nuclear News UK nuclear firms get code red warning over cybersecurity failings Cybersecurity failures "escalated…to significantly enhanced attention" The Stack October 19, 2023
Cisco vulnerabilities News CVSS 10 Cisco bug is getting exploited, has no patch "We have also seen devices... getting the implant successfully installed through an as of yet undetermined mechanism." Edward Targett October 17, 2023
News Cyber Poverty Security veterans team up to tackle “Cyber Poverty” "Because of the interconnected nature of our supply chain, the ramifications of a single incident in these underserved less cyber mature pockets can have devastating downstream impact..." Edward Targett October 17, 2023
open source openssf News A free new repository offers intel on malicious open source OpenSSF's new Malicious Packages Repository is free to use in and available in OSV format. The Stack October 13, 2023
DDoS News Most of the internet exposed to HTTP/2 zero day, as hyperscalers report record DDoS attacks "Any enterprise or individual that is serving an HTTP-based workload to the Internet may be at risk from this attack" The Stack October 10, 2023
MGM News The MGM hack: A $100m hit "The Company currently believes that its cybersecurity insurance will be sufficient to cover the financial impact to its business as a result of the operational disruption..." Edward Targett October 06, 2023
CIO CISO legacy IT state department News The State Department is running 27,000 end-of-life systems but its CIO has been hamstrung... Two new women in charge as CIO and CISO aim to stop the rot Edward Targett October 05, 2023
open source sonatype News Bad Behaviour and Dirty Downloads: 2.1 billion OSS packages with known vulns downloaded this year. Strikingly, only 11% of open source projects are ‘actively maintained'. Should you be worried? Well, probably, yes. Edward Targett October 04, 2023