Thursday, May 19, 2022

Weekly Update 295

Presently sponsored by: Varonis for Salesforce. Detect suspicious behavior and strengthen your Salesforce security posture. Try it free!A short one this week as the previous 7 days disappeared with AusCERT and other commitments. Geez it was nice to not...

Weekly Update 294

Presently sponsored by: Got Slack? Got Macs? Get Kolide: Device security that fixes challenging problems by messaging users on Slack. Try Kolide for 14 days free.It's back to business as usual with more data breaches, more poor handling of...

Weekly Update 293

Presently sponsored by: Got Slack? Got Macs? Get Kolide: Device security that fixes challenging problems by messaging users on Slack. Try Kolide for 14 days free.Didn't get a lot done this week, unless you count scuba diving, snorkelling, spear...

Weekly Update 292

Presently sponsored by: Varonis for Salesforce. Protect Salesforce data from overexposure and cyberthreats. Try it free!Well that was an unusual ending. Both my mouse and keyboard decided to drop off right at the end of this week's video and...

Breach Disclosure Blow-by-Blow: Here's Why It's so Hard

Presently sponsored by: Detack. Detect & prevent weak, leaked, shared passwords with EPAS, a patented, privacy compliant solution used in 40 countries. Try it free!For many years now, I've lamented about how much of my time is spent attempting...

Weekly Update 291

Presently sponsored by: Detack. Detect & prevent weak, leaked, shared passwords with EPAS, a patented, privacy compliant solution used in 40 countries. Try it free!Bit of a long one this week, just due to a bunch of stuff all...

Welcoming the North Macedonian Government to Have I Been Pwned

Presently sponsored by: Detack. Detect & prevent weak, leaked, shared passwords with EPAS, a patented, privacy compliant solution used in 40 countries. Try it free!In my ongoing bid to make more useful information on data breaches available to impacted...

Weekly Update 290

Presently sponsored by: Varonis for Salesforce. Detect suspicious behavior and strengthen your Salesforce security posture. Try it free!I hope scheduling these in advance is working well for everyone, the analytics certainly suggest a much higher viewership so I'm going...

Welcoming the Serbian Government to Have I Been Pwned

Presently sponsored by: Varonis for Salesforce. Detect suspicious behavior and strengthen your Salesforce security posture. Try it free!Supporting national governments has been a major cornerstone of Have I Been Pwned for the last 4 years. Today, I'm very happy...

Weekly Update 289

Presently sponsored by: Detack. Detect & prevent weak, leaked, shared passwords with EPAS, a patented, privacy compliant solution used in 40 countries. Try it free!Everyone just came for the Ubiquiti discussion, right? This is such a tricky one; if...

Welcoming the Bulgarian Government to Have I Been Pwned

Presently sponsored by: Detack. Detect & prevent weak, leaked, shared passwords with EPAS, a patented, privacy compliant solution used in 40 countries. Try it free!Data breaches impact us all as individuals, companies and as governments. Over the last 4...

Weekly Update 288

Presently sponsored by: Varonis. Reduce your ransomware blast radius with the leader in data-first security. Try it free!Wow, what a day yesterday! I mentioned at the start of this week's update that Charlotte and I jumped on a chopper...

Welcoming the Italian Government to Have I Been Pwned

Presently sponsored by: Varonis. Reduce your ransomware blast radius with the leader in data-first security. Try it free!For the last 4 years, I've been providing API-level access to national government agencies so that they can search and monitor their...

Weekly Update 287

Presently sponsored by: CrowdSec - The open-source & collaborative IPS: respond to attacks & share signals across the community. Download it for free.So the plan was to schedule this week's session in advance then right on 17:30 at my...

Setting the Bar for Government Access to Have I Been Pwned

Presently sponsored by: Varonis. Reduce your ransomware blast radius with the leader in data-first security. Try it free!Over the last 4 years, I've onboarded 28 national government CERTs onto Have I Been Pwned (HIBP) and given them free and...

Weekly Update 286

Presently sponsored by: Varonis. Reduce your ransomware blast radius with the leader in data-first security. Try it free!Somehow this week ended up being all about Russia and Cloudflare. Mostly as 2 completely separate topics, but also a little bit...

Building Password Purgatory with Cloudflare Pages and Workers

Presently sponsored by: Varonis. Reduce your ransomware blast radius with the leader in data-first security. Try it free!I have lots of little ideas for various pet projects, most of which go nowhere (Have I Been Pwned being the exception),...

Weekly Update 285

Presently sponsored by: CrowdSec - Check out our CTI Console, monitor attacks on your network, mitigate them and get intelligence on attackers. Sign up for free.With travel now behind me, I'm back to a stable schedule and doing these...

Weekly Update 284

Presently sponsored by: Varonis. Reduce your ransomware blast radius with the leader in data-first security. Try it free!A little late this week as the tail end of travel bites into my time, but it's nice to be home again...

I Wanna Go Fast: How Many Pwned Password Queries Can You Make Per Second?

Presently sponsored by: Varonis. Reduce your ransomware blast radius with the leader in data-first security. Try it free!I feel the need, the need for speed.Faster, Faster, until the thrill of speed overcomes the fear of death.If you're in control,...
SecurityWeek

QuSecure Lauches Quantum-Resilient Encryption Platform

New firm launches to provide the Easy Button for implementing quantum secure encryption The pressure to implement quantum secure encryption is increasing. This isn’t because functioning quantum computers able to crack asymmetric encryption are expected tomorrow, but because of the...
The Register

Iran, China-linked gangs join Putin’s disinformation war online

They're using the invasion 'to take aim at the usual adversaries,' Mandiant told The Reg Pro-Beijing and Iran miscreants are using the war in Ukraine to spread disinformation that supports these countries' political interests — namely, advancing anti-Western narratives...

6 Scary Tactics Used in Mobile App Attacks

Mobile attacks have been going on for many years, but the threat is rapidly evolving as more sophisticated malware families with novel features enter the scene.
SecurityWeek

LimaCharlie Banks $5.45 Million in Seed Funding

LimaCharlie, a California company supplying tools to run an MSSP or SOC on a pay-as-you-use model, has attracted $5.45 million in seed round financing. read more