Richi Jennings Richi Jennings is a foolish independent industry analyst, editor, and content strategist. A former developer and marketer, he’s also written or edited for Computerworld, Microsoft, Cisco, Micro Focus, HashiCorp, Ferris Research, Osterman Research, Orthogonal Thinking, Native Trust, Elgan Media, Petri, Cyren, Agari, Webroot, HP, HPE, NetApp on Forbes and CIO.com. Bizarrely, his ridiculous work has even won awards from the American Society of Business Publication Editors, ABM/Jesse H. Neal, and B2B Magazine.
Richi Jennings
Irony of Ironies: CISA Hacked — ‘by China’
Richi Jennings | | china, china espionage, Chinese, Chinese Communists, Chinese drive-by attack, chinese government, chinese hacker, Chinese hackers, Chinese state-sponsored hacking group, Chinese Threat Actors, CIRCIA, cisa, CISA.gov, CVE-2023-46805, CVE-2024-21887, CVE-2024-21893, Cyber Security and Infrastructure Security Agency, Cybersecurity & Infrastructure Security Agency, Cybersecurity and Infrastructure Agency, Data Stolen By China, federal agency, Ivanti, Ivanti Connect Secure, Ivanti Policy Secure, Ivanti security, Ivanti Vulnerabilities, Ivanti Zero day vulnerability, Ligolo, Magnet Goblin, NerbianRAT, NSA/CISA, Peoples Republic of China, SB Blogwatch, Volt Typhoon, WARPWIRE
Free rides and traffic jams: U.S. Cybersecurity and Infrastructure Security Agency penetrated in February, via vuln in Ivanti ... Read More
Security Boulevard
TikTok Ban Incoming — but ByteDance Fights Back
Richi Jennings | | Bytedance, china, chinese government, Privacy, SB Blogwatch, social media, spyware, TikTok, TikTok Ban
Hilltop BillTok: ByteDance mobilizing addicted user base, as U.S. TikTok ban steamrolls through Capitol Hill after unanimous committee vote ... Read More
Security Boulevard
Facebook/Insta FAIL — ‘Anonymous Sudan’ has a Super Tuesday: ‘We Did It.’
Richi Jennings | | Anonymous, Anonymous Hacking Collective, Anonymous Sudan, API Authentication, API Authentication Errors, API Authorization, Application DDoS, application-layer DDoS attacks, Cloud DDoS, cloud outage, ddos, DDoS attack, DDoS attacks, Downtime and outages, facebook, Facebook accounts, facebook breach, facebook instagram hack, facebook login, Facebook outage, Instagram, Instagram outage, instagram vulnerability, Internet outage, internet outages, InternetOutage, Meta, Meta Networks, outage, Outage Investigation, outages, SB Blogwatch, Storm-1359, Stupidity of Instagram, Threads
Shooper Choosday: Was yesterday’s Meta outage outrage caused by a Russian DDoS? ... Read More
Security Boulevard
Self-Replicating AI Malware is Here😱 #ComPromptMized
Richi Jennings | | AI, Artificial Intelligence (AI), Artificial Intelligence (AI)/Machine Learning (ML), Artificial Intelligence News, artificial intellignece, Artificial Stupidity, artificialintelligence, ComPromptMized, cybersecurity risks of generative ai, generative AI, Generative AI risks, Large Language Models (LLM), Large language models (LLMs), LLM, LLMs, Morris Worm, SB Blogwatch, worm, worm morris, WormGPT
Skrik: Researchers worm themselves into your nightmares ... Read More
Security Boulevard
Cheap Video Doorbell Cams: Tools of Stalkers and Thieves
Richi Jennings | | Andoe, Anker, camera, camera hijacking, camera vulnerability, cameras, CCTV camera, CCTV cameras, Consumer IoT, Consumer Reports, Doorbell Camera, Eken, enshittification, Eufy, Fishbot, Gemee, hacked Wi-FI, Internet of things, Internet of Things (IoT), Internet of Things (IoT) Security, Internet of Things cyber security, internet-enabled cameras, iot, IoT camera, IoT security camera, IP surveillance cameras, ipcamera, Luckwolf, Rakeblue, Ring Camera, Ring Doorbell, safe wifi, SB Blogwatch, Sears, SHEIN, The ‘S’ in IoT stands for Security, Tuck, unsecure Wi-FI, Wi-Fi, Wi-Fi hacking, Wi-Fi networks, wi-fi security, Wyze
