Weekend Update

A quick Saturday digest of cybersecurity news articles from other sources.


Cyber Attack Made Easy: ‘An 8th Grader Could Have Hacked’ Colonial Pipeline

Here is something you never want to hear about your company after a ransomware attack: “I mean, an eighth-grader could have hacked into that system.” Which company was this about about? Colonial Pipeline. The person speaking authored a $1.8 million information governance report for the ...

Continue Reading →
0

Weekend Update

A quick Saturday digest of cybersecurity news articles from other sources.


Some good news for a change.

3 Native American tribes use Nokia tech to bring 4G and 5G to remote towns in four states

Tribes in Oklahoma, North and South Dakota, and California will use hardware originally designed for private 5G networks.


FBI-DHS-CISA Joint Advisory on Russian Foreign Intelligence Service Cyber Operations

Original release date: April ...

Continue Reading →
0

Weekend Update

A quick Saturday digest of cybersecurity news articles from other sources.


3 ways the CI/CD approach to software has made work better for developers

The software industry has gotten much better at breaking big projects down into smaller chunks, according to one CTO.  (CISSP Domain 8)


When cryptography attacks – how TLS helps malware hide in plain sight

No IT technology feels quite as much of ...

Continue Reading →
0

Weekend Update

A quick Saturday digest of cybersecurity news articles from other sources.


Truly Unhackable? New Computer Chip Could Put an End to ‘Patch and Pray’

Does the term unhackable send you into fits of laughter? Or make you wave your hand as if to dismiss the possibility without needing a second thought? Before you do either of those things—again—consider this: a new computer chip remains unhacked after DARPA and ...

Continue Reading →
0

Weekend Update

A quick Saturday digest of cybersecurity news articles from other sources.


And the beat goes on. As researches discover more about the SolarWinds and Exchange exploits, the discovery of similar related attacks was inevitable.


FBI-CISA Joint Advisory on Exploitation of Fortinet FortiOS Vulnerabilities

Original release date: April 2, 2021

The Federal Bureau of Investigation (FBI) and CISA have released a Joint Cybersecurity Advisory (CSA) to warn ...

Continue Reading →
0

Weekend Update

A quick Saturday digest of cybersecurity news articles from other sources.

Many of today’s posts are from Bruce Schneier.


Serious Security: Mac “XcodeSpy” backdoor takes aim at Xcode devs

Just one tiny line of script in your Xcode project – and you’ve been pwned!

The hacked version of Xcode would add malware into iOS apps when they were compiled on an infected system, without infecting the source code of the ...

Continue Reading →
0

Weekend Update

A quick Saturday digest of cybersecurity news articles from other sources.


FBI-CISA Joint Advisory on Compromise of Microsoft Exchange Server

Original release date: March 10, 2021

CISA and the Federal Bureau of Investigation (FBI) have released a Joint Cybersecurity Advisory (CSA) to address recently disclosed vulnerabilities in Microsoft Exchange Server. CISA and FBI assess that adversaries could exploit these vulnerabilities to compromise networks, ...

Continue Reading →
0

Weekend Update

A quick Saturday digest of cybersecurity news articles from other sources.


Microsoft: SolarWinds Attack Took More Than 1,000 Engineers to Create

You may have missed this extremely interesting bit of data that ZDNet just published. “Microsoft reckons that the huge attack on security vendors and more took the combined power of at least 1,000 engineers to create.

“The months-long hacking campaign that affected US government agencies and cybersecurity vendors ...

Continue Reading →
0
Page 1 of 20 12345...»