A quick Saturday digest of cybersecurity news articles from other sources.
APR
A quick Saturday digest of cybersecurity news articles from other sources. 250th edition
It is nearly five years since I started curating this weekly Saturday cybersecurity news round-up. I hope you are finding this column useful.
“Change Password”
[2022.03.17] Oops: – Instead of telling you when it’s safe to cross the street, the walk signs in Crystal City, VA are just repeating ‘CHANGE PASSWORD.’ Something’s gone ...
Continue Reading →APR
A quick Saturday digest of cybersecurity news articles from other sources.
Guidance on Sharing Cyber Incident Information
Original release date: April 7, 2022
CISA’s Sharing Cyber Event Information Fact Sheet provides our stakeholders with clear guidance and information about what to share, who should share, and how to share information about unusual cyber incidents or activity.
CISA uses this information from partners to build a common understanding ...
Continue Reading →APR
A quick Saturday digest of cybersecurity news articles from other sources.
FCC adds Kaspersky, Chinese companies to list of potential threats to national security
The FCC has listed the Russian cybersecurity company and a pair of Chinese telecommunications businesses to its list of potential threats.
CISA Improves Email Notifications
Great news! We have completed improvements to our email notifications, consolidating multiple topics into a more streamlined product. These new ...
Continue Reading →APR
A quick Saturday digest of cybersecurity news articles from other sources.
You can’t keep quiet when you’re hacked anymore
If you try to hide that your business has been hacked or you’ve paid ransomware, the Cybersecurity and Infrastructure Security Agency would like a word with you.
One of the dirty little secrets of many businesses, perhaps even most, is that far more of them than ever admit to it ...
Continue Reading →APR
A quick Saturday digest of cybersecurity news articles from other sources.
Chinese APT Scarab Targets Ukraine
A report on Chinese nation-state cyber operations targeting Ukraine in support of the Russian invasion.
- Ukraine CERT (CERT-UA) has released new details on UAC-0026, which SentinelLabs confirms is associated with the suspected Chinese threat actor known as Scarab.
This detailed report includes TTPs and IOCs of this operation,
That QR ...
Continue Reading →MAR
A quick Saturday digest of cybersecurity news articles from other sources.
CHANGES TO THE CISSP EXAM LENGTH COMING SOON
Beginning June 1, 2022, additional pretest items and time will be added to the CISSP exam for the Computerized Adaptive Testing (CAT) format.The current CISSP CAT exam contains 25 pretest (unscored) items. The addition of 25 more items will bring the total count to ...
MAR
A quick Saturday digest of cybersecurity news articles from other sources.
NSA Releases Network Infrastructure Security Guidance
Original release date: March 3, 2022
The National Security Agency (NSA) has released a new Cybersecurity Technical Report (CTR): Network Infrastructure Security Guidance. The report captures best practices based on the depth and breadth of experience in supporting customers and responding to threats. Recommendations include perimeter and internal network ...
Continue Reading →MAR
A quick Saturday digest of cybersecurity news articles from other sources.
Broadcom Software Discloses APT Actors Deploying Daxin Malware in Global Espionage Campaign
Original release date: February 28, 2022
Broadcom Software—an industry member of CISA’s Joint Cyber Defense Collaborative (JCDC)—uncovers an advanced persistent threat (APT) campaign against select governments and other critical infrastructure targets in a publication titled Daxin: Stealthy Backdoor Designed ...
Continue Reading →MAR
A quick Saturday digest of cybersecurity news articles from other sources. Bruce Schneier edition
Protect Your Website from Russian Cyber Attacks
From WordFence
Unfortunately, Russia has commenced an invasion of Ukraine . Our team has entered a higher state of vigilance. A few minutes ago, I published a blog post describing what we’re doing to ensure ...
Continue Reading →FEB