Patched Cisco Router Vulnerability Poses Security Risks
A previously patched Cisco router vulnerability has been exploited by APT28 to conduct reconnaissance and deploy malware, a CISA advisory read. The Cybersecurity and Infrastructure…
Month: April 2023
Summary: Andrej Karpathy on Lex Fridman’s Podcast (Late 2022)
This is member content. Thank you for being a subscriber. .memberful-global-teaser-content p:last-child{ -webkit-mask-image: linear-gradient(180deg, #000 0%, transparent); mask-image: linear-gradient(180deg, #000 0%, transparent); } This is…
March 2023 broke ransomware attack records with 459 incidents
March 2023 was the most prolific month recorded by cybersecurity analysts in recent years, measuring 459 attacks, an increase of 91% from the previous month…
Pakistani Hackers Use Linux Malware Poseidon to Target Indian Government Agencies
Apr 19, 2023Ravie LakshmananLinux / Malware The Pakistan-based advanced persistent threat (APT) actor known as Transparent Tribe used a two-factor authentication (2FA) tool used by…
CyberUK 23: NCSC launches Cyber Advisor service for SMEs
Small and medium-sized enterprises (SMEs) that all too often lack the time, money or staff to implement appropriate cyber security policies and protections can now…
Secure application architecture basics: separation, configuration, and access
A starting point for building secure application architecture, for busy developers. Software developers today are encouraged to focus on building, and that’s a great thing.…
Play ransomware gang uses custom Shadow Volume Copy data-theft tool
The Play ransomware group has developed two custom tools in .NET, namely Grixba and VSS Copying Tool, which it uses to improve the effectiveness of…
CyberUK 23: NCSC CEO calls for collaboration and warns against complacency
NCSC CEO Lindy Cameron has opened the agency’s annual CyberUK conference in Belfast with a call for collaboration across the industry and a reminder not…
Google patches another actively exploited Chrome zero-day
Google has released a security update for the Chrome web browser to fix the second zero-day vulnerability found to be exploited in attacks this year.…
How ChatGPT—and Bots Like It—Can Spread Malware
The AI landscape has started to move very, very fast: consumer-facing tools such as Midjourney and ChatGPT are now able to produce incredible image and…
Uncovering (and Understanding) the Hidden Risks of SaaS Apps
Recent data breaches across CircleCI, LastPass, and Okta underscore a common theme: The enterprise SaaS stacks connected to these industry-leading apps can be at serious…
IR35 a ‘threat’ to UK’s bid to become science and tech superpower, contracting authority warns
The government’s controversial IR35 tax avoidance legislation threatens to derail the UK’s bid to become a science and technology superpower, contracting authority Qdos has warned.…