Recent Google News
-
Stellar Cyber partners with BlackBerry to offer AI-powered security solutions for enterprises and MSSPs - Help Net SecurityAugust 2, 2021
-
Hawaiʻi Attorney General in Coalition Urging Cyber Security in Wake of Ransomware Cases - Maui NowAugust 2, 2021
-
OCR Cybersecurity Letter Focuses on Controlling Access to ePHI - The National Law ReviewAugust 2, 2021
-
White House cyber chief backs new federal bureau to track threats | TheHill - The HillAugust 2, 2021
-
Biden Admin: Cyber Attacks Could Start a “Real Shooting War,” Cybersecurity Becoming Central F ... - CPO MagazineAugust 2, 2021
Latest Episode 6/23/2019
Brian Krebs
-
The Life Cycle of a Breached DatabaseEvery time there is another data breach, we are asked to change our password at the breached entity. But the reality is that in most cases by the time the victim organization discloses an incident pub ...
Newsletter
ThreatPost.com
-
‘PwnedPiper’: Devastating Bugs in >80% of Hospital PneumaticsPodcast: Blood samples aren’t martinis. You can’t shake them. But bugs in pneumatic control systems could lead to that, RCE or ransomware.
Andrew Hay
-
Jupyter Notebook for crt.sh QueriesI created a Jupyter Notebook to query the crt.sh website, dump the results into a pandas data frame, and then printing out the unique list of results to the screen for OSINT investigations. ...
Adam Shostck
-
Threat Model Thursday: NIST’s Code Verification StandardEarlier this week, NIST released a Recommended Minimum Standard for Vendor or Developer Verification of Code. I want to talk about the technical standard overall, the threat modeling component, and the what the standard means now and in the future. To summarize: new requirements are coming to a project near you, and getting ready now…
Subscribe
Dan Kaminsky
-
Hacking the Universe with Quantum EncraptionLadies and Gentlemen of the Quantum Physics Community: I want you to make a Pseudorandom Number Generator! And why not! I’m just a crypto nerd working on computers, I only get a few discrete bits and a handful of mathematical operations. You have such an enormous bag of tricks to work with! You’ve got […]
Elie Bursztein
-
Stay safe online in 10 easy stepsHere are the ten most important steps you can take to stay safe online. ...
Graham Cluley
-
Ransomware via a call centre? BazaCall means no email attachment or link required for infectionUnsuspecting users of Office 365 are being tricked by a cybercriminal gang into calling a bogus call centre, with the eventual intention of installing ransomware onto their computers. Read more in my article on the Hot for Security blog.
Hacking Articles
-
Metasploit for Pentester: Creds
This is in continuation with the Metasploit for Pentester series of articles that we are presenting. More specifically we learned about the Workspaces and the Metasploit Database service in this article: Metasploit for Pentester: Database & Workspace. In this article, we will be discussing another database inside the Workspace that
The post Metasploit for Pentester: Creds appeared first on Hacking Articles.
Holistic InfoSec
-
Moving blog to HolisticInfoSec.iotoolsmith and HolisticInfoSec have moved.I've decided to consolidate all content on one platform, namely an R markdown blogdown site running with Hugo for static HTML creation. My frustration with Blo ...
Blogroll
- Akamai
- Andrew Hay
- Ars Technica
- Asher Security
- BH Consulting IT Security Watch
- Bleeping Computer
- Brian Krebs
- Check Point Software
- CIO
- CSO Online
- Dark Reading
- Dr. Eric Cole
- Errata Security
- FocusPoint Technologies
- Forbes
- Fox IT Security Blog
- Google Online Security Blog
- Graham Cluley
- Help Net Security
- Hot For Security
- InfoSecurity Magazine
- IT Pro Portal
- IT Security
- Kaspersky Labs
- Kevin Townsend’s IT Security
- Liquidmatrix Security Digest
- Malwarebytes Labs
- Mashable
- McGrew Security
- Motherboard Vice
- Naked Security Blog
- Network Computing
- Palo Alto Networks
- Paul’s Security Weekly
- PCMag’s Security Watch
- Peerlyst
- Privacy Paradox from Lawfare
- SANS Institute AppSec Blog
- SC Magazine
- Schneier on Security
- Security Affairs
- Security Bloggers Network
- Security Ledger
- Securosis
- Softpedia
- Tao Security
- Techcrunch
- TechRepublic
- Techworld Security
- The Guardian Information Security Hub
- The Hacker News
- The Register
- ThreatTrack Security
- Troy Hunt
- Wired
- Wombat Security Blog
- Zero Day
Tripwire.com
-
PLEASE_READ_ME Ransomware Campaign Targeting MySQL ServersDigital attackers launched a new ransomware campaign dubbed “PLEASE_READ_ME” in an effort to target MySQL servers. Guardicore first spotted the attack back in January 2020. After that, it ...
Jeff Soh
-
Speed KillsIn computer science, speed is all. Everything we do, we want to do as fast as possible. Right? No. Consider slow hashing algorithms. Some hashes ...
