- Cybersecurity News of the Week (19.05.2022). (to the original material)
- ISC releases security advisory for BIND. (to the original material)
- CISA releases analysis of FY21 risk and vulnerability assessments. (to the original material)
- U.S. DOJ will no longer prosecute good-faith security researchers under CFAA (Computer Frauds ans Abuse Act). (to the original material)
- VMware issues critical fixes, CISA orders federal agencies to act immediately (CVE-2022-22972). (to the original material)
- Many security engineers are already one foot out the door. Why? (to the original material)
- Prioritize patching vulnerabilities associated with ransomware. (to the original material)
- 46% of organizations still store passwords in shared documents. (to the original material)
- How do DevSecOps professionals feel about security becoming an around the clock job? (to the original material)
- Conti ransomware shuts down operation, rebrands into smaller units. (to the original material)
- Media giant Nikkei’s Asian unit hit by ransomware attack. (to the original material)
- Microsoft detects massive surge in Linux XorDDoS malware activity. (to the original material)
- U.S. DOJ will no longer prosecute ethical hackers under CFAA (Computer Frauds ans Abuse Act). (to the original material)
- Lazarus hackers target VMware servers with Log4Shell exploits. (to the original material)
- Phishing websites now use chatbots to steal your credentials. (to the original material)
- Microsoft Teams, Windows 11 hacked on first day of Pwn2Own. (to the original material)
- QNAP alerts NAS customers of new DeadBolt ransomware attacks. (to the original material)
- Ransomware gangs rely more on weaponizing vulnerabilities. (to the original material)
- Careful you don't unwittingly hire North Korean IT freelancers. (to the original material)
- Australia's ID systems 'deficient', unfit for online: review. (to the original material)
- US orders federal agencies to update or remove some VMware products. (to the original material)
- Log4j heightens security, resources divide between healthcare and other sectors. (to the original material)
- DoJ won’t prosecute ‘good faith’ security researchers. (to the original material)
- Strapi exposed data, password reset to CMS users lacking proper privilege. (to the original material)
- Deadbolt ransomware group targeting QNAP network storage devices. (to the original material)
- NIST’s Cybersecurity Framework has become the common language for international cybersecurity. (to the original material)
- Google OAuth client library flaw allowed to deploy of malicious payloads. (to the original material)
- Pwn2Own Vancouver 2022 D1: MS Teams exploits received $450,000. (to the original material)
- China-linked Space Pirates APT targets the Russian aerospace industry. (to the original material)
- CISA orders federal agencies to fix VMware CVE-2022-22972 and CVE-2022-22973 flaws. (to the original material)
- CISA issues emergency directive for VMware vulnerabilities. (to the original material)
- Actions Stations, Someone? There aren't enough specialists to man security tools. (to the original material)
- Microsoft President: Cyber space has become the new domain of warfare. (to the original material)
- Bad bots swarm the internet in record numbers in 2021. (to the original material)
- Half of IT leaders store passwords in shared docs. (to the original material)
- Ransom demands surge 45% in 2021. (to the original material)
- Pharmacy giant hit by data breach affecting 3.6 million customers. (to the original material)
- Pro-Russian information operations escalate in Ukraine war. (to the original material)
- DoJ won't charge 'Good Faith' security researchers. (to the original material)
- Majority of Kubernetes API servers exposed to the public internet. (to the original material)
- Phishing attacks for initial access surged 54% in Q1. (to the original material)
- MITRE creates framework for supply chain security. (to the original material)
- Two account compromise flaws fixed in Strapi headless CMS. (to the original material)
- QuSecure launches end-to-end post-quantum cybersecurity solution. (to the original material)
- WannaCry 5 years on: Still a top threat. (to the original material)
- DOJ’s New CFAA Policy is a good start but does not go far enough to protect security researchers. (to the original material)
- Two of Peru's Top ISPs improve transparency practices, while two competitors lag behind, new Hiperderecho's report shows. (to the original material)
- Platform liability trends around the globe: From safe harbors to increased responsibility. (to the original material)
- Ransomware attack vectors: RDP and phishing still dominate. (to the original material)
- CISA advises Federal Agencies to patch VMware flaws. (to the original material)
- Ransomware Ecosystem: Big changes since Colonial Pipeline. (to the original material)
- Threat Source newsletter (May 19, 2022) - Why I'm missing the days of iPods and LimeWire. (to the original material)
- The flip side of the coin: Why crypto is catnip for criminals. (to the original material)
- ‘Incompetent’ Tesla lets hackers steal cars — via Bluetooth. (to the original material)
- Surge in malware downloads driven by SEO-based techniques. (to the original material)
- Conti ransomware gang threatens Costa Rica’s government. (to the original material)
- Want a well-paid a career? Have you considered cybercrime? (to the original material)
- New solution aims to address quantum security threats. (to the original material)
- DDoS attacks fell last year but remain above pre-pandemic levels. (to the original material)
