Weekend Update Archives - Page 16 of 35

Weekend Update

A quick Saturday digest of cybersecurity news articles from other sources.

Cyber Attack Made Easy: ‘An 8th Grader Could Have Hacked’ Colonial Pipeline

Here is something you never want to hear about your company after a ransomware attack: “I mean, an eighth-grader could have hacked into that system.” Which company was this about about? Colonial Pipeline. The person speaking authored a $1.8 million information governance report for the company ...

Continue Reading →

15
MAY

0

Share

critical infrastructure, Linux, ransomware, Weekend Update

crypto-currency

Weekend Update

A quick Saturday digest of cybersecurity news articles from other sources.

Some good news for a change.

3 Native American tribes use Nokia tech to bring 4G and 5G to remote towns in four states

Tribes in Oklahoma, North and South Dakota, and California will use hardware originally designed for private 5G networks.

FBI-DHS-CISA Joint Advisory on Russian Foreign Intelligence Service Cyber Operations

Original release date: April ...

Continue Reading →

8
MAY

0

Share

Apple, CISSP, Domain 4, Domain 8, Linux, Weekend Update, Windows 10, wireless

credit bureaus, Embedded Systems, supply chain security

Weekend Update

A quick Saturday digest of cybersecurity news articles from other sources.

3 ways the CI/CD approach to software has made work better for developers

The software industry has gotten much better at breaking big projects down into smaller chunks, according to one CTO. (CISSP Domain 8)

When cryptography attacks – how TLS helps malware hide in plain sight

No IT technology feels quite as much of ...

Continue Reading →

1
MAY

0

Share

Android, CISSP, Domain 3, Domain 8, social engineering, Weekend Update

Weekend Update

A quick Saturday digest of cybersecurity news articles from other sources.

Today Is International Firefly Day

Calling all Browncoats! April 24 is International Watch Firefly Day (the other date is the series launch date of September 20). I just finished a fresh binge session myself. Since FOX cancelled Firefly during ...

Continue Reading →

24
APR

0

Share

Web Design, Weekend Update, WordPress

Exchange

Weekend Update

A quick Saturday digest of cybersecurity news articles from other sources.

Truly Unhackable? New Computer Chip Could Put an End to ‘Patch and Pray’

Does the term unhackable send you into fits of laughter? Or make you wave your hand as if to dismiss the possibility without needing a second thought? Before you do either of those things—again—consider this: a new computer chip remains unhacked after DARPA and ...

Continue Reading →

17
APR

0

Share

Computers and Internet, Dark Web, Internet of Things, Weekend Update

DNS

Weekend Update

A quick Saturday digest of cybersecurity news articles from other sources.

And the beat goes on. As researches discover more about the SolarWinds and Exchange exploits, the discovery of similar related attacks was inevitable.

FBI-CISA Joint Advisory on Exploitation of Fortinet FortiOS Vulnerabilities

Original release date: April 2, 2021

The Federal Bureau of Investigation (FBI) and CISA have released a Joint Cybersecurity Advisory (CSA) to warn ...

Continue Reading →

10
APR

0

Share

botnet, crypto-currency, cybersecurity, Internet of Things, Weekend Update

supply chain security

Weekend Update

A quick Saturday digest of cybersecurity news articles from other sources.

Many of today’s posts are from Bruce Schneier.

Serious Security: Mac “XcodeSpy” backdoor takes aim at Xcode devs

Just one tiny line of script in your Xcode project – and you’ve been pwned!

The hacked version of Xcode would add malware into iOS apps when they were compiled on an infected system, without infecting the source code of the ...

Continue Reading →

27
MAR

0

Share

Apple, Linux, Weekend Update

SolarWinds

Weekend Update

A quick Saturday digest of cybersecurity news articles from other sources.

Exchange Server Vulnerability Exploits Are ‘Widespread and Indiscriminate’

We’ve been tracking US-CERT and CISA alerts for years, and this is some of the most urgent language we’ve seen used. The Cybersecurity and Infrastructure Security Agency issued a special bulletin on February 8, titled, CISA Strongly Urges All Organizations to Immediately Address Microsoft Exchange Vulnerabilities. It warned: “As ...

Continue Reading →

20
MAR

0

Share

account hijacking, email, surveillance, Weekend Update

SolarWinds

Weekend Update

A quick Saturday digest of cybersecurity news articles from other sources.

FBI-CISA Joint Advisory on Compromise of Microsoft Exchange Server

Original release date: March 10, 2021

CISA and the Federal Bureau of Investigation (FBI) have released a Joint Cybersecurity Advisory (CSA) to address recently disclosed vulnerabilities in Microsoft Exchange Server. CISA and FBI assess that adversaries could exploit these vulnerabilities to compromise networks, ...

Continue Reading →

13
MAR

0

Share

critical infrastructure, cyberwar, ransomware, Weekend Update

China, cyber-espionage, ICS, SCADA, Zero Trust

Weekend Update

A quick Saturday digest of cybersecurity news articles from other sources.

Microsoft: SolarWinds Attack Took More Than 1,000 Engineers to Create

You may have missed this extremely interesting bit of data that ZDNet just published. “Microsoft reckons that the huge attack on security vendors and more took the combined power of at least 1,000 engineers to create.

“The months-long hacking campaign that affected US government agencies and cybersecurity vendors ...

Continue Reading →

6
MAR

0

Share

cybersecurity, law and policy, surveillance, Weekend Update

North Korea, SolarWinds