EKEN IoT FAIL: Amazon, Sears and Shein still sell security swerving stuff ... Read More
Security Boulevard
GitHub Fights Forks — Millions of Them — Huge Software Supply Chain Security FAIL
Richi Jennings | | Apiiro, App Sec & Supply Chain Security, AppSec & Supply Chain Security, dependency confusion, dependency confusion attacks, GitHub, github application security, github bug, GitHub Exploit, GitHub repositories, GitHub Security Measures, github security scanning, GitHub Security Vulnerabilities, Open Source and Software Supply Chain Risks, open source software supply chain, open source software supply chain security, repo confusion, SB Blogwatch, secure software supply chain, software supply chain, software supply chain attack, software supply chain attacks, software supply chain automation, software supply chain hygiene, software supply chain risk, Software Supply Chain risks, software supply chain security, Software Supply Chain Security Weaknesses, supply chain, supply chain security, Supply-Chain Insecurity
Forking hell: Scrotebots clone thousands of projects, injecting malware millions of times ... Read More
Security Boulevard
FBI Warns: Ubiquiti EdgeRouter is STILL Not Secure
Richi Jennings | | APT28, Botnet disruption, Botnet Takedown, botnets, CVE-2023-23397, EdgeRouter, Fancy Bear, FBI warning, GRU, IC3, IC3.gov, Military Unit 26165, nsa, NSA/CISA, NTLM, NTLM Authentication, NTLM hash, NTLM leak, ntlm relay, Russia, russia hacker, russia-based, russian, Russian Cyber Interests, Russian Cyber War, SB Blogwatch, Ubiquiti, Ubiquiti breach, Ubiquiti Inc., Ubiquiti Networks, US FBI
GRU APT28 is back again: Fancy Bear still hacking ubiquitous gear, despite patch availability ... Read More
Security Boulevard
US Will Fight Russian Disinformation — Hacks and Leaks and Deepfakes, Oh My!
Richi Jennings | | deepfake, deepfake attacks, Deepfake Detection, Deepfake security threats, Deepfake Technology, deepfake videos, deepfakes, Department of State, disinformation, election disinformation, James Rubin, online disinformation, Russia, Russia-Ukraine, russia-ukraine conflict, Russia's War on Ukraine, SB Blogwatch, Social disinformation, State Department, U.S. Department of State, Ukraine, ukraine conflict, ukraine war scams, Ukraine-Russia War, Ukraine/European Security, US department of state
Pay no attention to that man: State Dept. Global Engagement Centre chief James Rubin (pictured) follows the yellow brick road ... Read More
Security Boulevard
PRC State Hacking: ‘Chinese Edward Snowden’ Spills I‑Soon Secrets in Huge Dump of TTPs
Richi Jennings | | APT41, Auxun, Chengdu 404, china, china espionage, Chinese, Chinese Communists, Chinese devices, chinese government, chinese hacker, Chinese hackers, Chinese Threat Actors, Data Stolen By China, Great Firewall of China, hong kong, i-soon, Insider, insider breach, insider risk, iSoon, Peoples Republic of China, SB Blogwatch, Tibet, Uyghur
Underpaid, overworked and angry: Whistleblower in hacker contractor firm for Chinese government blows lid off tactics, techniques and procedures ... Read More
Security Boulevard
‘PrintListener’ Attack on Fingerprint Readers — Can You Trust Biometrics?🤞
Richi Jennings | | biometric, biometric authentication, biometric data, Biometric Data Abuse, biometric identification, biometric identity, biometric security, biometrics, biometrics authentication, Biometrics-Based Authentication, digital biometrics, digital fingerprint, Fingerprint Scanners, fingerprint scanning, Fingerprint Sensor Vulnerabilities, fingerprint sensors, fingerprints, PrintListener, SB Blogwatch, Side-Channel, side-channel attack, side-channel attacks, sidechannelattacks, touchless fingerprint
Mic Check: Researchers reconstruct your fingerprint by listening to you swipe ... Read More
Security Boulevard