tag:blogger.com,1999:blog-91062262024-03-07T02:34:51.991-08:00KURU LoungeProviding Simplistic Answers To Complicated Questions Since 2004Chadhttp://www.blogger.com/profile/15083359852310707247noreply@blogger.comBlogger2909125tag:blogger.com,1999:blog-9106226.post-71944877221499574062023-12-18T08:02:00.000-08:002023-12-18T08:08:25.813-08:00What I am reading 10/18/2023 - Log4J is the gift that keeps on giving<p>Sorry for the pause, I lost access to the blog for awhile (it was reported as spam and suspended - just got it back this morning) <br /></p><p> -------------------------</p><p>China’s cyber army is invading critical U.S. services</p>
<p class="MsoNormal"> <a href="https://www.washingtonpost.com/technology/2023/12/11/china-hacking-hawaii-pacific-taiwan-conflict/">https://www.washingtonpost.com/technology/2023/12/11/china-hacking-hawaii-pacific-taiwan-conflict/</a></p>
<p class="MsoNormal"> National Grid latest UK org to zap Chinese kit from critical
infrastructure</p>
<p class="MsoNormal"> <a href="https://www.theregister.com/2023/12/18/national_grid_bans_china_equipment/">https://www.theregister.com/2023/12/18/national_grid_bans_china_equipment/</a></p>
<p class="MsoNormal"> SSH keys stolen by stream of malicious PyPI and npm packages</p>
<p class="MsoNormal"> <a href="https://www.bleepingcomputer.com/news/security/ssh-keys-stolen-by-stream-of-malicious-pypi-and-npm-packages/">https://www.bleepingcomputer.com/news/security/ssh-keys-stolen-by-stream-of-malicious-pypi-and-npm-packages/</a></p>
<p class="MsoNormal"> Just about every Windows and Linux device vulnerable to new
LogoFAIL firmware attack</p>
<p class="MsoNormal"> <a href="https://arstechnica.com/security/2023/12/just-about-every-windows-and-linux-device-vulnerable-to-new-logofail-firmware-attack/">https://arstechnica.com/security/2023/12/just-about-every-windows-and-linux-device-vulnerable-to-new-logofail-firmware-attack/</a></p>
<p class="MsoNormal"> Stealthy Linux rootkit found in the wild after going
undetected for 2 years</p>
<p class="MsoNormal"> <a href="https://arstechnica.com/security/2023/12/stealthy-linux-rootkit-found-in-the-wild-after-going-undetected-for-2-years/">https://arstechnica.com/security/2023/12/stealthy-linux-rootkit-found-in-the-wild-after-going-undetected-for-2-years/</a></p>
<p class="MsoNormal"> Patch Now: Exploit Activity Mounts for Dangerous Apache
Struts 2 Bug</p>
<p class="MsoNormal"> <a href="https://www.darkreading.com/cloud-security/patch-exploit-activity-dangerous-apache-struts-bug">https://www.darkreading.com/cloud-security/patch-exploit-activity-dangerous-apache-struts-bug</a></p>
<p class="MsoNormal"> A new, modern, and secure print experience from Windows</p>
<p class="MsoNormal"> <a href="https://techcommunity.microsoft.com/t5/security-compliance-and-identity/a-new-modern-and-secure-print-experience-from-windows/ba-p/4002645">https://techcommunity.microsoft.com/t5/security-compliance-and-identity/a-new-modern-and-secure-print-experience-from-windows/ba-p/4002645</a></p>
<p class="MsoNormal"> CISA urges vendors to get rid of default passwords </p>
<p class="MsoNormal"> <a href="https://cyberscoop.com/cisa-urges-vendors-to-get-rid-of-default-passwords/">https://cyberscoop.com/cisa-urges-vendors-to-get-rid-of-default-passwords/</a></p>
<p class="MsoNormal"> MITRE Debuts ICS Threat Modeling for Embedded Systems</p>
<p class="MsoNormal"> <a href="https://www.darkreading.com/ics-ot-security/mitre-debuts-ics-cyber-threat-modeling-embedded-systems">https://www.darkreading.com/ics-ot-security/mitre-debuts-ics-cyber-threat-modeling-embedded-systems</a></p>
<p class="MsoNormal"> North Korean hacking ops continue to exploit Log4Shell </p>
<p class="MsoNormal"> <a href="https://cyberscoop.com/north-korea-lazarus-log4j-log4shell/">https://cyberscoop.com/north-korea-lazarus-log4j-log4shell/</a></p>
<p class="MsoNormal"> Two years on, 1 in 4 apps still vulnerable to Log4Shell</p>
<p class="MsoNormal"> <a href="https://www.theregister.com/2023/12/11/log4j_vulnerabilities/">https://www.theregister.com/2023/12/11/log4j_vulnerabilities/</a></p>
<p class="MsoNormal"> Apple admits to secretly giving governments push
notification data</p>
<p class="MsoNormal"> <a href="https://arstechnica.com/tech-policy/2023/12/apple-admits-to-secretly-giving-governments-push-notification-data/">https://arstechnica.com/tech-policy/2023/12/apple-admits-to-secretly-giving-governments-push-notification-data/</a></p>
<p class="MsoNormal"> Adapting to the Post-SolarWinds Era: Supply Chain Security
in 2024</p>
<p class="MsoNormal"> <a href="https://www.darkreading.com/vulnerabilities-threats/adapting-post-solarwinds-era-supply-chain-security-2024">https://www.darkreading.com/vulnerabilities-threats/adapting-post-solarwinds-era-supply-chain-security-2024</a></p>
<p class="MsoNormal"> The quest to turn basalt dust into a viable climate solution</p>
<p class="MsoNormal"> <a href="https://arstechnica.com/science/2023/12/the-quest-to-turn-basalt-dust-into-a-viable-climate-solution/">https://arstechnica.com/science/2023/12/the-quest-to-turn-basalt-dust-into-a-viable-climate-solution/</a></p>
<p class="MsoNormal"> “Renew Home” company brings power grid data to your smart
home</p>
<p class="MsoNormal"> <a href="https://arstechnica.com/gadgets/2023/12/alphabets-renew-home-company-brings-power-grid-data-to-your-smart-home/">https://arstechnica.com/gadgets/2023/12/alphabets-renew-home-company-brings-power-grid-data-to-your-smart-home/</a></p>
<p class="MsoNormal"> Broadcom ends VMware perpetual license sales, testing
customers and partners</p>
<p class="MsoNormal"> <a href="https://arstechnica.com/information-technology/2023/12/broadcom-ends-vmware-perpetual-license-sales-testing-customers-and-partners/">https://arstechnica.com/information-technology/2023/12/broadcom-ends-vmware-perpetual-license-sales-testing-customers-and-partners/</a></p>
