Every week I publish interesting articles and ways to improve your understanding of cybersecurity.

Projects

• TryHackMe – What is Shell? – Complete
• TryHackMe – Common Linux Privesc – In Progress

Webinars and Videos

• Unveiling the 2024 Data Breach Investigations Report
• 2024 Data Breach Investigations Report (DBIR) Key Findings

Articles

• Download the Verizon DBIR!
• Health insurance giant Kaiser will notify millions of a data breach after sharing patients’ data with advertisers – U.S. health conglomerate Kaiser is notifying millions of current and former members of a data breach after confirming it shared patients’ information with third-party advertisers, including Google, Microsoft and X (formerly Twitter).
• How to delete the data Google has on you – You can get rid of your info manually or ask Google to clean up after you.
• Hackers Claim to Have Infiltrated Belarus’ Main Security Service – A Belarusian hacker activist group claims to have infiltrated the network of the country’s main KGB security agency and accessed personnel files of over 8,600 employees.
• Marriott admits it falsely claimed for five years it was using encryption during 2018 breach – Marriot revealed in a court case around a massive 2018 data breach that it had been using secure hash algorithm 1 and not the much more secure AES-1 encryption as it had earlier maintained.
• Verizon, AT&T, T-Mobile, and Sprint just got fined almost $200 million for sharing customer data – “These carriers failed to protect the information entrusted to them,” the FCC chair said
• US govt warns of pro-Russian hacktivists targeting water facilities – The US government is warning that pro-Russian hacktivists are seeking out and hacking into unsecured operational technology (OT) systems used to disrupt critical infrastructure operations.
• Panda Restaurants discloses data breach after corporate systems hack – Panda Restaurant Group, the parent company of Panda Express, Panda Inn, and Hibachi-San, disclosed a data breach after attackers compromised its corporate systems in March and stole the personal information of an undisclosed number of associates.
• Ex-NSA Employee Sentenced to 22 Years for Trying to Sell U.S. Secrets to Russia – A former employee of the U.S. National Security Agency (NSA) has been sentenced to nearly 22 years (262 months) in prison for attempting to transfer classified documents to Russia.
• Cybersecurity Is Becoming More Diverse … Except by Gender – While other professions are making up ground, cybersecurity still lags behind in female representation, thanks to a lack of respect and inclusion.
• Qantas fixes data breach after passengers’ personal details shared – Qantas has apologized after an issue with its app allowed customers to view the details of other passengers, including names and upcoming flights.

Podcasts

• Smashing Security 369: Keeping the lights on after a ransomware attack