A public-private conference takes up open source software security at the White House. MuddyWater...
A public-private conference takes up open source software security at the White House. MuddyWater attributed to Iran. Espionage and ransomware arrests.
A White House government-industry summit today addresses open-source software...
Influence operations in the grey zone. FSB raids REvil. Open Source Software Security Summit...
Influence operations in the grey zone. FSB raids REvil. Open Source Software Security Summit looks to public-private cooperation. Privateering and state-sponsored cybercrime.
A large-scale cyberattack against Ukrainian websites looks like...
The US and EU seek to shore up cybersecurity as Russo-Ukraininan tensions run high....
The US and EU seek to shore up cybersecurity as Russo-Ukraininan tensions run high. NIST updates secure system standards. Ransomware exploits Log4shell. Dog bites man: fraud in social media.
The...
Software supply chains and the free-rider problem. An APT is bitten by its own...
Software supply chains and the free-rider problem. An APT is bitten by its own RAT. Europol told to clean up its data. A leak investigation in Denmark. QR-code phishbait.
Log4shell...
CISA provides an account of progress toward Log4shell remediation. Other issues are reported in...
CISA provides an account of progress toward Log4shell remediation. Other issues are reported in open-source libraries. Undersea cable security. FIN7’s BadUSB campaign. Security and Yealink.
CISA describes progress toward remediating...
Kazakhstan shuts down its Internet as civil unrest continues (and one consequence is a...
Kazakhstan shuts down its Internet as civil unrest continues (and one consequence is a disruption of alt-coin mining in that country). More on Log4j. Ransomware hits school website provider.
Kazakhstan...
Log4j and industrial control systems. Regulators consider the software supply chain. Malsmoke hits an...
Log4j and industrial control systems. Regulators consider the software supply chain. Malsmoke hits an old vulnerability. Social engineering via Google Docs. Call spoofing and robocalls.
ICS vendors address Log4j vulnerabilities....
Log4j issues persist. Konni RAT found in New Year’s greetings. Hacktivism or state-directed cyber...
Log4j issues persist. Konni RAT found in New Year’s greetings. Hacktivism or state-directed cyber action? Moscow worries about Mr. Klyushin’s knowledge. The Show-Me-Too-Much State.
It’s going to take time, vigilance,...
CISA reports progress on Log4j. The FTC warns US businesses about taking Log4j risk...
CISA reports progress on Log4j. The FTC warns US businesses about taking Log4j risk mitigation seriously. Gangland updates, and some notes on hybrid war.
CISA says US Federal agencies are...
Log4j updates, including an Aquatic Panda sighting. Cyberattacks hit news services in Norway, Israel,...
Log4j updates, including an Aquatic Panda sighting. Cyberattacks hit news services in Norway, Israel, and Portugal. Addressing Y2K22.
Aquatic Panda has been found working Log4shell exploits against an academic institution....