<p class="MsoNormal"> As the SEC’s new data breach disclosure rules take effect,
here’s what you need to know</p>
<p class="MsoNormal"> <a href="https://techcrunch.com/2023/12/18/new-sec-data-breach-disclosure-rules/">https://techcrunch.com/2023/12/18/new-sec-data-breach-disclosure-rules/</a></p>
<p class="MsoNormal"> Widespread FBI abuse of foreign spy law sets off “alarm
bells,” tech group says</p>
<p class="MsoNormal"> <a href="https://arstechnica.com/tech-policy/2023/05/fbi-misused-foreign-surveillance-law-280k-times-to-snoop-on-people-in-the-us/">https://arstechnica.com/tech-policy/2023/05/fbi-misused-foreign-surveillance-law-280k-times-to-snoop-on-people-in-the-us/</a></p>
<p class="MsoNormal"></p>
<p class="MsoNormal">Texas power plants have no responsibility to provide
electricity in emergencies, judges rule </p>
<p class="MsoNormal"> <a href="https://www.kut.org/energy-environment/2023-12-15/texas-power-plants-have-no-responsibility-to-provide-electricity-in-emergencies-judges-rule">https://www.kut.org/energy-environment/2023-12-15/texas-power-plants-have-no-responsibility-to-provide-electricity-in-emergencies-judges-rule</a></p>
<p class="MsoNormal"> To Revive Portland, Officials Seek to Ban Public Drug Use</p>
<p class="MsoNormal"></p>
<p class="MsoNormal"><a href="https://www.nytimes.com/2023/12/11/us/portland-oregon-drug-laws.html">https://www.nytimes.com/2023/12/11/us/portland-oregon-drug-laws.html</a></p>
<p class="MsoNormal"> How to De-Ice Your Windshield Easily and Effectively</p>
<p class="MsoNormal"> <a href="https://www.artofmanliness.com/skills/how-to/how-to-de-ice-your-windshield-easily-and-effectively/">https://www.artofmanliness.com/skills/how-to/how-to-de-ice-your-windshield-easily-and-effectively/</a></p>
<p class="MsoNormal"> </p>
<div class="blogger-post-footer">http://rpc.technorati.com/rpc/ping</div>Chadhttp://www.blogger.com/profile/15083359852310707247noreply@blogger.com0tag:blogger.com,1999:blog-9106226.post-22719506589339489662023-09-25T08:12:00.000-07:002023-09-25T08:12:57.530-07:00What I'm Reading 9/25/2023<p><a href="https://arstechnica.com/gadgets/2023/09/linux-gives-up-on-6-year-lts-thats-fine-for-pcs-bad-for-android/" target="_blank"><b> Linux gives up on 6-year LTS kernels, says they’re too much work</b></a><br /><br />https://arstechnica.com/gadgets/2023/09/linux-gives-up-on-6-year-lts-thats-fine-for-pcs-bad-for-android/<br /><br /><a href=" https://www.networkworld.com/article/3707308/how-network-security-can-save-security-dollars.html#tk.rss_security" target="_blank"><b>How network security can save security dollars</b></a><br /><br />https://www.networkworld.com/article/3707308/how-network-security-can-save-security-dollars.html#tk.rss_security<br /><br /><a href="https://www.helpnetsecurity.com/2023/09/22/smes-cyber-threats/" target="_blank"><b>SMEs overestimate their cybersecurity preparedness</b></a><br /><br />https://www.helpnetsecurity.com/2023/09/22/smes-cyber-threats/<br /><a href="https://blog.0x7d0.dev/history/how-equifax-was-breached-in-2017/" target="_blank"><br /><b>How Equifax Was Breached in 2017</b></a><br /><br />https://blog.0x7d0.dev/history/how-equifax-was-breached-in-2017/<br /><b><br /><a href="https://arstechnica.com/security/2023/09/incomplete-disclosures-by-apple-and-google-create-huge-blindspot-for-0-day-hunters/" target="_blank">Incomplete disclosures by Apple and Google create “huge blindspot” for 0-day hunters</a></b><br /><br />https://arstechnica.com/security/2023/09/incomplete-disclosures-by-apple-and-google-create-huge-blindspot-for-0-day-hunters/<br /><br /><a href="https://www.darkreading.com/ics-ot/engineering-grade-ot-protection" target="_blank"><b>Engineering-Grade OT Protection</b></a><br /><br />https://www.darkreading.com/ics-ot/engineering-grade-ot-protection<br /><a href=" https://www.securityweek.com/every-network-is-now-an-ot-network-can-your-security-keep-up/" target="_blank"><br /><b>Every Network Is Now an OT Network. Can Your Security Keep Up?</b></a><br /><br />https://www.securityweek.com/every-network-is-now-an-ot-network-can-your-security-keep-up/<br /><a href=" https://news.hitb.org/content/chinese-hackers-have-unleashed-never-seen-linux-backdoor" target="_blank"><br /><b>Chinese hackers have unleashed a never-before-seen Linux backdoor</b></a><br /><br />https://news.hitb.org/content/chinese-hackers-have-unleashed-never-seen-linux-backdoor<br /><br /><a href=" https://www.securityweek.com/dhs-publishes-new-recommendations-on-cyber-incident-reporting/" target="_blank"><b>DHS Publishes New Recommendations on Cyber Incident Reporting</b></a><br /><br />https://www.securityweek.com/dhs-publishes-new-recommendations-on-cyber-incident-reporting/<br /><a href=" https://abc7news.com/san-francisco-conventions-sf-moscone-center-meta-convention-canceled-red-hat/13470290/" target="_blank"><br /><b>2 major tech companies cancel conferences in SF; 2024 projected to be challenging year</b></a><br /><br />https://abc7news.com/san-francisco-conventions-sf-moscone-center-meta-convention-canceled-red-hat/13470290/<br /><br /><a href="https://www.theregister.com/2023/09/12/china_malware_grid/" target="_blank"><b>China caught – again – with its malware in another nation's power grid</b></a><br /><br />https://www.theregister.com/2023/09/12/china_malware_grid/<br /><br /><a href="https://www.reviewjournal.com/business/casinos-gaming/analyst-mgm-losing-4-2m-8-4m-a-day-because-of-cyberattack-2906379/" target="_blank"><b>Analyst: MGM losing $4.2M-$8.4M a day because of cyberattack</b></a><br /><br />https://www.reviewjournal.com/business/casinos-gaming/analyst-mgm-losing-4-2m-8-4m-a-day-because-of-cyberattack-2906379/<br /><a href=" https://www.darkreading.com/attacks-breaches/mgm-caesars-regulatory-legal-maze-cyber-incidents" target="_blank"><br /><b>MGM, Caesars Face