A quick Saturday digest of cybersecurity news articles from other sources.Are your network cables acting as undercover wireless transmitters? What can you do if they are?
A few posts from Bruce Schneier
[2021.09.22] The Washington Post reports that the FBI had a decryption ...
Continue Reading →A quick Saturday digest of cybersecurity news articles from other sources.Virtual private networks (VPNs) let remote employees securely connect to their companies’ networks. However, companies using Fortinet’s FortiOS SSL VPNs might be putting their networks at risk. Discover why using FortiOS SSL VPNs can be risky and what all companies need to do to ...
Continue Reading →A quick Saturday digest of cybersecurity news articles from other sources.Original release date: July 19, 2021
This advisory uses the MITRE Adversarial Tactics, Techniques, and Common Knowledge (ATT&CK®) framework, Version 9, and MITRE D3FEND™ framework, version 0.9.2-BETA-3. See the ATT&CK for Enterprise for all referenced threat actor tactics and techniques and the D3FEND framework for referenced defensive tactics ...
Continue Reading →A quick Saturday digest of cybersecurity news articles from other sources.Microsoft announces Windows 11, with a new design, Start menu, and more. A new version of Windows is officially on the way.
Storage-device maker advises customers to unplug My Book Lives ...
Continue Reading →
Ransomware is a form of malicious software designed to restrict users from accessing their computers or files until they pay a ransom to cybercriminals. Ransomware typically operates through the crypto virology mechanism by using symmetric as well as asymmetric encryption to prevent users from performing managed file transfers or accessing particular files or directories. The cybercriminals are using ransomware to lock files from being accessed assuming that the locked files ...
A quick Saturday digest of cybersecurity news articles from other sources.This week a lot of content from Schneier on Security.
Earlier this month, we learned that someone is disrupting the TrickBot botnet network. Read full story.
As we enter the silly season of another Presidential Election, and possibly because of a psychological condition that I am calling COVID Mania*, the government is once again making boneheaded moves to introduce and pass legislation that would allow the federal government and law enforcement agencies easier access to encrypted messages from criminal sources. This issue comes up every five to ten years. It seems that agencies such as the ...
A quick Saturday digest of cybersecurity news articles from other sources.Every 5 to 10 years, the government and law enforcement agencies try to pass a law that provides easy access or a “back door” to encryption keys because criminals use encryption and this makes arrest and prosecution harder. The problem is that anything that weakens encryption for criminals weakens ...
Continue Reading →A quick Saturday digest of cybersecurity news articles from other sources.A great post and a must read by Gavin Ashton. If you are tasked with Identity and Access Management, you at least have to read the Do the Basics section at the end of the article.
Maersk is the world’s largest integrated shipping and container logistics company. I was ...
Continue Reading →
The video conferencing application Zoom has had it’s share of security related problems lately. Any time they name a cyber-attack after you (Zoom bombing) it’s bound to be a bad thing. Zoom bombing, if you haven’t heard, is the video conference equivalent of photo bombing. Some miscreant sneaks into your meeting and takes over the screen to share some NSFW imagery or hate speech or cat videos. Zoom meeting videos have ...