Every week I publish interesting articles and ways to improve your understanding of cybersecurity.

Projects

• TryHackMe – John The Ripper – In Progress

Videos

• Verizon Threat Research Advisory Center MIB – June: the Verizon Threat Research Advisory Center – for an exclusive threat intelligence briefing on Insider Threat, featuring a distinguished guest speaker from the CERT Division of the Carnegie Mellon University Software Engineering Institute. This event will provide deep insights into the latest research and effective strategies to mitigate the risks associated with insider threats, utilizing a socio-technical approach to reduce misuse of authorized access to critical assets. Attendees will learn about the latest trends, best practices, and actionable steps to safeguard their organizations from internal threats, ensuring robust defense mechanisms against one of the most significant security challenges today. Don’t miss this opportunity to enhance your cybersecurity posture with expert knowledge from a leading institution in the field.

Articles

• China-Linked Hackers Infiltrate East Asian Firm for 3 Years Using F5 Devices – A suspected China-nexus cyber espionage actor has been attributed as behind a prolonged attack against an unnamed organization located in East Asia for a period of about three years, with the adversary establishing persistence using legacy F5 BIG-IP appliances and using it as an internal command-and-control (C&C) for defense evasion purposes.
• Why Humans Pose a Bigger Corporate Risk than AI: Former Spy Shawnee Delaney Reveals Insider Threat Challenges – The application of artificial intelligence (AI) has extended across various sectors. AI has advanced and improved its capabilities in enhancing corporate security and aiding businesses in scaling operations. It is worth noting that AI can be a force for good. There are AI tools, such as data protection and data integrity tools, that can detect and predict changes in behavior that could indicate malicious insider threats.
• UK’s Total Fitness exposed nearly 500K images of members, staff through unprotected database – Health club chain headed for the spa on choose-a-password day
• Life360 confirms a hacker stole Tile tracker IDs and customer info – A hacker gained access to a Life360 internal tool used for responding to law enforcement requests.
• Security bug allows anyone to spoof Microsoft employee emails – A researcher has found a bug that allows anyone to impersonate Microsoft corporate email accounts, making phishing attempts look credible and more likely to trick their targets.
• Los Angeles United becomes latest US school district to ban smartphones – LAUSD Board of Education members voted yes to enact the ban which is expected to take effect at the beginning of 2025.
• Amtrak confirms crooks are breaking into user accounts, derailing email addresses – Rail company goes full steam ahead with notification letters to Rewards customers about spilled card details and more
• CDK Global investigating cyber incident, briefly shut all systems – Retail technology and software provider CDK Global was investigating a cyber incident and had briefly shut down all its systems proactively, it said on Wednesday.
• Kraken Crypto Exchange Hit by $3 Million Theft Exploiting Zero-Day Flaw – Crypto exchange Kraken revealed that an unnamed security researcher exploited an “extremely critical” zero-day flaw in its platform to steal $3 million in digital assets and refused to return them.
• Massachusetts 911 Outage Caused by Errant Firewall – A statewide outage of the Massachusetts 911 system was the result of a firewall that blocked calls from reaching emergency responders.
• New Government Ban on Kaspersky Would Prevent Company from Updating Malware Signatures in U.S. – The U.S. government has expanded its ban on Kaspersky software in a new move aimed at getting consumers and critical infrastructure to stop using the Russian company’s software products, citing national security concerns.
• T-Mobile denies it was hacked, links leaked data to vendor breach – T-Mobile has denied it was breached or that source code was stolen after a threat actor claimed to be selling stolen data from the telecommunications company.

Podcasts

• Smashing Security – 377: An unhealthy data dump, railway surveillance, and a cheater sues Apple