Every week I publish interesting articles and ways to improve your understanding of cybersecurity.
Projects
- Udemy – Cyber Security SOC Phishing analysis from Scratch-2024 – Complete
- TryHackMe – Common Linux Privesc – Complete
Videos
Papers
Articles
- Club Penguin fans breached Disney Confluence server, stole 2.5GB of data – Club Penguin fans hacked a Disney Confluence server to steal information about their favorite game but wound up walking away with 2.5 GB of internal corporate data, BleepingComputer has learned.
- Cleveland City Hall Shuts Down After Cyber Incident – As city officials continue to investigate, it’s unclear which systems were affected and whether it was a ransomware attack.
- RansomHub Brings Scattered Spider Into Its RaaS Nest – The threat group behind breaches at Caesars and MGM moves its business over to a different ransomware-as-a-service operation.
- New York Times source code stolen using exposed GitHub token – Internal source code and data belonging to The New York Times was leaked on the 4chan message board after being stolen from the company’s GitHub repositories in January 2024, The Times confirmed to BleepingComputer.
- Apple’s AI promise: “Your data is never stored or made accessible to Apple” – And publicly reviewable server code means experts can “verify this privacy promise.”
- Security firm Cylance says it has been hacked, data put up for sale online – Stolen Cylance data is being sold for $750,000
- Panera Notifies Employees of Compromised Data – Though the company is informing affected individuals of a breach, it’s keeping the nature and scope of the cybersecurity incident that led to it under wraps.
- Former IT employee gets 2.5 years for wiping 180 virtual servers – A former quality assurance employee of National Computer Systems (NCS) was sentenced to two years and eight months in prison for reportedly deleting 180 virtual servers after being fired.
- Scattered Spider hackers switch focus to cloud apps for data theft – The Scattered Spider gang has started to steal data from software-as-a-service (SaaS) applications and establish persistence through creating new virtual machines.
- Widespread Vishing Effort Impersonates CISA Staff – The cybersecurity agency issued a warning not to agree to any payment requests and to alert law enforcement or CISA after being contacted.
- U.K. Hacker Linked to Notorious Scattered Spider Group Arrested in Spain – Law enforcement authorities have allegedly arrested a key member of the notorious cybercrime group called Scattered Spider.
Podcasts
- Cyberwire – Ep 20 | 10.18.20 – Rosa Smothers: Secure the planet. [Intelligence]