Posted inVulnerabilities
From Cybersecurity Help – Apple, Atlassian ship patches for iOS, Confluence zero-days
Cisco has also released security updates to patch a backdoor in its CER software. Read More
Posted inPodcast
Smashing Security – Royal family attacked, keyless car theft, and a deepfake Tom Hanks
Is a deepfake Tom Hanks better than the real thing? Who has been attacking the British Royal Family's website, and why? And how can you protect your vehicle from the…
Posted inVulnerabilities
From Cybersecurity Help – Mobile operator Lyca Mobile confirms cyberattack
The cyberattack “impacted some national and international calling.” Read More
Posted inArticles
From Schneier on Security – Malicious Ads in Bing Chat
Malicious ads are creeping into chatbots. Read More
Posted inVulnerabilities
Recap of 0 Day Vulnerabilities from 2022
Zero-day vulnerabilities, in the realm of cybersecurity, refer to software or hardware vulnerabilities that are unknown to the vendor or developer and have not been patched or mitigated yet. These…
Posted inArticles
From Schneier on Security – Hacking Gas Pumps via Bluetooth
Turns out pumps at gas stations are controlled via Bluetooth, and that the connections are insecure. No details in the article, but it seems that it’s easy to take control…
Posted inPodcast
Darknet Diaries – 138: The Mimics of Punjab
This episode is about scammers in the Punjab region. Tarun (twitter.com/taruns21) comes on the show to tell us a story of what happened to him. Naomi Brockwell (twitter.com/naomibrockwell) makes an…
Posted inArticles
From Schneier on Security – NSA AI Security Center
The NSA is starting a new artificial intelligence security center: The AI security center’s establishment follows an NSA study that identified securing AI models from theft and sabotage as a…
Posted inArticles
From Krebs on Security – Don’t Let Zombie Zoom Links Drag You Down
Many organizations — including quite a few Fortune 500 firms — have exposed web links that allow anyone to initiate a Zoom video conference meeting as a valid employee. These…
Posted inNews
From Cybercrime Magazine – Hacking Before The Internet
Phone phreaks manipulated the world’s largest machine, and company – David Braue Melbourne, Australia – Sep. 30, 2023 For a generation of today’s youths raised on smartphones, multi megabit downloads…
Posted inArticles
From Krebs on Security – A Closer Look at the Snatch Data Ransom Group
Earlier this week, KrebsOnSecurity revealed that the darknet website for the Snatch ransomware group was leaking data about its users and the crime gang's internal operations. Today, we'll take a…
Posted inResearch
From Schneier on Security – Friday Squid Blogging: Protecting Cephalopods in Medical Research
From Nature: Cephalopods such as octopuses and squid could soon receive the same legal protection as mice and monkeys do when they are used in research. On 7 September, the…
Posted inResearch
From Cybercrime Magazine – Who’s Who In Ransomware
Gangs and strains to beware of in 2023 Sponsored by Conceal – Charlie Osborne, Cybercrime Magazine Editor-at-Large London – Sep. 29, 2023 Ransomware is one of the most virulent and…
Posted inArticles
From Graham Cluley – Three men found guilty of laundering $2.5 million in Target gift card tech support scam
Three Californian residents have been convicted of laundering millions of dollars tricked out of older adults who had fallen victim to government-imposter and tech support scams. Read more in my…
Posted inArticles
From Graham Cluley – ZeroFont trick makes users think that message has been scanned for threats
Attackers are using the "ZeroFont" technique to manipulate the preview of a message to suggest it had already been scanned for threats. Read more in my article in the Tripwire…