Thursday, June 1, 2023

Weekly Update 349

Presently sponsored by: Kolide can get your cross-platform fleet to 100% compliance. It's Zero Trust for Okta. Want to see for yourself? Book a demo.This week's update is dominated by my experience with "Lena", the scammer from Gumtree who...

Weekly Update 348

Presently sponsored by: Kolide can get your cross-platform fleet to 100% compliance. It's Zero Trust for Okta. Want to see for yourself? Book a demo.I feel like the .zip TLD debate is one of those cases where it's very...

Weekly Update 347

Presently sponsored by: Kolide ensures only secure devices can access your cloud apps. It's Zero Trust tailor-made for Okta. Book a demo today.A late one this week as I cover from the non-stop conferencing that was the Azure user...

Weekly Update 346

Presently sponsored by: Kolide ensures only secure devices can access your cloud apps. It's Zero Trust tailor-made for Okta. Book a demo today.It's a bit of a mixed bag this week with a very light-hearted look at the death...

Weekly Update 345

Presently sponsored by: Kolide ensures only secure devices can access your cloud apps. It's Zero Trust tailor-made for Okta. Book a demo today.I stand by my expression in the image above. It's a perfectly accurate representation of how I...

Weekly Update 344

Presently sponsored by: Kolide ensures only secure devices can access your cloud apps. It's Zero Trust tailor-made for Okta. Book a demo today.I feel like a significant portion of this week's video went to discussing "the Coinbase breach that...

Weekly Update 343

Presently sponsored by: Kolide ensures only secure devices can access your cloud apps. It's Zero Trust tailor-made for Okta. Book a demo today.A bit late this week as I've prioritised time out with the family doing as many New...

Weekly Update 342

Presently sponsored by: Kolide ensures only secure devices can access your cloud apps. It's Zero Trust tailor-made for Okta. Book a demo today.Next time I post a poll about something as simple as "when is next Friday", I don't...

Weekly Update 341

Presently sponsored by: Kolide ensures only secure devices can access your cloud apps. It's Zero Trust tailor-made for Okta. Book a demo today.Most of this week's video went on talking about the UniFi Dream Wall. What a unit! I...

Weekly Update 340

Presently sponsored by: Kolide ensures only secure devices can access your cloud apps. It's Device Trust tailor-made for Okta. Book a demo today.I'm excited about coming to Prague. One more country to check off the list, apparently a beautiful...

Weekly Update 339

Presently sponsored by: Kolide ensures only secure devices can access your cloud apps. It's Device Trust tailor-made for Okta. Book a demo today.Why can't I audio right? It's my 339th video and I still make mistakes 🙂 But it...

Weekly Update 338

Presently sponsored by: Kolide ensures only secure devices can access your cloud apps. It's Device Trust tailor-made for Okta. Book a demo today.I'm going lead this post with where I finished the video because it brought the biggest smile...

Weekly Update 337

Presently sponsored by: Kolide ensures only secure devices can access your cloud apps. It's Device Trust tailor-made for Okta. Book a demo today.Guns! You know, the things you kinda want to keep pretty well protected and out of the...

Weekly Update 336

Presently sponsored by: Kolide ensures only secure devices can access your cloud apps. It's Device Trust tailor-made for Okta. Book a demo today.Hey, it's double-Troy! I'm playing with the Insta360 Link cam, a gimbal-based model that can follow you...

Weekly Update 335

Presently sponsored by: Kolide ensures only secure devices can access your cloud apps. It's Device Trust tailor-made for Okta. Book a demo today.No cyber. It's literally a "cyber-free" week, as least far as the term relates to security things....

Weekly Update 334

Presently sponsored by: Kolide ensures only secure devices can access your cloud apps. It's Device Trust tailor-made for Okta. Book a demo today.Did I really need to get a connected BBQ? No more than I needed to connect most...

Weekly Update 333

Presently sponsored by: CrowdSec - Gain crowd-sourced protection against malicious IPs and benefit from the most accurate CTI in the world. Get started for free.Getting everything out nice and early today so we can get out there in hit...

Weekly Update 332

Presently sponsored by: CrowdSec - Gain crowd-sourced protection against malicious IPs and benefit from the most accurate CTI in the world. Get started for free.Breaches all over the place today! Well, this past week, and there's some debate as...

Weekly Update 331

Presently sponsored by: CrowdSec - Gain crowd-sourced protection against malicious IPs and benefit from the most accurate CTI in the world. Get started for free.Well and truly back into the swing of things in the new year, I think...

Weekly Update 330

Presently sponsored by: CrowdSec - The open-source & collaborative security stack: respond to attacks & share signals across the community. Download it for freeBig week! So big, in fact, that I rushed into this week's update less prepared and...
The Hacker News

Active Mirai Botnet Variant Exploiting Zyxel Devices for DDoS Attacks

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a recently patched critical security flaw in Zyxel gear to its Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation. Tracked as CVE-2023-28771 (CVSS score: 9.8), the issue relates to a command injection flaw impacting...
The Hacker News

Urgent WordPress Update Fixes Critical Flaw in Jetpack Plugin on Million of Sites

WordPress has issued an automatic update to address a critical flaw in the Jetpack plugin that’s installed on over five million sites. The vulnerability, which was unearthed during an internal security audit, resides in an API present in the plugin since version 2.0,...
The Register

Dark Pink cyber-spies add info stealers to their arsenal, notch up more victims

Not to be confused with K-Pop sensation BLACKPINK, gang pops military, govt and education orgs Dark Pink, a suspected nation-state-sponsored cyber-espionage group, has expanded its list of targeted organizations, both geographically and by sector, and has carried out at...
The Register

Feds, you’ll need a warrant for that cellphone border search

Here's a story with a twist A federal district judge has ruled that authorities must obtain a warrant to search an American citizen's cellphone at the border, barring exigent circumstances.…
Graham Cluley

Smashing Security podcast #324: .ZIP domains, AI lies, and did social media inflame a riot?

height="315" class="aligncenter size-full wp-image-292324" /> ChatGPT hallucinations cause turbulence in court, a riot in Wales may have been ignited on social media, and do you think .MOV is a good top-level domain for "a website that moves you"? All this and...