CircleCI, GitHub Users Targeted in Phishing Campaign
September 22 2022Emails purporting to be an update to terms of service for GitHub and CircleCI instead attempt to harvest user credentials.
Read moreTime to Quell the Alarm Bells Around Post-Quantum Crypto-Cracking
September 22 2022Quantum computing's impact on cryptography is not a cliff that we'll all be forced to jump off of, according to Deloitte.
Read moreFeds Sound Alarm on Rising OT/ICS Threats From APT Groups
September 22 2022NSA and CISA release guidance on protecting against cybersecurity threats to operational technology and industrial control systems.
Read moreMalicious npm Package Poses as Tailwind Tool
September 22 2022Branded as a components library for two popular open source resources, Material Tailwind instead loads a Windows .exe that can run PowerShell scripts.
Read moreS3 Ep101: Uber and LastPass breaches – is 2FA all it’s cracked up to be? [Audio + Text]
September 22 2022Latest episode - listen now! Learn why adopting 2FA isn't a reason to relax your other security precautions...
Read moreBusinesses need to turn privacy and security into an advantage. Store less data, and live up to customer expectations that their information is protected. Take small steps, be transparent...
Read moreStackHawk Launches Deeper API Security Test Coverage to Improve the Security of APIs
September 22 2022Expansion of test coverage includes custom scan discovery, custom test scripts and custom test data for REST APIs, enabling developers to leave no paths untouched.
Read morePrompt Injection/Extraction Attacks against AI Systems
September 22 2022This is an interesting attack I had not previously considered. The variants are interesting, and I think we’re just starting to understand their implications.
Read more
Recent Comments