Hot Topics

Security Operations

a little teapot, short and stout

Lapsus$ Jury Says Teen Duo Did Do Crimes

| | Arion Kurtaj, Grand Theft Auto, Lapsus$, Ransomware, Rockstar Games, SB Blogwatch, Strawberry Tempest
Arion Kurtaj and anon minor: Part of group that hacked Uber, Nvidia, Microsoft, Rockstar Games and many more ...
Security Boulevard
abandoned house

Ransomware Robs Realtors — Rapattoni MLS-aaS Down: Day 8 and Counting

| | legacy, Legacy Application, legacy applications, legacy apps, legacy IT, legacy Software, legacy system security risk, legacy systems, MLS, Ransomware, Rapattoni, real estate, real estate agents, realtors, SaaS, SB Blogwatch
MLS FAIL: Home listings SaaS dead in the water as real estate agents lose leads ...
Security Boulevard
power plant

‘Sabotage the Factory’ — 16 Big Bugs in Codesys ICS/OT/SCADA Software

| | CoDe16, Codesys, ICS, ICS/SCADA, ICS/SCADA Security, operational technologies, operational technology, operational technology security, OT, SB Blogwatch, SCADA, Vladimir Eliezer Tokarev, Vladimir Tokarev
CoDe16 FAIL: Researchers unveil high-severity vulns in Codesys Control, used in millions of devices ...
Security Boulevard
DHS secretary Alejandro Mayorkas

Teenage Hackers Must be Stopped: US DHS’s CSRB Report

| | 2 factor auth, 2-factor authentication, 2fa, 2FA bypass, 2FA Flaws, 2FA phishing, 2FA policies, 2FA/MFA, cellphone fraud, CSRB, Cyber Safety Review Board, Department of Homeland Security, DHS, DUAL FACTOR AUTHENTICATION, factor auth, homeland security, Homeland Security Presidential Directive, homelandsecurity, Lapsus$, Multi-Factor Authentication, Multi-Factor Authentication (MFA), Multifactor Authentication, SB Blogwatch, SIM swap, sim swap fraud, SIM swap scams, SIM swapping, two factor authentication, U.S. Department of Homeland Security, United States Department of Homeland Security, US Homeland Security
2FA SMS FAIL: Lapsus$ social engineers exploited weak two-factor authentication. Something must be done! (Well, this is something.) ...
Security Boulevard
School bus

Ransomware in Schools: White House Wants Action NOW

| | Alejandro Mayorkas, Biden, Biden administration, Biden cybersecurity summit, Biden National Cybersecurity Strategy, Biden-Harris, Colorado, education, fcc, Federal Communications Commission, High school attacks, Jessica Rosenworcel, Joe Biden, K-12, K-12 Cloud Risks, K-12 Cloud Security, K-12 cybersecurity, K-12 Education, K-12 Schools, Keith Krueger, President Biden, Ransomware, SB Blogwatch, school, Schools, U.S. Federal Communications Commission, White House
Don’t make me tap the sign: Biden administration hosts summit; bangs heads together from government, school districts and industry ...
Security Boulevard
Crosswind landing

How to Get Unlimited Airline Miles: Researchers Find the Cheat Codes

| | air miles, airline, airline apps, Airlines, frequent flyer, Hotel Cybersecurity, hotels, Points, Points.com, SB Blogwatch
That’s not supposed to happen: Three ethical hackers found five huge bugs in Points.com ...
Security Boulevard
8 Black Hat sessions you don’t want to miss

8 Black Hat sessions you don’t want to miss

|
Now in its 27th year, the Black Hat USA conference has grown into one of the biggest and most prestigious cybersecurity shows in the world — a showcase for top security experts ...
ReversingLabs Blog
Communications satellite

‘Wagner Mercenary’ Hackers Destroy Russian Satellite Comms

| | Dozor-Teleport, false flag, Russia, Russia-Ukraine, russia-ukraine conflict, Russia's War on Ukraine, Satellite Attacks, Satellite Communications, Satellite Hacking, Satellites, SB Blogwatch, Ukraine, ukraine conflict, Ukraine Cyber War, Ukraine cyberattack, Ukraine-Russia War
Dozor-Teleport hack, vandalism and data breach. But is it a Ukrainian false flag op? ...
Security Boulevard
7

Microsoft Repeatedly Burned in ‘Layer 7’ DDoS

| | Anonymous, Anonymous Hacking Collective, Anonymous Sudan, Application DDoS, application-layer DDoS attacks, azure, Azure cloud, Cloud DDoS, cloud outage, ddos, DDoS attack, DDoS attacks, Downtime and outages, killnet, Microsoft, Microsoft 365, Microsoft 365 outage, Microsoft 365 service outage alert, Microsoft Azure, Microsoft Azure Security, Microsoft Office 365, office 365, Office 365 Cloud Security, Office 365 Security, outage, outages, SB Blogwatch, Storm-1359
Unlucky number: Time and again this month, “Russian” hackers bring down Microsoft clouds ...
Security Boulevard
John Oliver

Reddit Ransomware Raid Redux: BlackCat/ALPHV Demands $4.5M

| | ALPHV ransomware, Blackcat, BlackCat ransomware, Breach, Privacy, Ransomware, reddit, Reddit breach, SB Blogwatch
And now, this: John-Oliver-pics protest won’t change Reddit policy, but will ransom demand work? ...
Security Boulevard
Load more