![[tl;dr sec] #198 - Building a Detection as Code Pipeline, NIST on CI/CD Supply Chain Security, Finding Malware with LLMs](https://cybernoz.com/wp-content/uploads/2023/09/tldr-sec-198-Building-a-Detection-as-Code-Pipeline.jpg "[tl;dr sec] #198 - Building a Detection as Code Pipeline, NIST on CI/CD Supply Chain Security, Finding Malware with LLMs 1")
[tl;dr sec] #198 – Building a Detection as Code Pipeline, NIST on CI/CD Supply Chain Security, Finding Malware with LLMs
I hope you’ve been doing well! ⏰ Time Between having a full time job and writing this newsletter, I can...
Read more →Author: Cybernoz
See Tickets Alerts 300,000 Customers After Another Web Skimmer Attack
Ticketing services agency See Tickets has notified more than 300,000 individuals that their payment card data was stolen in a...
Read more →
Johnson & Johnson discloses IBM data breach impacting patients
Johnson & Johnson Health Care Systems (“Janssen”) has informed its CarePath customers that their sensitive information has been compromised in...
Read more →
UK and US slap fresh sanctions on Conti ransomware crew
The UK and US governments have imposed fresh sanctions, including asset freezes and travel bans, on 11 alleged members of...
Read more →
‘Atomic macOS Stealer’ Malware Delivered via Malvertising Campaign
A piece of malware named Atomic macOS Stealer, or AMOS, has been delivered by cybercriminals through a malvertising campaign, Malwarebytes...
Read more →
Two flaws in Apache SuperSet allow to remotely hack servers
Two flaws in Apache SuperSet allow to remotely hack servers Pierluigi Paganini September 07, 2023 A couple of security vulnerabilities...
Read more →
US and UK sanction 11 TrickBot and Conti cybercrime gang members
The USA and the United Kingdom have sanctioned eleven Russian nationals associated with the TrickBot and Conti ransomware cybercrime operations. The...
Read more →
IBM Notifies Janssen CarePath Customers of Data Breach
Janssen CarePath data breach exposed names, contact info, insurance info, and medication data. IBM disabled a “technical method” used to...
Read more →
How Chinese hackers got their hands on Microsoft’s token signing key
The mystery of how Chinese hackers managed to steal a crucial signing key that allowed them to breach Microsoft 365’s...
Read more →
IT leaders ‘oblivious’ to the environmental impact of ‘unwanted’ data, research shows
The majority of enterprises are seemingly oblivious to the environmental impact of their data storage strategies, suggests research commissioned by...
Read more →
CISA Releases Guidance on Adopting DDoS Mitigations
The US Cybersecurity and Infrastructure Security Agency (CISA) has released new guidance to help federal agencies adopt distributed denial-of-service (DDoS)...
Read more →
Payment diversion fraud poses significant threat to businesses
Nearly a quarter (24%) of businesses across the UK experienced payment diversion fraud in 2022 according to data from the...
Read more →