Recent Google News
-
Carden Park hosts biggest cyber security event ‘in the country’ - Business Up NorthOctober 22, 2019
-
Nominet Launches Global Cyber Security Partner Program 'Velocity' Following Significant Team Expansion - Yahoo FinanceOctober 22, 2019
-
Southern University launches first Cyber security course at HBCU - BlackEngineer.comOctober 22, 2019
-
Analysis | The Cybersecurity 202: Andrew Yang defends comparing U.S., Russian election interference - The Washington PostOctober 22, 2019
-
Cyber Security Move to the Forefront for CRE - GlobeSt.comOctober 22, 2019
Latest Episode 6/23/2019
Brian Krebs
-
Avast, NordVPN Breaches Tied to Phantom User AccountsAntivirus and security giant Avast and virtual private networking (VPN) software provider NordVPN each today disclosed months-long network intrusions that -- while otherwise unrelated -- shared a comm ...
Newsletter
ThreatPost.com
-
Three Service Account Secrets Straight from Hackers and Security ProsA survey of nearly 300 Black Hat conference attendees this year showed strong agreement that service accounts are an attractive target.
Andrew Hay
-
Do You Suffer From Breach Optimism Bias?Optimism bias is the belief that each of us is more likely to experience good outcomes and less likely to experience bad outcomes. How prevalent is this in the cybersecurity industry? If you're a salty security professional like me, you already know the answer. ...
Adam Shostck
-
Interesting Reads: Risk, Automation, lessons and more!The Cybok project has released its v1 “Risk Management & Governance Knowledge Area”; I was a reviewer. Towards Automated Security Design Flaw Detection is an interesting paper from academics in Belgium and Sweden. Steve Lipner offers “Lessons learned through 15 years of SDL at work“ Charles Wilson has perspective on threat modeling devices in “Does…
Subscribe
Dan Kaminsky
-
Hacking the Universe with Quantum EncraptionLadies and Gentlemen of the Quantum Physics Community: I want you to make a Pseudorandom Number Generator! And why not! I’m just a crypto nerd working on computers, I only get a few discrete bits and a handful of mathematical operations. You have such an enormous bag of tricks to work with! You’ve got […]
Elie Bursztein
-
Protecting accounts from credential stuffing with password breach alertingProtecting accounts from credential stuffing attacks remains burdensome due to an asymmetry of know ...
Graham Cluley
-
Action Fraud? Inaction Fraud
In recent months serious questions have been raised about whether victims of cybercrime are getting the support they deserve from the UK’s national fraud reporting centre.
Hacking Articles
-
HA Joker Vulnhub Walkthrough
Today we are going to solve our Boot to Root challenge called “HA: Joker” We have developed this lab for the purpose of online penetration practices. Solving this lab is not that tough if you have proper basic knowledge of Penetration testing. Let’s start and learn how to breach it. Download Here Level: Intermediate Task:... Continue reading →
The post HA Joker Vulnhub Walkthrough appeared first on Hacking Articles.
Holistic InfoSec
-
Moving blog to HolisticInfoSec.iotoolsmith and HolisticInfoSec have moved.I've decided to consolidate all content on one platform, namely an R markdown blogdown site running with Hugo for static HTML creation. My frustration with Blo ...
Blogroll
- Akamai
- Andrew Hay
- Ars Technica
- Asher Security
- BH Consulting IT Security Watch
- Bleeping Computer
- Brian Krebs
- Check Point Software
- CIO
- CSO Online
- Dark Reading
- Dr. Eric Cole
- Errata Security
- FocusPoint Technologies
- Forbes
- Fox IT Security Blog
- Google Online Security Blog
- Graham Cluley
- Help Net Security
- Hot For Security
- InfoSecurity Magazine
- IT Pro Portal
- IT Security
- Kaspersky Labs
- Kevin Townsend’s IT Security
- Liquidmatrix Security Digest
- Malwarebytes Labs
- Mashable
- McGrew Security
- Motherboard Vice
- Naked Security Blog
- Network Computing
- Palo Alto Networks
- Paul’s Security Weekly
- PCMag’s Security Watch
- Peerlyst
- Privacy Paradox from Lawfare
- SANS Institute AppSec Blog
- SC Magazine
- Schneier on Security
- Security Affairs
- Security Bloggers Network
- Security Ledger
- Securosis
- Softpedia
- Tao Security
- Techcrunch
- TechRepublic
- Techworld Security
- The Guardian Information Security Hub
- The Hacker News
- The Register
- ThreatTrack Security
- Troy Hunt
- Wired
- Wombat Security Blog
- Zero Day
Tripwire.com
-
Malspam Campaign Targeted German Organizations with Buran RansomwareResearchers spotted a malspam campaign that targeted German organizations with samples of the Buran crypto-ransomware family. In early October, Bromium observed a malspam campaign whose emails imperso ...
Jeff Soh
-
Behavioral analysis versus artifacts/IOC'sMuch of our defensive architecture today is based on the ability to extract indicators of compromise from logs, packet data and flow data and the moni ...
Liquidmatrix
-
We Don’t Take Vendor Pitches
This site has been online for more than a couple decades now. I removed all advertising from the site a couple years ago to maintain as impartial of an approach as I can.
The post We Don’t Take Vendor Pitches appeared first on Liquidmatrix Security Digest.
Marco Ramilli
- Nothing to display ...
