Special edition with Chris Krebs and Alex Stamos just dropped!

podcasts.apple.com/au/podcast/ris…

The pew-pew cybers newsletter is out! This is way to long to summarize here. Summary on Masto:

mastodon.social/@campuscodi/11…

David Cottingham and I enjoyed our first interview with Tom Uren on 'When standards drive innovation' - something that happened Airlock Digital. risky.biz/RBNEWSSI39/ #Essential8 #Allowlisting

I have been struggling for more than a week to find any words that would do justice to the loss we have suffered in the death of Sophia d’Antoine. She was the best of us.

When speaking of the fragility of capabilities pipelines her work was so often the illustrative case, as she

Breaking: CISA announces a new strategy on ransomware

Pew-pew! Weekend cybers are out!

'Ukraine says Sandworm tried to hack 20 critical infrastructure orgs back in March, including with 3 supply chain attacks'

mastodon.social/@campuscodi/11…

A GitHub flaw lets attackers upload executables that appear to be hosted on a company's official repo, such as Microsoft's—without the repo owner knowing anything about it.

The following URLs, for example, make it seem like these ZIPs are present on Microsoft's source code repo:

71… That’s how many people in the House of Representatives have held up Ukraine aid all these months, an action that has contributed to increased Ukrainian civilian and military death toll since January

The #MITRE Corporation, a non-profit overseeing federally funded research, was breached by nation-state hackers in January through two zero-day vulnerabilities in products from IT vendor #Ivanti . therecord.media/mitre-breached…

SEEN THESE ADS?

Producer is a declared foreign agent, paid ~$6.8m to make Kremlin propaganda on #Ukraine , etc.

He's claimed in filings that those videos wouldn't target the US audiences.

By Taylor Giorno & Anna Massoglia opensecrets.org/news/2022/08/r…

HelloKitty Ransomware released some decryption keys and rebranded into HelloGookie with a new blog. Gookie, who is the author of this ransomware, sends his regards to LockBit due to possible competition. He also regained access to his lost account on the Exploit forum.

Dune’s summary of World War II is great

1/11
Today, we’re releasing details of a small but interesting mobile #vulnerability called MMS Fingerprint, reportedly used by #NSOGroup .

How this might work, and how we found it, is a bit unusual.
enea.com/insights/dusti…
Enea AB Joseph Cox Ryan Gallagher Catalin Cimpanu Lorenzo Franceschi-Bicchierai

If you are investing money in stock market or cryptocurrency through some Telegram channel or WhatsApp group, my sympathies are with you.

National Cyber Crime Helpline no. is 1930. Sharing because you will need it soon.

Pl RT

#CyberCrime

FSB officer sent to 9 years in maximum security penal colony for taking bribes from the Infraud cybercrime crew

This and more: mastodon.social/@campuscodi/11…

Ginormous newsletter for a silly Monday morning

mastodon.social/@campuscodi/11…

Not being able to block ads on Android is as bad as when Microsoft makes you pay extra for logging

⚠️ Adult content is being sanitized and squeezed off the internet in a way that it never has been before.

You should care, you should talk about it, you should know why it is different now and a big deal.

THREAD 🧵1/

This week's Seriously Risky Business:
- When honeypots violate norms
- The Big Tech bogeyman in privacy reform
- When vendors wash their hands of security

Listen here:
podcasts.apple.com/au/podcast/srs…

Or read here:
news.risky.biz/norms-what-nor…