Notes on the fall of Afghanistan, with its cyber and kinetic implications. US State...
Notes on the fall of Afghanistan, with its cyber and kinetic implications. US State Department hack reported. ShinyHunters resurface. Further incentive to patch Microsoft Exchange Server.
The Taliban consolidates control...
Consequence of the Taliban victory for influence operations and information security. Privateering gangs described....
Consequence of the Taliban victory for influence operations and information security. Privateering gangs described. Data exposures, data compromises.
Al Qaeda online sources cheer the Taliban’s ascendancy. The new rulers of...
Cyberespionage follows South Asian conflict. LockBit’s $50 million demand. Insider risk. Trend Micro warns...
Cyberespionage follows South Asian conflict. LockBit’s $50 million demand. Insider risk. Trend Micro warns unpatched Apex is under attack. PrintNightmare persists. Google and Apple on privacy.
ReverseRat is back and...
The source of Kaseya’s REvil key remains unknown. Cyber incident disrupts port operations at...
The source of Kaseya’s REvil key remains unknown. Cyber incident disrupts port operations at Cape Town and Durban. Updates on the Pegasus Project. And a guilty plea in a...
Phishing for those who fear Pegasus. ChamelGang APT active against multiple countries. Problems with...
Phishing for those who fear Pegasus. ChamelGang APT active against multiple countries. Problems with a ransomware decryptor. Controversial proofs-of-concept. And a death blamed on ransomware.
A malware campaign offers bogus...
Log4j updates, with a side of Fancy Bear. Roots of Huawei’s career as a...
Log4j updates, with a side of Fancy Bear. Roots of Huawei’s career as a security risk. Tropic Trooper is back. Meta boots “cyber mercenaries.” Other cyberespionage incidents.
It seems that...
A $600 million alt-coin heist. LockBit claims it hit Accenture. A false-flag cyberespionage campaign....
A $600 million alt-coin heist. LockBit claims it hit Accenture. A false-flag cyberespionage campaign. A REvil key is posted. AlphaBay is back. Facebook takes down vaccine disinfo campaign.
Cross-chain attack...
Log4j: new exploitation, new mitigations, new risk assessments. Service interruptions, Space Force’s capture-the-flag, and...
Log4j: new exploitation, new mitigations, new risk assessments. Service interruptions, Space Force’s capture-the-flag, and official interventions.
Updates on Log4j vulnerabilities: new exploitation, new mitigations, new risk assessments, some good advice...
Cyber Espionage, again. Patched SolarWinds yet? Patch Tuesday. The international conference on ransomware has...
Cyber Espionage, again. Patched SolarWinds yet? Patch Tuesday. The international conference on ransomware has begun. Booter customers get a warning. A disgruntled insider alters aircraft records.
A Chinese-speaking APT is...
Telco and medical data breaches. Privacy, at Apple and Facebook. Faking facial recognition.
Telco and medical data breaches. Privacy, at Apple and Facebook. Faking facial recognition.
StarHub customer data leaked.
