Editorial Calendar
Huge DNA PII Leak: 23andMe Must Share the Blame
Richi Jennings | | 23andMe, Compromised Credential, compromised credentials, compromised credentials monitoring, Credential Compromise, Credential Management and Enforcement for ICS/SCADA environments, credential replay attacks, credential reuse, credential stuffing, credential stuffing attack, Credential Stuffing Attacks, DEVOPS, DevSecOps, DNA, GDPR, iam, password reuse, pii, PII Leakage, SB Blogwatch
DNA: Do Not Agree. 23andMe says it’s not a breach—just credential stuffing. I’m not so sure ...
Security Boulevard
AI More Helpful Than Harmful in Cybersecurity
The majority of of IT security managers see the use of AI in security tools as helpful rather than a threat they must defend against ...
Security Boulevard
iPhone/iPad Warning: Update Now to Avoid Zero-Day Pain
Richi Jennings | | Apple, Apple iPhone, Apple zero-day, CVE-2023-42824, CVE-2023-5217, iOS 7, iPadOS Vulnerability, iPhone, iPhone and iPad, iphone update, SB Blogwatch, Zero Day Attacks, zero-day vulnerabilities, Zero-day Vulnerability, zero-days
Apple’s embarrassing regression: iOS 17.0.3 fixes yet more nasty zero-days (and the overheating bug) ...
Security Boulevard
Generative AI: Cybersecurity’s Ally or Adversary?
Ori Arbel | | advanced threat detection, AI, Cybersecurity, Data Privacy, deepfake attacks, generative AI
While generative AI offers significant benefits, security professionals must remain vigilant to effectively use the tech for cybersecurity ...
Security Boulevard
Broken ARM: Mali Malware Pwns Phones
Richi Jennings | | android, ARM, CVE-2023-33200, CVE-2023-34970, CVE-2023-4211, GPU, hardware supply chain, Linux, Mali, open source software supply chain, SB Blogwatch, software supply chain, software supply chain risk, Software Supply Chain risks, software supply chain security, Software Supply Chain Security Risks
Exploited in the wild: Yet more use-after-free vulns in Arm’s Mali GPU driver ...
Security Boulevard
Don’t Say ‘Skynet’ — NSA’s AI Security Center is New Hub for Agency Efforts
Richi Jennings | | AI, AI (Artificial Intelligence), AI Security, AI Security Center, artificial, Artificial Intelligence, Artificial Intelligence (AI), Artificial Intelligence (AI)/Machine Learning (ML), Artificial Intelligence Cybersecurity, Cyber Command, cybersecurity risks of generative ai, Gen. Paul Nakasone, generative AI, Generative AI risks, large language models, Large Language Models (LLM), Large language models (LLMs), LLM, LLMs, machine learnings, National Security Agency, nsa, SB Blogwatch, Security Machine Learning, U.S. Cyber Command, U.S. National Security Agency, US Cyber Command, USMC Forces Cyber Command
COME WITH ME IF YOU WANT TO LIVE: Nothing suspicious to see here—move along ...
Security Boulevard
China-Backed Hacks of Cisco Routers Worry Feds — BlackTech Revenge?
Richi Jennings | | BlackTech, CCP, china, china espionage, cisa, cisco, FBI, hong kong, Japan, nsa, Peoples Republic of China, SB Blogwatch, Taiwan
TTP: IOS EEM CLI BBQ LOL—FBI, NSA, CISA join Japan’s NISC to warn of espionage group linked to Chinese Communist Party ...
Security Boulevard
Types of Adversarial ML Attacks and How To Overcome Them
Brad Fisher | | Adversarial Attacks, AI, Availability Attacks, Cybersecurity, defensive distillation, Evasion Attacks, Integrity Attacks, Machine Learing, Model Extraction, Poisoning Attacks, White-box and black-box attacks
Machine learning-powered algorithms are susceptible to a variety of adversarial attacks that aim to degrade their performance ...
Security Boulevard
‘All of Sony’ Hacked, Claims Ransomed.vc Group
Hackers Play in Sony’s World: If true, Sony might have to push the RESET button (again) ...
Security Boulevard
More iOS Zero-Days, More Mercenary Spyware — This Time: Cytrox Predator
Richi Jennings | | 0day, Ahmed Eltantawy, Apple iOS, Apple zero-day, Citizen Lab, CVE-2023-41991, CVE-2023-41992, CVE-2023-41993, CVE-2023-4762, Cytrox, egypt, Google Project Zero, ios, iOS spyware, Predator spyware, Privacy, Sandvine, SB Blogwatch, spyware, Vodafone, Vodafone Egypt
Apple Scrambled to Fix 3 More CVEs: Egyptian opposition presidential candidate Ahmed Eltantawy targeted “by the government ...
Security Boulevard