Regulatory, Legal Maze After Cyber Incidents</b></a><br /><br />https://www.darkreading.com/attacks-breaches/mgm-caesars-regulatory-legal-maze-cyber-incidents<br /><a href="https://www.darkreading.com/application-security/mgm-caesars-incident-responses-required-brutal-choices" target="_blank"><br /><b>MGM, Caesars Cyberattack Responses Required Brutal Choices</b></a><br /><br />https://www.darkreading.com/application-security/mgm-caesars-incident-responses-required-brutal-choices<br /><br /><a href="https://cyberscoop.com/youth-hacking-ring-at-the-center-of-cybercrime-spree/" target="_blank"><b>Youth hacking ring at the center of cybercrime spree </b></a><br /><br />https://cyberscoop.com/youth-hacking-ring-at-the-center-of-cybercrime-spree/<br /><a href="https://cyberscoop.com/dhs-cyber-incident-reporting-recommendations/" target="_blank"><br /><b>DHS council seeks to simplify cyber incident reporting rules </b></a><br /><br />https://cyberscoop.com/dhs-cyber-incident-reporting-recommendations/<br /><a href="https://cyberscoop.com/solarium-commission-implementation-report/" target="_blank"><br /><b>Solarium Commission wants action on stalled cybersecurity recommendations </b></a><br /><br />https://cyberscoop.com/solarium-commission-implementation-report/<br /><a href="https://www.schneier.com/blog/archives/2023/09/on-the-cybersecurity-jobs-shortage.html" target="_blank"><br /><b>On the Cybersecurity Jobs Shortage</b></a><br /><br />https://www.schneier.com/blog/archives/2023/09/on-the-cybersecurity-jobs-shortage.html<br /><br /><a href="https://www.theregister.com/2023/09/21/india_cybercrime_trends_report/" target="_blank"><b>India's biggest tech centers named as cyber crime hotspots</b></a><br /><br />https://www.theregister.com/2023/09/21/india_cybercrime_trends_report/<br /><br /><a href="https://www.schneier.com/blog/archives/2023/09/new-revelations-from-the-snowden-documents.html" target="_blank"><b>New Revelations from the Snowden Documents</b></a><br /><br />https://www.schneier.com/blog/archives/2023/09/new-revelations-from-the-snowden-documents.html<br /><br /><a href="https://www.bleepingcomputer.com/news/microsoft/windows-subsystem-for-linux-gets-new-mirrored-network-mode/" target="_blank"><b>Windows Subsystem for Linux gets new 'mirrored' network mode</b></a><br /><br />https://www.bleepingcomputer.com/news/microsoft/windows-subsystem-for-linux-gets-new-mirrored-network-mode/<br /><a href="https://arstechnica.com/tech-policy/2023/09/keeping-googles-search-secrets-protects-its-monopoly-doj-argues-in-court" target="_blank"><br /><b>Keeping Google’s search secrets protects its monopoly, DOJ argues in court</b></a><br /><br />https://arstechnica.com/tech-policy/2023/09/keeping-googles-search-secrets-protects-its-monopoly-doj-argues-in-court<br /><br /><b><a href="https://www.bbc.com/news/entertainment-arts-66851698?at_medium=RSS&at_campaign=KARANGA" target="_blank">YouTube suspends Russell Brand from advert income</a></b></p>https://www.bbc.com/news/entertainment-arts-66851698?at_medium=RSS&at_campaign=KARANGA<br /><a href="https://www.bbc.com/news/technology-66850821?at_medium=RSS&at_campaign=KARANGA" target="_blank"><br /><b>Elon Musk: Social media platform X, formerly Twitter, could go behind paywall</b></a><br /><br />https://www.bbc.com/news/technology-66850821?at_medium=RSS&at_campaign=KARANGA<br /><a href=" https://www.healthline.com/health-news/ozempic-muscle-mass-loss" target="_blank"><br /><b>Ozempic Can Cause Major Loss of Muscle Mass and Reduce Bone Density</b></a><br /><br />https://www.healthline.com/health-news/ozempic-muscle-mass-loss<br /><br /><a href=" https://web.archive.org/web/20230718112821/https://www.nature.com/articles/d41586-023-02299-w" target="_blank"><b>Medicine is plagued by untrustworthy clinical trials. How many studies are faked or flawed?</b></a><br /><br />https://web.archive.org/web/20230718112821/https://www.nature.com/articles/d41586-023-02299-w<br /><br /><a href="https://cyberscoop.com/dhs-cyber-incident-reporting-recommendations/" target="_blank"><b>DHS council seeks to simplify cyber incident reporting rules </b></a><br /><br />https://cyberscoop.com/dhs-cyber-incident-reporting-recommendations/<br /><a href="https://www.scientificamerican.com/article/working-remotely-can-more-than-halve-an-office-employees-carbon-footprint/" target="_blank"><br /><b>Working Remotely Can More Than Halve an Office Employee’s Carbon Footprint</b></a><br /><br />https://www.scientificamerican.com/article/working-remotely-can-more-than-halve-an-office-employees-carbon-footprint/<br /><br /><a href="https://gizmodo.com/michael-bloomberg-500-million-shut-down-coal-plants-1850861082" target="_blank"><b>Michael Bloomberg Is Throwing $500 Million at Efforts to Shut Down All U.S. Coal Plants</b></a><br /><br />https://gizmodo.com/michael-bloomberg-500-million-shut-down-coal-plants-1850861082<br /><a href=" https://www.eweek.com/cloud/how-cisco-is-addressing-the-widening-skills-gap/" target="_blank"><br /><b>How Cisco is Addressing the Widening Skills Gap</b></a><br /><br />https://www.eweek.com/cloud/how-cisco-is-addressing-the-widening-skills-gap/<br /><a href="https://sunestra.fr/posts/repair/scope/" target="_blank"><b><br />Restoration of a dumpster Tektronix 2465B oscilloscope</b></a><br /><br />https://sunestra.fr/posts/repair/scope/<br /><br /><br /><br /><div class="blogger-post-footer">http://rpc.technorati.com/rpc/ping</div>Chadhttp://www.blogger.com/profile/15083359852310707247noreply@blogger.com0tag:blogger.com,1999:blog-9106226.post-46066052214164381742023-09-18T08:40:00.000-07:002023-09-18T08:40:13.392-07:00What I'm Reading 9/18/2023<p><a href="https://arstechnica.com/security/2023/09/how-google-authenticator-gave-attackers-one-companys-keys-to-the-kingdom/" target="_blank"><b>How Google Authenticator made one company’s network breach much, much worse</b></a><br /><br />https://arstechnica.com/security/2023/09/how-google-authenticator-gave-attackers-one-companys-keys-to-the-kingdom/<br /><br /><a href="https://arstechnica.com/security/2023/09/with-0-days-hitting-chrome-ios-and-dozens-more-this-month-is-no-software-safe/" target="_blank"><b>With 0-days hitting Chrome, iOS, and dozens more this month, is no software safe?