It’s an Architeuthis dux, the second this year. As usual, you can also use this squid post to talk about the security stories in the news that I haven’t covered. Read...
Read moreLastPass Suffers Data Breach, Source Code Stolen
August 26 2022Researchers warned that cyberattackers will be probing the code for weaknesses to exploit later.
Read moreFirefox 104 is out – no critical bugs, but update anyway
August 26 2022Two trust-spoofing bugs were the main culprits this month - but neither one was a zero-day.
Read moreMicrosoft and others say they have observed nation-state actors, ransomware purveyors, and assorted cybercriminals pivoting to an open source attack-emulation tool in recent campaigns.
Read moreConsumers gain control of their data while companies build better relationships with their customers — but third-party ad-tech firms will likely continue to stand in the way.
Read moreHow DevSecOps Empowers Citizen Developers
August 26 2022DevSecOps can help overcome inheritance mentality, especially in low- and no-code environments.
Read moreSix out of the eight products achieved an "A" rating or higher for blocking malware attacks. Reports are provided to the community for free.
Read moreCapital One Joins Open Source Security Foundation
August 26 2022OpenSSF welcomes Capital One as a premier member affirming its commitment to strengthening the open source software supply chain.
Read moreSecurity and Cheap Complexity
August 26 2022I’ve been saying that complexity is the worst enemy of security for a long time now. (Here’s me in 1999.) And it’s been true for a long time.
In...
Read moreThe "0ktapus" cyberattackers set up a well-planned spear-phishing effort that affected at least 130 orgs beyond Twilio and Cloudflare, including Digital Ocean and Mailchimp.
Read more
Recent Comments