Details. Blog moderation policy. Read More

Read More

Forescout highlighted a 43% increase in published vulnerabilities in H1 2024, with attackers targeting flaws in VPNs and network infrastructure for initial access Read More

Read More

In a campaign targeting Mongolian government websites, Russian-backed APT29 leveraged exploits previously used by spyware vendors NSO Group and Intellexa Read More

Read More

North Korean groups exploited npm packages in coordinated attacks, targeting developers and cryptocurrency wallet browser extensions Read More

Read More

The “long lost lecture” by Adm. Grace Hopper has been published by the NSA. (Note that there are two parts.) It’s a wonderful talk: funny, engaging, wise, prescient. Remember that talk was given in 1982, less than a year before the ARPANET switched to TCP/IP and the internet went operational. She was a remarkable person.…

Read More

Who doesn’t fancy earning US $2.5 million? That’s the reward that’s on offer from US authorities for information leading to the arrest and/or conviction of the man who allegedly was a key figure behind the development and distribution of the notorious Angler Exploit Kit. Read more in my article on the Tripwire State of Security…

Read More

BlackByte, linked to the Conti group, exploited VMware ESXi CVE-2024-37085 to control virtual machines Read More

Read More

Threat actors are exploiting a vulnerability found in CCTV cameras used in critical infrastructure to spread a Mirai malware variant Read More

Read More

Chainalysis report reveals a likely increase in new internet scams this year as fraudsters adapt to increasing enforcement efforts Read More

Read More

CISA and the FBI warned that Iranian APT group, Fox Kitten, has helped ransomware groups to attack US organizations since 2017 Read More

Read More