Every week I post what I have been working on in my journey to learn more about cybersecurity and hopefully land a job in the field. Right now I’m working on a three part plan:
- Keep up with current events – This post is a big part of that
- Gain practical experience – Right now I’m working through TryHackMe learning paths
- Obtain cybersecurity certificates – I’ve earned the (ISC)2 Certified in Cybersecurity, and I am studying for the CompTIA Security+ currently
Webinars
- SANS DFIR Summit – Day 1: Track 1 | Day 1: Track 2 | Day 2
Articles
- Israeli Oil Refinery Taken Offline by Pro-Iranian Attackers – The apparent pro-Iranian Cyber Avengers posted images of BAZAN Groups’s SCADA systems, diagrams, and programmable logic controller (PLC) code.
- CISA issues new warning on actively exploited Ivanti MobileIron bugs – The U.S. Cybersecurity and Infrastructure Security Agency (CISA) warned today of state hackers exploiting two flaws in Ivanti’s Endpoint Manager Mobile (EPMM), formerly MobileIron Core.
- Threat actors abuse Google AMP for evasive phishing attacks – Security researchers are warning of increased phishing activity that abuses Google Accelerated Mobile Pages (AMP) to bypass email security measures and get to inboxes of enterprise employees.
- ‘DarkBERT’ GPT-Based Malware Trains Up on the Entire Dark Web – The DarkBART and DarkBERT cybercriminal chatbots, based on Google Bard, represent a major leap ahead for adversarial AI, including Google Lens integration for images and instant access to the whole of the cyber-underground knowledge base.
- Retail chain Hot Topic discloses wave of credential-stuffing attacks – American apparel retailer Hot Topic is notifying customers about multiple cyberattacks between February 7 and June 21 that resulted in exposing sensitive information to hackers.
- Why the California Delete Act Matters – Bill 362 is a perfect template for a nationwide win against data brokers and the privacy infringements they cause.
- The California Delete Act would create an online portal where Californians could opt out of data broker tracking and remove information already collected about them.
- Tesla Jailbreak Unlocks Theft of In-Car Paid Features – Want heated seats for free? Self-driving in Europe despite a regulatory ban? Researchers have discovered the road to free car-modding on the popular Tesla EVs.
- Canon Inkjet Printers at Risk for Third-Party Compromise via Wi-Fi – Nearly 200 models are affected by vulnerability that may give wireless access to unauthorized third parties.
- Monitor Insider Threats but Build Trust First – The issue of how to prevent insider threats without infringing on employee privacy is one that has been a hot topic of debate in recent years.
- Hacktivist Group ‘Mysterious Team Bangladesh’ Goes on DDoS Rampage – The emerging threat has carried out 750 DDoS attacks and 78 website defacements in just one year to support its religious and political motives.
- Mondee security lapse exposed flight itineraries and unencrypted credit card numbers – Travel giant Mondee has secured an exposed database that was spilling sensitive customer information, including detailed flight and hotel itineraries and unencrypted credit card numbers.
- “PhishForce” — Vulnerability Uncovered in Salesforce’s Email Services Exploited for Phishing Facebook Accounts In-The-Wild – Malicious Emails Sent by Trusted Email Gateways
Podcasts
- Smashing Security 333: Barbie and the stalking spouse
Projects
- TryHackMe – SOC Level 1 (58% Complete)
- Windows Event Logs – Complete
- Sysmon – Complete
- Osquery: The Basics – Complete