Liquidmatrix
- Nothing to display ...
Marco Ramilli
- Nothing to display ...
Matt Flynn
-
Bell Labs, the Colonial Pipeline and Multi-Factor Authentication (MFA)A simple technology invented by Bell Labs over 20 years ago (and widely used today) could have prevented the Colonial Pipeline attack. In 1880, the French government awarded Alexander Graham Bell rou ...
Notice Bored
-
Pinball managementIt could be argued that ‘management’ of all kinds (including information risk and security management) is or rather shouldbe a rational process, meaning that managers should systematically ga ...
Robert Penz Blog
-
Proxmox Container with Debian 10 does not work after upgrade
I just did an apt update / upgrade of a Debian 10 container and restarted it afterwards and got following: # pct start 105 Job for pve-container@105.service failed because the control process exited with error code. See "systemctl status pve-container@105.service" and "journalctl -xe" for details. command 'systemctl start pve-container@105' failed: exit code 1 with a […]
The post Proxmox Container with Debian 10 does not work after upgrade first appeared on Robert Penz Blog.
Digital Guardian
-
Vigilance Needed: Financial Services Firms Fight Imposter Scams
To tamp down on fraud and fight back against a new investment scam, the FBI and SEC is providing new guidance for investors to combat imposters.
Roger McClinton
-
CloudFlare Gateway DNS Filtering
With some downtime over the holidays, I was checking in to see if my ISP has added IPv6 support yet. But sadly nothing had changed in months. So just for fun, I reset up a 6 in 4 tunnel to Hurricane Electric from my router. Sending traffic in a tunnel to HE rather than directly ...
Continue reading ‘CloudFlare Gateway DNS Filtering’ »
The post CloudFlare Gateway DNS Filtering appeared first on Roger's Information Security Blog.
Bruce Schneier’s blog
-
The European Space Agency Launches Hackable Satellite
Of course this is hackable:
A sophisticated telecommunications satellite that can be completely repurposed while in space has launched.
[…]
Because the satellite can be reprogrammed in orbit, it can respond to changing demands during its lifetime.
[…]
The satellite can detect and characterise any rogue emissions, enabling it to respond dynamically to accidental interference or intentional jamming.
We can assume strong encryption, and good key management. Still, seems like a juicy target for other governments.
Security Through Education
-
The Power of a Good PretextLearn about the power of a good pretext and how to use it in work and your everyday life. ...
TaoSecurity
-
Zeek in Action VideosThis is a quick note to point blog readers to my Zeek in Action YouTube video series for the Zeek network security monitoring project. Each video addresses a topic that I think might be of intere ...
Naked Security
-
S3 Ep43: Apple 0-day, pygmy hippos, hive nightmares and Twitter hacker bust [Podcast]Latest episode - listen now! ...
Troy Hunt
-
Weekly Update 254
The plan this week was to do a super simple update whilst having some time out. In the back yard, sun shining, iPad, Air Pods, all good. Mostly all good - the sound quality on those Air Pods is absolute rubbish. I don't if that's a
Uncommon Sense Security
-
Ten years, how time flies.Ten years, a decade, it’s a very long time, and yet passes in the blink of an eye. I joined Tenable ten years ago, and somehow they have not tired of me yet. I had known Ron Gula and Jack Huffard fo ...
FocusPoint Blog Posts
- Nothing to display ...
- Podcast 3_2_2019
[Music] welcome to the cyber Chronicles my name’s Brian Stevenson and I am your host this week is a pretty incredible episode we’re going to talk about something that impact worldwide cybersecurity we’re going to talk about latest vlog wind var we’re going to talk about turbo tax has some issues recently and new tax […]
Most Important Cyber Stories Per Month
Dark Reading
- New Normal Demands New Security Leadership Structure
- Multiple Zero-Day Flaws Discovered in Popular Hospital Pneumatic Tube System
- 8 Security Tools to be Unveiled at Black Hat USA
- Biden Administration Responds to Geopolitical Cyber Threats
- 7 Hot Cyber Threat Trends to Expect at Black Hat
- Law Firm for Ford, Pfizer, Exxon Discloses Ransomware Attack
- US Accuses China of Using Criminal Hackers in Cyber Espionage Operations
- How Gaming Attack Data Aids Defenders Across Industries
- NSO Group Spyware Used On Journalists & Activists Worldwide
- When Ransomware Comes to (Your) Town
Newsletter
Recent Posts
- Hackers Promise ‘No More Healthcare Cyber Attacks’ During COVID-19 Crisis March 21, 2020
- Exclusive: Russia carried out a ‘stunning’ breach of FBI communications system, escalating the spy game on U.S. soil September 16, 2019
- Russian hackers are infiltrating companies via the office printer August 5, 2019
- Increase ROI on User Awareness Training June 26, 2019
- Two years after WannaCry, a million computers remain at risk May 13, 2019
Thank you!
— briankrebs (@briankrebs) July 30, 2018
TheCyberChronicle.com Voted One Of The Top 10 Cyber Security News Sites
