Security Leftovers and Windows TCO
-
Seth Michael Larson ☛ 2024-02-08 [Older] CPython 3.12.2 is SBOM-ified!
-
CISA ☛ 2024-02-08 [Older] CISA Partners With OpenSSF Securing Software Repositories Working Group to Release Principles for Package Repository Security
-
CISA ☛ 2024-02-08 [Older] Cisco Releases Security Advisory for Vulnerabilities in Cisco Expressway Series
-
CISA ☛ 2024-02-07 [Older] VMware Releases Security Advisory for Aria Operations for Networks
-
Hackaday ☛ This Week In Security: Broken Shims, LassPass, And Toothbrushes? | Hackaday
Linux has a shim problem. Which naturally leads to a reasonable question: What’s a shim, and why do we need it?
[...]
All we lack here is another app name LastPast, and we’d have the App Store equivalent of three different Spidermen standing in a circle pointing at each other. The devs behind the LastPass app found a suspiciously similar looking LassPass app on the Apple App Store. We’ve seen typosquatting on a bunch of Open Source software repositories, but it’s a problem on the app stores, too.
-
Data Breaches ☛ Warzone RAT Sales and Support Actors in Malta and Nigeria Charged in U.S. Federal Indictments
The Justice Department announced today that, as part of an international law enforcement effort, federal authorities in Boston seized internet domains that were used to sell computer malware used by cybercriminals to secretly access and steal data from victims’ computers. Federal authorities in Atlanta and Boston also unsealed indictments charging individuals in Malta and Nigeria, respectively, for their alleged involvement in selling the malware and supporting cybercriminals seeking to use the malware for malicious purposes.
-
NL Times ☛ 2024-02-06 [Older] Netherlands accuses China of cyber spying after security service makes malware discovery
-
Engadget ☛ 2024-02-06 [Older] How security experts unravel ransomware
-
CISA ☛ 2024-02-08 [Older] CISA Releases Two Industrial Control Systems Advisories
-
CISA ☛ 2024-02-08 [Older] Qolsys IQ Panel 4, IQ4 HUB
-
CISA ☛ 2024-02-07 [Older] CISA and Partners Release Advisory on PRC-sponsored Volt Typhoon Activity and Supplemental Living Off the Land Guidance
-
CISA ☛ 2024-02-06 [Older] CISA Adds One Known Exploited Vulnerability to Catalog
-
CISA ☛ 2024-02-06 [Older] CISA Releases Two Industrial Control Systems Advisories
-
CISA ☛ 2024-02-06 [Older] HID Global Encoders
-
CISA ☛ 2024-02-06 [Older] HID Global Reader Configuration Cards
-
Windows TCO
-
Axios ☛ Ransomware gangs made more than $1B in 2023: Chainalysis
What we're watching: Anne Neuberger, deputy national security adviser for cyber and emerging technology at the White House, told reporters Thursday that the administration is eyeing "a set of new policy options" to tackle the latest ransomware surge.
-