Risky Bulletin
Risky Biz News: Tech companies and security firms rally against EU vulnerability disclosure rules
In other news: Apple and Atlassian patch zero-days; Supermicro patches BMC bugs; PEACHPIT ad fraud botnet goes down.
Latest
Seriously Risky Business
NSA Wants to Protect America's AI Edge
PLUS: Rich Pickings at the Network Edge
Risky Bulletin
Risky Biz News: Ransomware gangs hit TeamCity and WS_FTP servers
In other news: Website leak exposes Russian military and intelligence centers; mandatory MFA for AWS root accounts; and Arm, Google, and Qualcomm patch zero-days.
Risky Bulletin
Risky Biz News: Disclosure snafu delays critical Exim patch more than a year
In other news: New major bug hits Progress (MOVEit) customers; Greek government sabotages spyware investigation; and IronNet ceases all operations.
Risky Bulletin
Risky Biz News: Chinese APT hacks subsidiaries, pivots to corporate headquarters
In other news: Google and Mozilla patch another Chrome & Firefox zero-day; Cisco patches its own zero-day; and new DarkRiver APT targets Russian defense sector.
Seriously Risky Business
Lapsus$: From Flash in the Pan to Raging Fire
PLUS: Russia Drops the Cyber Hammer for the Sickle
Risky Bulletin
Risky Biz News: CISA releases HBOM framework
In other news: Crypto platform Mixin hacked for $200 million; the UK is also conducting hunt-forward missions; and Google open-sources BinDiff.
Risky Bulletin
Risky Biz News: China admits NSA hacked Huawei
In other news: iOS zero-days used to hack Egyptian presidential candidate; new Sandman APT targets telcos across the world; Russia's largest travel agency breached by pro-Ukraine hackers.
Risky Bulletin
Risky Biz News: Lazarus steals $54 million from CoinEx crypto-exchange
In other news: US wants countries to commit to not paying ransoms; Caesars paid $15 million ransom; and Meduza head infected with Pegasus spyware.
Seriously Risky Business
Microsoft's Security Culture Just Isn't up to Scratch
PLUS: The UK Goverment Helps Itself
Risky Bulletin
Risky Biz News: CISA to provide free security scans to public water utilities
In other news: Adobe, Google, Mozilla, and Microsoft patch zero-days; MGM Resorts suffers mysterious cyber incident; and Dutch football federation pays ransom to avoid player data leak.
Risky Bulletin
Risky Biz News: Microsoft to phase out 3rd-party printer drivers for security reasons
In other news: Akira and Lockbit exploit Cisco ASA/FTD zero-day; FBI links Stake crypto-heist to North Korea; Ukrainian hacktivists unmask Russia's Cuban mercenary recruiting scheme.