Critical data on old disks always seems inaccessible if you really need it. But when you DON''T want it back, guess what happens…
- Latest episode – listen now! Learn why adopting 2FA isn't a reason to relax your other security precautions…
- Four one-on-one interviews with experts who are passionate about sharing their expertise with the community.
- Wondering how you'd handle a data breach report if the worst happened to you? Here's a useful example.
- Chester Wisniewski on what we can learn from Uber: "Just because a big company didn't have the security they should doesn't mean you can't."
- Uber is all over the news for a widely-publicised data breach. We help you answer the question, "How do I stop this happening to me?"
- Latest episode – listen now! Cosmic rockets, zero-days, spotting cybercrooks, and unlocking the DEADBOLT…
- Simple but super-sneaky – use a picture of a browser, and convince people it's real…
- Five updates, one upgrade, plus two zero-days. Patch your Macs, iPhones and iPads as soon as you can (again)…
- Heartfelt encouragement to embrace RFC 3339 – find out why!
Cyber Security: Awareness is the key 