- General Security News
- Amazon and Google patch major bug in their DNS-as-a-Service platforms [Catalin Cimpanu, The Record]
- New Cobalt Strike bugs allow takedown of attackers’ servers [Sergiu Gatlan, Bleeping Computer]
- Awareness
- Supply chain attacks expected to multiply by 4 in 2021 [Help Net Security]
- Linux version of BlackMatter ransomware targets VMware ESXi servers [Lawrence Abrams, Bleeping Computer]
- Secrets and Lies: The Games Ransomware Attackers Play [Mathew J. Schwartz, Information Security Media Group]
- Advice and Analysis
- Top Routinely Exploited Vulnerabilities [CISA et al., DHS]
- Securing Wireless Devices in Public Settings [NSA]
- Kubernetes Hardening Guidance, CISA release Kubernetes Hardening Guidance [CISA, NSA]
- Forensic Methodology Report: How to catch NSO Group’s Pegasus [Amnesty International]
- Privacy
- Amazon Hit With $885 Million GDPR Fine [Doug Olenick, Information Security Media Group]
- ‘I’m Calling About Your Car Warranty’, aka PII Hijinx [Threatpost]
- Professional Development
- Certification Program in IT Security [Trend Micro]
- Interesting Stories
- Black Hat: This is how a naive NSA staffer helped build an offensive UAE security branch [Charlie Osborne, Zero Day]
- Bob had a bad night: IoT mischief in a capsule hotel takes neighborly revenge to the next level [Charlie Osborne, Zero Day]
- Charting the real-world application of CTFs [Black Lotus Labs, Lumen Technologies]
C410 A2BE CB73 EF77 746E 9682 E2C4 91CE D20D 800F