</b></a><br /><br />https://arstechnica.com/security/2023/09/with-0-days-hitting-chrome-ios-and-dozens-more-this-month-is-no-software-safe/<br /><br /><a href="https://blog.edned.net/will-ai-replace-cyber-security/" target="_blank"><b>Will Cyber Security be Replaced by AI?</b></a><br /><br />https://blog.edned.net/will-ai-replace-cyber-security/<br /><br /><a href="https://cyberscoop.com/dhs-homeland-threat-assessment/" target="_blank"><b>DHS warns of malicious AI use against critical infrastructure </b></a><br /><br />https://cyberscoop.com/dhs-homeland-threat-assessment/<br /><a href="https://www.darkreading.com/threat-intelligence/dod-china-ics-cyber-onslaught-kinetic-warfare-advantage" target="_blank"><br /><b>DoD: China's ICS Cyber Onslaught Aimed at Gaining Kinetic Warfare Advantage</b></a><br /><br />https://www.darkreading.com/threat-intelligence/dod-china-ics-cyber-onslaught-kinetic-warfare-advantage<br /><br /><a href="https://www.cisa.gov/news-events/alerts/2023/09/15/cisa-releases-continuous-diagnostics-and-mitigation-program-identity-credential-and-access" target="_blank"><b>CISA Releases Continuous Diagnostics and Mitigation Program: Identity, Credential, and Access Management (ICAM) Reference Architecture</b></a><br /><br />https://www.cisa.gov/news-events/alerts/2023/09/15/cisa-releases-continuous-diagnostics-and-mitigation-program-identity-credential-and-access<br /><a href="https://www.darkreading.com/edge/why-identity-management-key-stopping-apt-cyberattacks" target="_blank"><br /><b>Why Identity Management Is the Key to Stopping APT Cyberattacks</b></a><br /><br />https://www.darkreading.com/edge/why-identity-management-key-stopping-apt-cyberattacks<br /><br /><a href=" https://www.theregister.com/2023/09/14/caesars_mgm_hacks/" target="_blank"><b>Caesars says cyber-crooks stole customer data as MGM casino outage drags on</b></a><br /><br />https://www.theregister.com/2023/09/14/caesars_mgm_hacks/<br /><a href=" https://www.datagubbe.se/proghack/" target="_blank"><br /><b>The Wachowskis and the Hacker as a progressive archetype</b></a><br /><br />https://www.datagubbe.se/proghack/<br /><br /><a href=" https://americanaffairsjournal.org/2023/08/americas-advanced-manufacturing-problem-and-how-to-fix-it/" target="_blank"><b>America’s Advanced Manufacturing Problem—and How to Fix It</b></a><br /><br />https://americanaffairsjournal.org/2023/08/americas-advanced-manufacturing-problem-and-how-to-fix-it/<br /><br /><a href="https://paulfuhr.medium.com/how-indeed-com-keeps-killing-the-job-market-why-resumes-are-dead-a76ab2f5af" target="_blank"><b>Why Resumes Are Dead & How Indeed.com Keeps Killing the Job Market</b></a><br /><br />https://paulfuhr.medium.com/how-indeed-com-keeps-killing-the-job-market-why-resumes-are-dead-a76ab2f5af<br /><a href="https://arstechnica.com/health/2023/09/the-spectacular-downfall-of-a-common-useless-cold-medicine/" target="_blank"><br /><b>The spectacular downfall of a common, useless cold medicine</b><br /></a><br />https://arstechnica.com/health/2023/09/the-spectacular-downfall-of-a-common-useless-cold-medicine/<br /><a href="https://arstechnica.com/tech-policy/2023/09/most-notorious-illegal-shadow-library-sued-by-textbook-publishers/" target="_blank"><br /><b>“Most notorious” illegal shadow library sued by textbook publishers [Updated]</b></a><br /><br />https://arstechnica.com/tech-policy/2023/09/most-notorious-illegal-shadow-library-sued-by-textbook-publishers/<br /><a href="https://arstechnica.com/tech-policy/2023/09/google-hid-evidence-by-training-workers-to-avoid-words-monopolists-use-doj-says/" target="_blank"><br /><b>Google hid evidence by training workers to avoid words monopolists use, DOJ says</b></a><br /><br />https://arstechnica.com/tech-policy/2023/09/google-hid-evidence-by-training-workers-to-avoid-words-monopolists-use-doj-says/<br /><a href="https://arstechnica.com/tech-policy/2023/09/heres-exactly-what-google-will-argue-to-fight-the-dojs-antitrust-claims/" target="_blank"><br /><b>Here’s exactly what Google will argue to fight the DOJ’s antitrust claims</b></a><br /><br />https://arstechnica.com/tech-policy/2023/09/heres-exactly-what-google-will-argue-to-fight-the-dojs-antitrust-claims/<br /><br /><a href="https://www.bbc.com/news/business-66644709?at_medium=RSS&at_campaign=KARANGA" target="_blank"><b>Long wave radio fans mourn fading frequencies</b></a><br /><br />https://www.bbc.com/news/business-66644709?at_medium=RSS&at_campaign=KARANGA<br /><b><br /><a href=" https://www.bbc.com/news/business-66054688?at_medium=RSS&at_campaign=KARANGA" target="_blank">Urban oases combine roof gardens and solar panels</a></b><br /><br />https://www.bbc.com/news/business-66054688?at_medium=RSS&at_campaign=KARANGA<br /><br /><a href="https://www.technologynetworks.com/applied-sciences/news/replanting-logged-forests-with-diverse-mixtures-of-seedlings-accelerates-restoration-378916" target="_blank"><b>Replanting Logged Forests With Diverse Mixtures of Seedlings Accelerates Restoration</b></a><br /><br />https://www.technologynetworks.com/applied-sciences/news/replanting-logged-forests-with-diverse-mixtures-of-seedlings-accelerates-restoration-378916<br /><a href=" https://bigthink.com/health/us-dietary-protein-recommendations-too-low/" target="_blank"><br /><b>Study: U.S. dietary recommendations for protein intake are too low</b></a><br /><br />https://bigthink.com/health/us-dietary-protein-recommendations-too-low/<br /><br /><a