DevSecOps
Facebook/Insta FAIL — ‘Anonymous Sudan’ has a Super Tuesday: ‘We Did It.’
Richi Jennings | | Anonymous, Anonymous Hacking Collective, Anonymous Sudan, API Authentication, API Authentication Errors, API Authorization, Application DDoS, application-layer DDoS attacks, Cloud DDoS, cloud outage, ddos, DDoS attack, DDoS attacks, Downtime and outages, facebook, Facebook accounts, facebook breach, facebook instagram hack, facebook login, Facebook outage, Instagram, Instagram outage, instagram vulnerability, Internet outage, internet outages, InternetOutage, Meta, Meta Networks, outage, Outage Investigation, outages, SB Blogwatch, Storm-1359, Stupidity of Instagram, Threads
Shooper Choosday: Was yesterday’s Meta outage outrage caused by a Russian DDoS? ...
Security Boulevard
Self-Replicating AI Malware is Here😱 #ComPromptMized
Richi Jennings | | AI, Artificial Intelligence (AI), Artificial Intelligence (AI)/Machine Learning (ML), Artificial Intelligence News, artificial intellignece, Artificial Stupidity, artificialintelligence, ComPromptMized, cybersecurity risks of generative ai, generative AI, Generative AI risks, Large Language Models (LLM), Large language models (LLMs), LLM, LLMs, Morris Worm, SB Blogwatch, worm, worm morris, WormGPT
Skrik: Researchers worm themselves into your nightmares ...
Security Boulevard
GitHub Fights Forks — Millions of Them — Huge Software Supply Chain Security FAIL
Richi Jennings | | Apiiro, App Sec & Supply Chain Security, AppSec & Supply Chain Security, dependency confusion, dependency confusion attacks, GitHub, github application security, github bug, GitHub Exploit, GitHub repositories, GitHub Security Measures, github security scanning, GitHub Security Vulnerabilities, Open Source and Software Supply Chain Risks, open source software supply chain, open source software supply chain security, repo confusion, SB Blogwatch, secure software supply chain, software supply chain, software supply chain attack, software supply chain attacks, software supply chain automation, software supply chain hygiene, software supply chain risk, Software Supply Chain risks, software supply chain security, Software Supply Chain Security Weaknesses, supply chain, supply chain security, Supply-Chain Insecurity
Forking hell: Scrotebots clone thousands of projects, injecting malware millions of times ...
Security Boulevard
US Will Fight Russian Disinformation — Hacks and Leaks and Deepfakes, Oh My!
Richi Jennings | | deepfake, deepfake attacks, Deepfake Detection, Deepfake security threats, Deepfake Technology, deepfake videos, deepfakes, Department of State, disinformation, election disinformation, James Rubin, online disinformation, Russia, Russia-Ukraine, russia-ukraine conflict, Russia's War on Ukraine, SB Blogwatch, Social disinformation, State Department, U.S. Department of State, Ukraine, ukraine conflict, ukraine war scams, Ukraine-Russia War, Ukraine/European Security, US department of state
Pay no attention to that man: State Dept. Global Engagement Centre chief James Rubin (pictured) follows the yellow brick road ...
Security Boulevard
LockBit Takedown by Brits — Time for ‘Operation Cronos’
Richi Jennings | | British, British intelligence, Infrastructure Takedown, Lockbit, LockBit ransomware, National Crime Agency, network takedown, Operation Cronos, SB Blogwatch, takedown, takedowns, U.K. National Crime Agency, uk, website takedown, website takedowns
RaaS nicked: 11-nation army led by UK eliminates ransomware-for-hire scrotes’ servers ...
Security Boulevard
DoD Email Breach: Pentagon Tells Victims 12 Months Late
Richi Jennings | | Anurag Sen, azure, Azure cloud, Azure Government Cloud, Compliance Automation Platform for FedRAMP, data privacy PII, defense department, Department of Defense, devops in government, DevSecOps in Government, digital government, DoD, email, Federal Government, Federal Government Bids, FedRAMP, fedramp accreditation;, fedramp ato, fedramp certification, fedramp compliance, government, Microsoft Azure, Microsoft Azure Security, Microsoft Exchange, Microsoft Exchange Server, pentagon, pii, PII Leakage, SB Blogwatch, U.S. Department of Defense, United States Department of Defense, US DOD, USDoD, USSOCOM
3TB Email FAIL: Personal info of tens of thousands leaks. Microsoft cloud email server was missing a password ...
Security Boulevard
‘Incompetent’ FCC Fiddles With Data Breach Rules
Richi Jennings | | breach notification, Data Breach Notification, data breach notification laws, fcc, FCC Failures, FCC Follies, FCC privacy rules, Federal Communications Commission, GDPR Breach Notification, Jessica Rosenworcel, SB Blogwatch, U.S. Federal Communications Commission
FCC FAIL: While Rome burns, Federal Communications Commission is once again behind the curve ...
Security Boulevard
Linux Vendors Squawk: PATCH NOW — CVSS 9.8 Bootkit Bug in shim.efi
Richi Jennings | | BIOS, CVE-2023-40547, Enterprise Linux and Open Source, Linux, open source, Open Source and Software Supply Chain Risks, open source code, Open Source Community, open source components, open source development, Open Source Ecosystem, SB Blogwatch, secure boot, shim, UEFI, UEFI Failing, UEFI vulnerabilities
Snow joke: A Microsoft researcher found it—and it’s somehow Microsoft’s fault ...
Security Boulevard
Microsoft Ditches C# for Rust: M365 Core Gets Safety and Perf Boosts
C# — Rust in peas: Microsoft 365 “Core Platform Substrate” gets rewrite in Rust language ...
Security Boulevard
FBI Warning: China Will Hack US Infra. (via Router Botnet)
Richi Jennings | | BRONZE SILHOUETTE, china, Chinese Communists, chinese government, chinese hacker, Chinese hackers, Chinese Threat Actors, election cybersecurity, FBI Director Christopher Wray, Peoples Republic of China, PRC, SB Blogwatch, Volt Typhoon
a/k/a BRONZE SILHOUETTE: FBI head Wray won’t tolerate China’s “real-world threat to our physical safety.” ...
Security Boulevard