Wednesday, October 27, 2021

Weekly Update 266

Presently sponsored by: VMwareWell this is a totally different office view! I'm properly getting into working more on the acoustics and aesthetics to make this the most productive environment possible which means this week things are in a bit...

Pwned – The Collected Blog Posts of Troy Hunt (Preview)

Presently sponsored by: VMwareWe choose this photo for the cover because this was when it all started. 18-year old Troy, having just discovered the web in early 1995 and chomping at the bit to do something with it. The...

Weekly Update 265

Presently sponsored by: Axonius provides an always up-to-date asset inventory, helping IT and security uncover gaps and automate action. Learn more and try it free.I had a bunch of false starts with this one. I don't know if it...

Weekly Update 264

Presently sponsored by: 1Password is a secure password manager and digital wallet that keeps you safe onlineA lot of cyber things this week: loads of data breach (or "scrape", In LinkedIn's case) incidents, Windows 11 upgrade experiences and then...

Weekly Update 263

Presently sponsored by: 1Password is a secure password manager and digital wallet that keeps you safe onlineLots of little bits and pieces this week in a later and shorter than usual update. See the references for all the details,...

Weekly Update 262

Presently sponsored by: Boxcryptor cloud security: Free end-to-end encryption for your files. Check out the seamless encryption solution, Made in Germany!5 years of weekly updates, wow. It's not like anything of much significance has happened in that time, right?!...

Weekly Update 261

Presently sponsored by: 1Password is a secure password manager and digital wallet that keeps you safe onlineNever a dull moment! Most important stuff this week is talking about next week, namely because Scott Helme and I will be dong...

Weekly Update 260

Presently sponsored by: 1Password is a secure password manager and digital wallet that keeps you safe onlineAn early one today as I made space in the schedule to get out on the water 😎 I'm really liking the new...

You Don't Need to Burn off Your Fingertips (and Other Biometric Authentication Myths)

Presently sponsored by: 1Password is a secure password manager and digital wallet that keeps you safe online111 years ago almost to the day, a murder was committed which ultimately led to the first criminal trial to use fingerprints as...

Welcoming the Czech Republic Government to Have I Been Pwned

Presently sponsored by: 1Password is a secure password manager and digital wallet that keeps you safe onlineFor the last few years, I've been welcome national governments to Have I Been Pwned (HIBP) and granting them full and free access...

Welcoming the Czech Republic Government to Have I Been Pwned

Presently sponsored by: 1Password is a secure password manager and digital wallet that keeps you safe onlineFor the last few years, I've been welcome national governments to Have I Been Pwned (HIBP) and granting them full and free access...

Weekly Update 259

Presently sponsored by: 1Password is a secure password manager and digital wallet that keeps you safe onlineI'm  back from the most epic of holidays! How epic? Just have a scroll through the thread:I’m back! Went offline for most of...

Weekly Update 258

Presently sponsored by: 1Password is a secure password manager and digital wallet that keeps you safe onlineA really brief intro as this is my last key strokes before going properly off the grid for the next week (like really...

Weekly Update 257

Presently sponsored by: 1Password is a secure password manager and digital wallet that keeps you safe onlineIt all feels a bit "business as usual" this week; data breaches, IoT and 3D printing. But what I'm most excited about is...

Hello CISO – Brought to You in Collaboration with 1Password

Presently sponsored by: 1Password is a secure password manager and digital wallet that keeps you safe onlineToday I'm really excited to announce a big piece of work 1Password and I have been focusing on this year, a totally free...

Weekly Update 256

Presently sponsored by: Varonis. Reduce your SaaS blast radius with data-centric security for AWS, G Drive, Box, Salesforce, Slack and more.Well this week went on for a bit, an hour and 6 mins in all. The 2 Apple things...

Why No HTTPS? The 2021 Version

Presently sponsored by: Varonis. Reduce your SaaS blast radius with data-centric security for AWS, G Drive, Box, Salesforce, Slack and more.More than 3 years ago now, Scott Helme and I launched a little project called Why No HTTPS? It...

Welcoming the Turkish Government to Have I Been Pwned

Presently sponsored by: Varonis. Reduce your SaaS blast radius with data-centric security for AWS, G Drive, Box, Salesforce, Slack and more.Today I'm very happy to welcome the national Turkish CERT to Have I Been Pwned, TR-CERT or USOM, the...

Weekly Update 255

Presently sponsored by: Varonis. Reduce your SaaS blast radius with data-centric security for AWS, G Drive, Box, Salesforce, Slack and more.I'm back in the office this week and back to decent audio and video quality. There's loads of bits...

3D Printing with Kids on Lenovo Yoga 7i

Presently sponsored by: Varonis. Reduce your SaaS blast radius with data-centric security for AWS, G Drive, Box, Salesforce, Slack and more.The greatest gift I can give my kids is a love of technology. I mean after all the usual...
The Register

China Telecom booted out of USA as Feds worry it could disrupt or spy on local networks

FCC urges more action against Huawei and DJI, too The US Federal Communications Commission (FCC) has terminated China Telecom's authority to provide communications services in the USA.…
SecurityWeek

150 People Arrested in US-Europe Darknet Drug Probe

Law enforcement officials in the U.S. and Europe have arrested 150 people and seized more than $31 million in an international drug trafficking investigation stemming from sales on the darknet, the Justice Department said Tuesday. read more

Free Tool Helps Security Teams Measure Their API Attack Surface

Data Theorem's free API Attack Surface Calculator helps security teams understand potential API exposures.

SquirrelWaffle Loader Malspams, Packing Qakbot, Cobalt Strike

Say hello to what could be the next big spam player: SquirrelWaffle, which is spreading with increasing frequency via spam campaigns and infecting systems with a new malware loader.

North Korea's Lazarus Group Turns to Supply Chain Attacks

State-backed group is among a growing number of threat actors looking at supply chain companies as an entry point into enterprise networks.