href="https://www.science.org/content/article/cia-bribed-its-own-covid-19-origin-team-reject-lab-leak-theory-anonymous-whistleblower" target="_blank"><b>CIA bribed its own COVID-19 origin team to reject lab-leak theory, anonymous whistleblower claims</b></a><br /><br />https://www.science.org/content/article/cia-bribed-its-own-covid-19-origin-team-reject-lab-leak-theory-anonymous-whistleblower<br /><a href=" https://cyberscoop.com/california-data-broker-deletion/" target="_blank"><br /><b>California passes first-in-the-nation data broker deletion tool </b></a><br /><br />https://cyberscoop.com/california-data-broker-deletion/<br /><br /><br /></p><div class="blogger-post-footer">http://rpc.technorati.com/rpc/ping</div>Chadhttp://www.blogger.com/profile/15083359852310707247noreply@blogger.com0tag:blogger.com,1999:blog-9106226.post-36297226421031398152023-09-10T17:50:00.001-07:002023-09-10T17:50:35.798-07:00I'm Back - What I'm Reading 9/10/2023<p>Sorry for the long absence (pfft, who am I kidding? no one reads this). I intended to be back the week after DefCOn but life happened. I was sick and work piled up, but here I am now. Lucky you, imaginary readers and voices in my head.</p><p>Anyway...</p><p><a href="https://www.electrospaces.net/2023/06/on-10th-anniversary-of-snowden.html" target="_blank"><b>On the 10th anniversary of the Snowden revelations </b></a><br /><br />https://www.electrospaces.net/2023/06/on-10th-anniversary-of-snowden.html<br /><br /><a href=" https://www.darkreading.com/dr-tech/microsoft-google-take-on-obsolete-tls-protocols" target="_blank"><b>Microsoft, Google Take on Obsolete TLS Protocols</b></a><br /><br />https://www.darkreading.com/dr-tech/microsoft-google-take-on-obsolete-tls-protocols<br /><br /><a href=" https://www.darkreading.com/edge-articles/cybersecurity-builds-trust-in-critical-infrastructure"><b>Cybersecurity Builds Trust in Critical Infrastructure</b></a><br /><br />https://www.darkreading.com/edge-articles/cybersecurity-builds-trust-in-critical-infrastructure<br /><b><br /><a href="https://arstechnica.com/security/2023/09/ransomware-crooks-exploit-unpatched-0-day-in-cisco-security-appliances/">Cisco security appliance 0-day is under attack by ransomware crooks</a></b><br /><br />https://arstechnica.com/security/2023/09/ransomware-crooks-exploit-unpatched-0-day-in-cisco-security-appliances/<br /><a href="https://cyberscoop.com/microsoft-china-signing-key/"><b><br />Mystery solved? Microsoft thinks it knows how Chinese hackers stole its signing key </b></a><br /><br />https://cyberscoop.com/microsoft-china-signing-key/<br /><b><br /><a href="https://arstechnica.com/security/2023/09/how-china-gets-free-intel-on-tech-companies-vulnerabilities/" target="_blank">How China gets free intel on tech companies’ vulnerabilities</a></b><br /><br />https://arstechnica.com/security/2023/09/how-china-gets-free-intel-on-tech-companies-vulnerabilities/<br /><br /><a href="https://www.techdirt.com/2023/09/06/move-over-software-developers-in-the-name-of-cybersecurity-the-government-wants-to-drive/" target="_blank"><b>Move Over, Software Developers – In The Name Of Cybersecurity, The Government Wants To Drive (the comments are entertaining)</b></a><br /><br />https://www.techdirt.com/2023/09/06/move-over-software-developers-in-the-name-of-cybersecurity-the-government-wants-to-drive/<br /><br /><a href="https://owasp.org/API-Security/editions/2023/en/0x11-t10/" target="_blank"><b>OWASP Top 10 API Security Risks – 2023</b></a><br /><br />https://owasp.org/API-Security/editions/2023/en/0x11-t10/<br /><br /><a href="https://cyberscoop.com/sandworm-ukraine-infamous-chisel/" target="_blank"><b>‘Five Eyes’ nations release technical details of Sandworm malware ‘Infamous Chisel’ </b></a><br /><br />https://cyberscoop.com/sandworm-ukraine-infamous-chisel/<br /><br /><a href=" https://cyberscoop.com/chinese-ai-ops-microsoft/" target="_blank"><b>China turns to AI in hopes of creating viral online propaganda, Microsoft researchers say </b></a><br /><br />https://cyberscoop.com/chinese-ai-ops-microsoft/<br /><br /><a href="https://arstechnica.com/information-technology/2023/09/the-international-criminal-court-will-now-prosecute-cyberwar-crimes/" target="_blank"><b>The International Criminal Court will now prosecute cyberwar crimes</b></a><br /><br />https://arstechnica.com/information-technology/2023/09/the-international-criminal-court-will-now-prosecute-cyberwar-crimes/<br /><a href="https://www.bbc.com/news/world-europe-66686584?at_medium=RSS&at_campaign=KARANGA" target="_blank"><br /><b>Ukraine war: Cyber-teams fight a high-tech war on front lines</b></a><br /><br />https://www.bbc.com/news/world-europe-66686584?at_medium=RSS&at_campaign=KARANGA<br /><a href="https://www.bbc.com/news/world-europe-66752264?at_medium=RSS&at_campaign=KARANGA" target="_blank"><br /><b>Elon Musk says he withheld Starlink over Crimea to avoid escalation</b></a><br /><br />https://www.bbc.com/news/world-europe-66752264?at_medium=RSS&at_campaign=KARANGA<br /><br /><a href="https://arstechnica.com/tech-policy/2023/09/x-sues-calif-to-avoid-revealing-how-it-makes-controversial-content-decisions/" target="_blank"><b>X sues Calif. to avoid revealing how it makes “controversial” content decisions</b></a><br /><br />https://arstechnica.com/tech-policy/2023/09/x-sues-calif-to-avoid-revealing-how-it-makes-controversial-content-decisions/<br /><br /><a href="https://www.nytimes.com/2023/09/08/business/appeals-court-first-amendment-social-media.html" target="_blank"><b>Appeals Court Rules White House Overstepped 1st Amendment on Social Media</b></a><br /><br />https://www.nytimes.com/2023/09/08/business/appeals-court-first-amendment-social-media.html<br /><br /><a href="https://www.ca5.uscourts.gov/opinions/pub/23/23-30445-CV0.pdf" target="_blank"><b>The Judgement</b></a> - https://www.ca5.uscourts.gov/opinions/pub/23/23-30445-CV0.pdf<br /><br /><a href="https://arstechnica.com/information-technology/2023/09/ai-generated-child-sex-imagery-has-every-us-attorney-general-calling-for-action/" target="_blank"><b>AI-generated child sex imagery has every US attorney general calling for action</b></a><br /><br />https://arstechnica.com/information-technology/2023/09/ai-generated-child-sex-imagery-has-every-us-attorney-general-calling-for-action/<br /><br /><a href="https://arstechnica.com/health/2023/09/weight-loss-drugs-ozempic-and-wegovy-also-protect-your-heart/" target="_blank"><b>Weight-loss drugs Ozempic and Wegovy also protect your heart</b></a><br /><br />https://arstechnica.com/health/2023/09/weight-loss-drugs-ozempic-and-wegovy-also-protect-your-heart/<br /><br /><a href="https://arstechnica.com/tech-policy/2023/09/were-not-gatekeepers-apple-and-microsoft-tell-european-union/" target="_blank"><b>“We’re not ‘gatekeepers,’” Apple and Microsoft tell European Union</b></a><br /><br />https://arstechnica.com/tech-policy/2023/09/were-not-gatekeepers-apple-and-microsoft-tell-european-union/<br /><br /><a href="https://www.zdnet.com/home-and-office/work-life/the-demand-for-hybrid-work-is-only-growing-according-to-a-new-deloitte-report/#ftag=RSSbaffb68" target="_blank"><b>The demand for hybrid work is only growing, according to a new Deloitte report </b></a><br /><br />https://www.zdnet.com/home-and-office/work-life/the-demand-for-hybrid-work-is-only-growing-according-to-a-new-deloitte-report/#ftag=RSSbaffb68<br /><br /><a href="https://scitechdaily.com/90-reduction-scientists-discover-natural-molecule-that-eradicates-plaques-and-cavities/" target="_blank"><b>90% Reduction: Scientists Discover Natural Molecule That Eradicates Plaques and Cavities</b></a><br /><br />https://scitechdaily.com/90-reduction-scientists-discover-natural-molecule-that-eradicates-plaques-and-cavities/<br /><br /><a href=" https://littleblah.com/post/2019-09-01-senior-engineer-checklist/" target="_blank"><b>A Senior Engineer's CheckList</b><br /></a><br />https://littleblah.com/post/2019-09-01-senior-engineer-checklist/<br /><br /><a href=" https://theweek.com/google/1026299/google-doj-monopoly-antitrust-trial" target="_blank"><b>Is Google's looming monopoly trial a watershed moment for Big Tech?</b></a><br /><br />https://theweek.com/google/1026299/google-doj-monopoly-antitrust-trial<br /><a href=" https://www.lambrospetrou.com/articles/big-tech-software-interviews/" target="_blank"><br /><b>How to pass the interview for software engineering roles in Big Tech - Handbook</b></a><br /><br />https://www.lambrospetrou.com/articles/big-tech-software-interviews/<br /><b><br /><a href="https://tracingwoodgrains.substack.com/p/when-punch-a-nazi-goes-wrong" target="_blank">When “Punch a Nazi” Goes Wrong</a></b><br /><br />https://tracingwoodgrains.substack.com/p/when-punch-a-nazi-goes-wrong<br /><br /><a href=" https://www.chron.com/culture/article/california-texas-tech-workers-18346616.php" target="_blank"><b>Tech workers now doubting decision to move from California to Texas</b></a><br /><br />https://www.chron.com/culture/article/california-texas-tech-workers-18346616.php<br /><a href="https://www.politico.com/news/2023/09/04/ban-caste-discrimination-california-bill-00113817" target="_blank"><br /><b>An effort to ban caste discrimination in California has touched a nerve </b></a><br /><br />https://www.politico.com/news/2023/09/04/ban-caste-discrimination-california-bill-00113817<br /><br /><br /><br /></p><div class="blogger-post-footer">http://rpc.technorati.com/rpc/ping</div>Chadhttp://www.blogger.com/profile/15083359852310707247noreply@blogger.com0tag:blogger.com,1999:blog-9106226.post-53141548312263386282023-07-10T08:41:00.002-07:002023-07-10T08:41:26.469-07:00What I am Reading 7/10/2023 <p><a href="https://www.scmagazine.com/news/threat-intelligence/log4j-exploited-earlyrat-malware" target="_blank"><b>Log4j bug exploited to push novel EarlyRat malware</b></a><br /><br />https://www.scmagazine.com/news/threat-intelligence/log4j-exploited-earlyrat-malware<br /><a href="https://arstechnica.com/security/2023/07/moveit-app-mass-exploited-last-month-patches-new-critical-vulnerability/" target="_blank"><b><br />MOVEit app mass-exploited last month patches new critical vulnerability</b></a><br /><br />https://arstechnica.com/security/2023/07/moveit-app-mass-exploited-last-month-patches-new-critical-vulnerability/<br /><a href="https://arstechnica.com/security/2023/07/336000-servers-remain-unpatched-against-critical-fortigate-vulnerability/" target="_blank"><br /><b>336,000 servers remain unpatched against critical Fortigate vulnerability</b></a><br /><br />https://arstechnica.com/security/2023/07/336000-servers-remain-unpatched-against-critical-fortigate-vulnerability/<br /><a href=" https://www.darkreading.com/risk/ssh-servers-hit-in-proxyjacking-cyberattacks" target="_blank"><br /><b>SSH Servers Hit in 'Proxyjacking' Cyberattacks</b></a><br /><br />https://www.darkreading.com/risk/ssh-servers-hit-in-proxyjacking-cyberattacks<br /><br /><a href="https://www.securityweek.com/vulnerability-in-cisco-enterprise-switches-allows-attackers-to-modify-encrypted-traffic/" target="_blank"><b>Vulnerability in Cisco Enterprise Switches Allows Attackers to Modify Encrypted Traffic</b></a><br /><br />https://www.securityweek.com/vulnerability-in-cisco-enterprise-switches-allows-attackers-to-modify-encrypted-traffic/<br /><a href="https://www.securityweek.com/vulnerabilities-in-piigab-product-could-expose-industrial-organizations-to-attacks/" target="_blank"><br /><b>Vulnerabilities in PiiGAB Product Could Expose Industrial Organizations to Attacks</b></a><br /><br />https://www.securityweek.com/vulnerabilities-in-piigab-product-could-expose-industrial-organizations-to-attacks/<br /><br /><a