Cybersecurity
GitHub supply chain attack cloned thousands of projects, spoofed genuine users
"No-one has the time or sanity to audit every thing every build process pulls in."
Cybersecurity
Intune for Linux GA in Q3 -- but will be bare bones.
Ubuntu 20.04 first: don't expect bells and whistles; do expect custom BASH...
Cybersecurity
T-Mobile hack to cost it $500m after class action settlement
That's the 2021 data breach, not the 2022 one...
Cybersecurity
Google 0day bug exploited in wild to target journos. Others vulnerable to upstream bug
Journalists targeted, Israeli firm "Candiru" blamed
Cybersecurity
Plasterboard giant Knauf Group pummelled by ransomware
Construction firms are among the most attacked by cybercriminals.
Cybersecurity
Hackers are proxying your Azure Active Directory login to bypass MFA
Hackers proxied the Azure Active Directory (Azure AD) sign-in pages of thousands of organisations to steal credentials and bypass multi-factor authentication (MFA), Microsoft has warned, saying it tracked attempts against 10,000 organisations since September 2021 – many attacks resulting in successful follow-up business email compromise (BEC) campaigns (sophisticated phishing that
Cybersecurity
Patch Tuesday: Exploited Windows 0day, zero-click pre-auth RCE vuln in RPC
Those 700,000 folks with RPC exposed to the internet should probably...
Cybersecurity
Lessons for CISO success from a grizzled veteran
Never has a hacker been put off by an ISO certificate...
Cybersecurity
NIST reveals first four post-quantum cryptography algorithms
"Our post-quantum cryptography program has leveraged the top minds in cryptography worldwide."
Cybersecurity
Microsoft backtracks on change to block Office macros, despite security concerns
“To say I'm disappointed is an understatement."
Cybersecurity
US DoD bug bounty programme reopens after flood of submissions
"At ease, soldiers! The findings have been outstanding..."
Cybersecurity
Trust no-one: the challenge of implementing Zero Trust in legacy environments
Strong walls aren't enough to stop attackers, writes Guy Warren.