Keep learning. Next month is cybersecurity month!!

Webinars

Articles

• Google rolls out Privacy Sandbox to use Chrome browsing history for ads – Google has started to roll out its new interest-based advertising platform called the Privacy Sandbox, shifting the tracking of user’s interests from third-party cookies to the Chrome browser.
• MGM Resorts shuts down IT systems after cyberattack – MGM Resorts International disclosed today that it is dealing with a cybersecurity issue that impacted some of its systems, including its main website and online reservations.
• World Security Report Finds Physical Security Incidents Cost Companies USD $1T in 2022 – According to the first-ever World Security Report, large, global companies lost a combined $1 trillion in revenue in 2022 due to physical security incidents.
• New WiKI-Eve attack can steal numerical passwords over WiFi – A new attack dubbed ‘WiKI-Eve’ can intercept the cleartext transmissions of smartphones connected to modern WiFi routers and deduce individual numeric keystrokes at an accuracy rate of up to 90%, allowing numerical passwords to be stolen.
• CISA offers free security scans for public water utilities – The U.S. Cybersecurity & Infrastructure Security Agency (CISA) has announced it is offering free security scans for critical infrastructure facilities, such as water utilities, to help protect these crucial units from hacker attacks.
• NSA, FBI, and CISA Release Cybersecurity Information Sheet on Deepfake Threats – Today, the National Security Agency (NSA), the Federal Bureau of Investigation (FBI), and the Cybersecurity and Infrastructure Security Agency (CISA) released a Cybersecurity Information Sheet (CSI), Contextualizing Deepfake Threats to Organizations, which provides an overview of synthetic media threats, techniques, and trends.
• Adobe warns of critical Acrobat and Reader zero-day exploited in attacks – Adobe has released security updates to patch a zero-day vulnerability in Acrobat and Reader tagged as exploited in attacks.
• Cybercriminals Use Webex Brand to Target Corporate Users – The false advertisement has been left up for days, flying under the radar by managing to adhere to Google Ads’ policies.

Podcasts

• Darknet Diaries EP 137: PREDATOR
• Smashing Security 339: Bitcoin boo-boo, deepfakes for good, and time to say goodbye to usernames?

Projects

TryHackMe – SOC Level 1 (72 % Complete): Investigating with Splunk, Benign, DFIR: An Introduction – Complete