href="https://www.darkreading.com/ics-ot/3-critical-rce-bugs-threaten-industrial-solar-panels" target="_blank"><b>3 Critical RCE Bugs Threaten Industrial Solar Panels, Endangering Grid Systems</b></a><br /><br />https://www.darkreading.com/ics-ot/3-critical-rce-bugs-threaten-industrial-solar-panels<br /><br /><a href=" https://www.hackread.com/hacking-california-water-treatment-facility/" target="_blank"><b>Technician Indicted for Hacking California Water Treatment Facility</b></a><br /><br />https://www.hackread.com/hacking-california-water-treatment-facility/<br /><br /><a href="https://www.helpnetsecurity.com/2023/07/03/hybrid-cloud-security-breaches/" target="_blank"><b>One third of security breaches go unnoticed by security professionals</b></a><br /><br />https://www.helpnetsecurity.com/2023/07/03/hybrid-cloud-security-breaches/<br /><br /><a href="https://www.darkreading.com/vulnerabilities-threats/botnets-send-exploits-only-day-to-weeks-after-published-poc" target="_blank"><b>Botnets Send Exploits Within Days to Weeks After Published PoC</b></a><br /><br />https://www.darkreading.com/vulnerabilities-threats/botnets-send-exploits-only-day-to-weeks-after-published-poc<br /><br /><a href=" https://www.helpnetsecurity.com/2023/06/30/third-party-relationships-risks/" target="_blank"><b>Businesses are ignoring third-party security risks</b></a><br /><br />https://www.helpnetsecurity.com/2023/06/30/third-party-relationships-risks/<br /><a href="https://www.helpnetsecurity.com/2023/06/30/summer-byod-policies/" target="_blank"><br /><b>Employees worry less about cybersecurity best practices in the summer</b></a><br /><br />https://www.helpnetsecurity.com/2023/06/30/summer-byod-policies/<br /><br /><a href=" https://thehackernews.com/2023/06/5-things-cisos-need-to-know-about.html" target="_blank"><b>5 Things CISOs Need to Know About Securing OT Environments</b></a><br /><br />https://thehackernews.com/2023/06/5-things-cisos-need-to-know-about.html<br /><br /><b><a href="https://www.hackread.com/submarine-cables-cybersecurity-threats/" target="_blank">Submarine Cables Face Escalating Cybersecurity Threats, Report</a><br /></b><br />https://www.hackread.com/submarine-cables-cybersecurity-threats/<br /><a href="https://arstechnica.com/science/2023/07/uss-largest-grid-operator-must-process-and-connect-backlogged-clean-energy-projects/" target="_blank"><br /><b>US’s largest grid operator must process and connect backlogged clean energy projects</b></a><br /><br />https://arstechnica.com/science/2023/07/uss-largest-grid-operator-must-process-and-connect-backlogged-clean-energy-projects/<br /><br /><a href="https://arstechnica.com/tech-policy/2023/07/judge-rules-white-house-pressured-social-networks-to-suppress-free-speech/" target="_blank"><b>Judge rules White House pressured social networks to “suppress free speech”</b></a><br /><br />https://arstechnica.com/tech-policy/2023/07/judge-rules-white-house-pressured-social-networks-to-suppress-free-speech/<br /><br /><a href="https://www.bbc.com/news/business-66093114?at_medium=RSS&at_campaign=KARANGA" target="_blank"><b>China curbs exports of key computer chip materials</b></a><br /><br />https://www.bbc.com/news/business-66093114?at_medium=RSS&at_campaign=KARANGA<br /><br /><a href="https://www.bbc.com/future/article/20190808-why-do-sharks-attack-humans" target="_blank"><b>The real reasons why sharks attack humans</b></a><br /><br />https://www.bbc.com/future/article/20190808-why-do-sharks-attack-humans<br /><br /><a href="https://www.sfgate.com/bayarea/article/san-francisco-loses-meta-red-hat-conferences-18187573.php" target="_blank"><b>San Francisco loses 2 big conferences</b></a><br /><br />https://www.sfgate.com/bayarea/article/san-francisco-loses-meta-red-hat-conferences-18187573.php<br /><br /><a href="https://www.washingtonpost.com/world/2023/07/07/portugal-drugs-decriminalization-heroin-crack/" target="_blank"><b>Once hailed for decriminalizing drugs, Portugal is now having doubts</b></a><br /><br />https://www.washingtonpost.com/world/2023/07/07/portugal-drugs-decriminalization-heroin-crack/<br /><br /><a href="https://www.careerfair.io/company-reviews" target="_blank"><b>The Underground Economy of Company Reviews</b></a><br /><br />https://www.careerfair.io/company-reviews<br /><a href="https://ventureinsecurity.net/p/why-there-are-so-many-cybersecurity" target="_blank"><br /><b>Why there are so many cybersecurity vendors, what it leads to and where do we go from here</b></a><br /><br />https://ventureinsecurity.net/p/why-there-are-so-many-cybersecurity<br /><br /><a href="https://securityboulevard.com/2023/07/top-suspect-in-2015-ashley-madison-hack-committed-suicide-in-2014/" target="_blank"><b>Top Suspect in 2015 Ashley Madison Hack Committed Suicide in 2014 </b></a><br /><br />https://securityboulevard.com/2023/07/top-suspect-in-2015-ashley-madison-hack-committed-suicide-in-2014/<br /><br /><br /><br /><br /><br /><br /><br /><br /></p><div class="blogger-post-footer">http://rpc.technorati.com/rpc/ping</div>Chadhttp://www.blogger.com/profile/15083359852310707247noreply@blogger.com0tag:blogger.com,1999:blog-9106226.post-22651532922011886502023-07-04T05:35:00.004-07:002023-07-04T05:35:52.980-07:00What I am reading 7/4/2023 - Happy Independence Day<p><a href="https://securityaffairs.com/147865/data-breach/schneider-electric-siemens-energy-moveit.html" target="_blank"><b> Clop ransomware group added five new victims of MOVEit attacks to its dark web leak site, including Schneider Electric and Siemens Energy.