News
-
Friday Squid Blogging: Are Squid from Another Planet?
An actually serious scientific journal has published a paper speculating that octopus and squid could be of extraterrestrial origin. News article. As usual, you can also use this squid post to talk about the security stories in the news that I haven’t covered. Read my blog posting guidelines here. Read More
-
FBI’s warning about Iranian firm highlights common cyberattack tactics
The US Federal Bureau of Investigation (FBI) has released a warning outlining the TTP (tactics, techniques, and protocols) of Iran-based Emennet Pasargad, reportedly a cybersecurity and intelligence firm servicing Iranian government agencies, to help recipients inform and defend themselves against the group’s malicious activities. In the FBI’s Private Industry Notification, the agency confirms that two…
-
Major Vulnerability Found in Argo CD
Major Vulnerability Found in Argo CD Security researchers at Apiiro have discovered a significant software supply chain zero-day vulnerability in the popular open-source continuous delivery platform, Argo CD. Used by thousands of organizations globally, Argo CD is a tool that reads environment configurations (written as a helm chart, kustomize files, jsonnet or plain YAML files) from git repositories…
-
Nord Security and Surfshark to Merge
Nord Security and Surfshark to Merge Lithuanian-based cybersecurity companies and rival virtual private network (VPN) providers Nord Security and Surfshark have finalized a merger agreement. The companies said that the merger would “open new technical knowledge-sharing opportunities and enable more focused market diversification.” Both companies will continue to operate autonomously and maintain separate infrastructure and product roadmaps. Since both companies…
-
Tennessee College Hit with Ransomware
Tennessee College Hit with Ransomware A cyber-attack on a community college in Tennessee may have exposed the personal data of students, staff and faculty. Attackers struck Pellissippi State Community College (PSCC) with ransomware on December 5 2021. The digital assault shut down online network connections to all five of its campuses during finals week, disrupting online exams. …
-
#Enigma2022: Security’s Role in Helping HealthTech Find Its Way
#Enigma2022: Security’s Role in Helping HealthTech Find Its Way Securing healthcare technologies is critical to human health and safety, not just in the medical setting but also with consumer HealthTech. In an afternoon session on February 3 at the Engima 2022 conference, Joy Forsythe, director of security at Alto Pharmacy, explained that HealthTech is a growing…
-
The EARN IT Act Is Back
Senators have reintroduced the EARN IT Act, requiring social media companies (among others) to administer a massive surveillance operation on their users: A group of lawmakers led by Sen. Richard Blumenthal (D-CT) and Sen. Lindsey Graham (R-SC) have re-introduced the EARN IT Act, an incredibly unpopular bill from 2020 that was dropped in the face…
-
US Accuses Russia of Disinformation Plot to Justify Invasion of Ukraine
US Accuses Russia of Disinformation Plot to Justify Invasion of Ukraine The United States has accused Russia of a disinformation plot to serve as a pretext to an invasion of Ukraine. This would be a video purporting to show a Ukrainian attack on Russian territory or against Russian-speaking people in Eastern Ukraine. According to the…
-
NFT Wash Trading Made Scammers at Least $9m in 2021
NFT Wash Trading Made Scammers at Least $9m in 2021 Cyber-criminals are making and laundering millions through non-fungible tokens (NFTs), according to new data from Chainalysis. NFTs are technically unique records on a blockchain that are each linked to a piece of digital content. They can be minted and sold by the content creator to investors,…
-
Startups to watch for 2022
The problems cybersecurity startups attempt to solve are often a bit ahead of the mainstream. They can move faster than most established companies to fill gaps or emerging needs. Startups can often innovative faster because they are unfettered by an installed base. The downside, of course, is that startups often lack resources and maturity. It’s…