DevSecOps - Security Boulevard https://securityboulevard.com/category/editorial-calendar/devsecops/ The Home of the Security Bloggers Network Fri, 29 Mar 2024 17:19:26 +0000 en-US hourly 1 https://wordpress.org/?v=6.4.3 https://securityboulevard.com/wp-content/uploads/2021/10/android-chrome-256x256-1-32x32.png DevSecOps - Security Boulevard https://securityboulevard.com/category/editorial-calendar/devsecops/ 32 32 133346385 PyPI Goes Quiet After Huge Malware Attack: 500+ Typosquat Fakes Found https://securityboulevard.com/2024/03/pypi-suspended-500-fakes-richixbw/ Fri, 29 Mar 2024 17:19:26 +0000 https://securityboulevard.com/?p=2013426 Closeup of person going “Shhh!”

Emergency stop button: The Python Package Index was drowning in malicious code again, so they had to shut down registration for cleanup.

The post PyPI Goes Quiet After Huge Malware Attack: 500+ Typosquat Fakes Found appeared first on Security Boulevard.

]]> 2013426 Apple OTP FAIL: ‘MFA Bomb’ Warning — Locks Accounts, Wipes iPhones https://securityboulevard.com/2024/03/mfa-bomb-apple-otp-richixbw/ Thu, 28 Mar 2024 18:46:58 +0000 https://securityboulevard.com/?p=2013312 Multiple, unskippable notifications

Rethink different: First, fatigue frightened users with multiple modal nighttime notifications. Next, call and pretend to be Apple support.

The post Apple OTP FAIL: ‘MFA Bomb’ Warning — Locks Accounts, Wipes iPhones appeared first on Security Boulevard.

]]> 2013312 Revealed: Facebook’s “Incredibly Aggressive” Alleged Theft of Snapchat App Data https://securityboulevard.com/2024/03/ghostbusters-facebook-theft-snapchat-richixbw/ Wed, 27 Mar 2024 17:14:37 +0000 https://securityboulevard.com/?p=2013174 Smokey Bear / This-is-fine crossover

Meta MITM IAAP SSL bump: Zuck ordered “Project Ghostbusters”—with criminal consequences, says class action lawsuit.

The post Revealed: Facebook’s “Incredibly Aggressive” Alleged Theft of Snapchat App Data appeared first on Security Boulevard.

]]> 2013174 Telegram Privacy Nightmare: Don’t Opt In to P2PL https://securityboulevard.com/2024/03/telegram-privacy-nightmare-p2pl-richixbw/ Tue, 26 Mar 2024 17:29:25 +0000 https://securityboulevard.com/?p=2012982 Scary skeletons

Scary SMS shenanigans: Avoid Telegram’s new “Peer-To-Peer Login” program if you value your privacy or your cellular service.

The post Telegram Privacy Nightmare: Don’t Opt In to P2PL appeared first on Security Boulevard.

]]> 2012982 China Steals Defense Secrets ‘on Industrial Scale’ https://securityboulevard.com/2024/03/china-steals-secrets-f5-connectwise-richixbw/ Mon, 25 Mar 2024 17:08:40 +0000 https://securityboulevard.com/?p=2012892 a PRC flag flies in a stiff breeze

UNC5174 ❤ UNC302: CVSS 10 and 9.8 vulnerabilities exploited by Chinese threat actor for People’s Republic.

The post China Steals Defense Secrets ‘on Industrial Scale’ appeared first on Security Boulevard.

]]> 2012892 EPA and White House Raise Alarm on Water Cybersecurity https://securityboulevard.com/2024/03/water-cybersecurity-richixbw/ Wed, 20 Mar 2024 16:22:50 +0000 https://securityboulevard.com/?p=2012433 Public washroom faucets

Iran and China fingered: Biden admin. chides governors: Water infra. lacks “even basic cybersecurity precautions.”

The post EPA and White House Raise Alarm on Water Cybersecurity appeared first on Security Boulevard.

]]> 2012433 TikTok ‘Ban’ — ByteDance CEO and EFF are BFFs https://securityboulevard.com/2024/03/tiktok-ban-bytedance-eff-richixbw/ Mon, 18 Mar 2024 18:24:07 +0000 https://securityboulevard.com/?p=2012210 ByteDance cCEO Shou Zi Chew

7521 momentum builds: Shou Zi Chew plays for time, while Electronic Frontier Foundation says TikTok-kill bill is DOA.

The post TikTok ‘Ban’ — ByteDance CEO and EFF are BFFs appeared first on Security Boulevard.

]]> 2012210 French Gov. Leaks 43 Million People’s Data — ‘France Travail’ Says Sorry https://securityboulevard.com/2024/03/france-travail-hack-richixbw-png/ Fri, 15 Mar 2024 17:00:43 +0000 https://securityboulevard.com/?p=2012074 Présidente de France Travail, Alexandre Saubot

La grande cybermalveillance: French government’s employment agency loses control of citizens’ data after biggest breach in Gallic history.

The post French Gov. Leaks 43 Million People’s Data — ‘France Travail’ Says Sorry appeared first on Security Boulevard.

]]> 2012074 Google Splashes the Cash in Bug Bounty Bonanza: $59 Million to Date https://securityboulevard.com/2024/03/google-bug-bounty-vrp-richixbw/ Wed, 13 Mar 2024 16:57:09 +0000 https://securityboulevard.com/?p=2011800 Two stacks of money on top of a white table.

Wanna be a VRP VIP? Last year, $GOOG paid $10 million to ethical hackers for finding vulnerabilities.

The post Google Splashes the Cash in Bug Bounty Bonanza: $59 Million to Date appeared first on Security Boulevard.

]]> 2011800 Irony of Ironies: CISA Hacked — ‘by China’ https://securityboulevard.com/2024/03/cisa-ivanti-china-richixbw/ Mon, 11 Mar 2024 17:17:53 +0000 https://securityboulevard.com/?p=2011528 Director of the Cybersecurity and Infrastructure Security Agency, Jen Easterly

Free rides and traffic jams: U.S. Cybersecurity and Infrastructure Security Agency penetrated in February, via vuln in Ivanti.

The post Irony of Ironies: CISA Hacked — ‘by China’ appeared first on Security Boulevard.

]]> 2011528