Matt Flynn
-
Improve Security by Thinking Beyond the Security RealmIt used to be that dairy farmers relied on whatever was growing in the area to feed their cattle. They filled the trough with vegetation grown right on the farm. They probably relied heavily on whatev ...
Notice Bored
-
NBlog Oct 22 - a business case for privacyThis week I'm slugging away at the coal face to complete the management materials for November's privacy awareness module - an update on our previous coverage to reflect current issues, recent inciden ...
Robert Penz Blog
-
Proxmox Container with Debian 10 does not work after upgradeI just did an apt update / upgrade of a Debian 10 container and restarted it afterwards and got following: # pct start 105 Job for pve-container@105.service failed because the control process exited with error code. See "systemctl status pve-container@105.service" and "journalctl -xe" for details. command 'systemctl start pve-container@105' failed: exit code 1 with a […]
Digital Guardian
-
Latest Data Privacy Bill Looks to Keep Corporations Accountable
A bill introduced last week could threaten years of jail time for execs who lie to the FTC about protecting user data.
Roger McClinton
-
Beginner’s Mind
Shoshin is a word from Zen Buddhism meaning “beginner’s mind.” It refers to having an attitude of openness, eagerness, and a lack of preconceptions when studying a subject, even when studying at an advanced level. As IT people we aren’t always known for our attitude of openness, eagerness and lack of preconceptions. Its an easy ...
Continue reading ‘Beginner’s Mind’ »
The post Beginner’s Mind appeared first on Roger's Information Security Blog.
Bruce Schneier’s blog
-
Calculating the Benefits of the Advanced Encryption StandardNIST has completed a study -- it was published last year, but I just saw it recently -- calculating the costs and benefits of the Advanced Encryption Standard. From the conclusion: The result of performing that operation on the series of cumulated benefits extrapolated for the 169 survey respondents finds that present value of benefits from today's perspective is approximately...
Security Through Education
-
Romance Scams: Stealing Hearts & MoneyIn This Issue: "Romance Scams: Stealing Hearts & Money." Romance scams rank #1 in total consumer fraud losses affecting Americans. In this Newsletter we explore the history of online relationship ...
TaoSecurity
-
Five Thoughts on the Internet Freedom LeagueIn the September/October issue of Foreign Affairs magazine, Richard Clarke and Rob Knake published an article titled "The Internet Freedom League: How to Push Back Against the Authoritarian Assault on ...
Tech Wreck InfoSec Blog
Naked Security
-
Vatican launches smart rosary – complete with brute-force flawNow fixed, the Vatican's new fitness-and-prayer eRosary and its accompanying app, Click to Pray, were found to have a serious privacy bug. ...
Troy Hunt
-
Weekly Update 161
It's my first conference back in Australia since probably about May and I'm experiencing a rare luxury - not flying! I'm sticking to driving some big distances just to get a break from the tyranny that is check-in, security and airport lounges. Seriously, it was beginning to do my head
Uncommon Sense Security
-
Blog-ified TweetstormI dumped this on Twitter as a tweetstorm, but it is worth sharing here in one place. Those who have followed me for a while have probably noticed that I rarely get technical here anymore. My world, a ...
FocusPoint Blog Posts
-
Increase ROI on User Awareness TrainingHow much risk reduction has your user awareness training provided to your organization? Tough question for most people to answer. The solution - take a baseline metric before providing the user awaren ...
-
IoT Evolution, Revolution or Confusion?The IoT (Internet of Things) evolution is occurring in business and personal lives, the revolution is amazing as it transforms the way we think and act, and the confusion around how to secure IoT is r ...
-
Is Identity the New Perimeter in Security?I’ve recently heard the phrase, “identity is the new perimeter” as it relates to information security. That said, I’ve also heard the same about endpoints, artificial intelligence, email, you ...
- Podcast 3_2_2019
[Music] welcome to the cyber Chronicles my name’s Brian Stevenson and I am your host this week is a pretty incredible episode we’re going to talk about something that impact worldwide cybersecurity we’re going to talk about latest vlog wind var we’re going to talk about turbo tax has some issues recently and new tax […]
Most Important Cyber Stories Per Month
Dark Reading
- Bugcrowd Enters the IT Asset Discovery Business
- How Much Security Is Enough? Practitioners Weigh In
- Russian Hackers Using Iranian APT's Infrastructure in Widespread Attacks
- Microsoft Aims to Block Firmware Attacks with New Secured-Core PCs
- Avast Foils Another CCleaner Attack
- Researchers Turn Alexa and Google Home Into Credential Thieves
- Trend Micro Buys Cloud Conformity to Fight Cloud Competition
- SOC Operations: 6 Vital Lessons & Pitfalls
- Surviving Security Alert Fatigue: 7 Tools and Techniques
- Turning Vision to Reality: A New Road Map for Security Leadership
Newsletter
Recent Posts
- Exclusive: Russia carried out a ‘stunning’ breach of FBI communications system, escalating the spy game on U.S. soil September 16, 2019
- Russian hackers are infiltrating companies via the office printer August 5, 2019
- Increase ROI on User Awareness Training June 26, 2019
- Two years after WannaCry, a million computers remain at risk May 13, 2019
- Fort Bragg cut power for thousands to test ‘real-world reactions’ to a cyber-attack April 30, 2019
Thank you!
— briankrebs (@briankrebs) July 30, 2018
TheCyberChronicle.com Voted One Of The Top 10 Cyber Security News Sites