</b><br /></a><br />https://securityaffairs.com/147865/data-breach/schneider-electric-siemens-energy-moveit.html<br /><br /><a href="https://www.economist.com/united-states/2023/06/25/america-aims-for-nuclear-power-renaissance" target="_blank"><b>America aims for nuclear-power renaissance</b></a><br /><br />https://www.economist.com/united-states/2023/06/25/america-aims-for-nuclear-power-renaissance<br /><br /><a href="https://robertbryce.substack.com/p/the-energy-transition-isnt" target="_blank"><b>The Energy Transition Isn't</b></a><br /><br />https://robertbryce.substack.com/p/the-energy-transition-isnt<br /><br /><a href="https://www.bbc.com/news/technology-65975446" target="_blank"><b>The tech flaw that lets hackers control surveillance cameras</b><br /></a><br />https://www.bbc.com/news/technology-65975446<br /><br /><a href="https://www.scmagazine.com/news/zero-trust/fortinet-critical-rce-flaw" target="_blank"><b>Fortinet fixes critical RCE flaw in FortiNAC zero-trust product</b><br /></a><br />https://www.scmagazine.com/news/zero-trust/fortinet-critical-rce-flaw<br /><br /><a href="https://thehackernews.com/2023/06/microsoft-warns-of-widescale-credential.html" target="_blank"><b>Microsoft Warns of Widescale Credential Stealing Attacks by Russian Hackers</b></a><br /><br />https://thehackernews.com/2023/06/microsoft-warns-of-widescale-credential.html<br /><br /><a href="https://thehackernews.com/2023/06/chinese-hackers-using-never-before-seen.html" target="_blank"><b>Chinese Hackers Using Never-Before-Seen Tactics for Critical Infrastructure Attacks</b><br /></a><br />https://thehackernews.com/2023/06/chinese-hackers-using-never-before-seen.html</p><p></p><p><a href="https://thehackernews.com/2023/06/new-fortinets-fortinac-vulnerability.html" target="_blank"><b>New Fortinet's FortiNAC Vulnerability Exposes Networks to Code Execution Attacks</b><br /></a><br />https://thehackernews.com/2023/06/new-fortinets-fortinac-vulnerability.html<br /><br /><a href="https://www.darkreading.com/cloud/china-volt-typhoon-apt-zoho-manageengine-fresh-cyberattacks" target="_blank"><b>China's 'Volt Typhoon' APT Turns to Zoho ManageEngine for Fresh Cyberattacks</b></a><br /><br />https://www.darkreading.com/cloud/china-volt-typhoon-apt-zoho-manageengine-fresh-cyberattacks<br /><br /><a href="https://www.nytimes.com/2023/06/24/business/economy/francesca-gino-harvard-dishonesty.html" target="_blank"><b>Harvard Scholar Who Studies Honesty Is Accused of Fabricating Findings</b></a><br /><br />https://www.nytimes.com/2023/06/24/business/economy/francesca-gino-harvard-dishonesty.html<br /><br /><a href="https://cs61a.org/" target="_blank"><b>CS 61A: Structure and Interpretation of Computer Programs</b><br /></a><br />https://cs61a.org/<br /><br /><a href="https://lithub.com/50-of-the-greatest-summer-novels-of-all-time/?utm_source=pocket-newtab" target="_blank"><b>50 of the Greatest Summer Novels of All Time</b><br /></a><br />https://lithub.com/50-of-the-greatest-summer-novels-of-all-time/?utm_source=pocket-newtab<br /><br /><a href="https://www.darkreading.com/operations/solarwinds-execs-targeted-sec-ceo-fight" target="_blank"><b>SolarWinds Execs Targeted by SEC, CEO Vows to Fight</b></a><br /><br />https://www.darkreading.com/operations/solarwinds-execs-targeted-sec-ceo-fight<br /><br /><a href="We're Now Finding Out The Damaging Results of The Mandated Return to Office — And It's Worse Than We Thought. " target="_blank"><b>We're Now Finding Out The Damaging Results of The Mandated Return to Office — And It's Worse Than We Thought. </b></a><br /><br />https://www.entrepreneur.com/growing-a-business/the-damaging-results-of-the-mandated-return-to-office-is/454043<br /><br /><b><a href="https://www.bbc.com/news/world-us-canada-66056742?at_medium=RSS&at_campaign=KARANGA" target="_blank">Canada is going to war with Google, and it might not win<br /></a></b><br />https://www.bbc.com/news/world-us-canada-66056742?at_medium=RSS&at_campaign=KARANGA<br /><br /><a href="https://www.canada.ca/en/immigration-refugees-citizenship/news/2023/06/minister-fraser-launches-canadas-first-ever-tech-talent-strategy-at-collision-2023.html" target="_blank"><b>Minister Fraser launches Canada’s first-ever Tech Talent Strategy at Collision 2023</b></a><br /><br />https://www.canada.ca/en/immigration-refugees-citizenship/news/2023/06/minister-fraser-launches-canadas-first-ever-tech-talent-strategy-at-collision-2023.html<br /><br /><a href="https://fortune.com/2023/06/26/forced-return-to-office-is-the-definition-of-insanity-remote-hybrid-work-careers-gleb-tsipursky/" target="_blank"><b>The forced return to the office is the definition of insanity</b></a><br /><br />https://fortune.com/2023/06/26/forced-return-to-office-is-the-definition-of-insanity-remote-hybrid-work-careers-gleb-tsipursky/<br /><br /><a href="https://arstechnica.com/information-technology/2023/06/op-ed-why-the-great-twittermigration-didnt-quite-pan-out/?comments=1&comments-page=1" target="_blank"><b>Op-ed: Why the great #TwitterMigration didn’t quite pan out</b></a><br /><br />https://arstechnica.com/information-technology/2023/06/op-ed-why-the-great-twittermigration-didnt-quite-pan-out/?comments=1&comments-page=1<br /><br /><a href="https://arstechnica.com/tech-policy/2023/06/linda-yaccarinos-vision-for-twitter-2-0-emerges/" target="_blank"><b>Linda Yaccarino’s vision for Twitter 2.0 emerges</b></a><br /><br />https://arstechnica.com/tech-policy/2023/06/linda-yaccarinos-vision-for-twitter-2-0-emerges/<br /><br /><a href="https://www.theregister.com/2023/07/03/pay_freeze_microsoft_landmark_year/" target="_blank"><b>Microsofties still digesting pay freeze upset by Nadella's 'landmark year' memo</b><br /></a><br />https://www.theregister.com/2023/07/03/pay_freeze_microsoft_landmark_year/<br /><br /><a href="https://www.technology.org/2023/07/01/us-wants-to-make-more-stingers-needs-to-revive-production/" target="_blank"><b>US Wants To Make More Stingers, But it Needs to Revive Production Technology Nearly from Scratch</b></a><br /><br />https://www.technology.org/2023/07/01/us-wants-to-make-more-stingers-needs-to-revive-production/<br /><br /><br /><br /><br /><br /><br /><br /><br /><br /><br /><br /><br /><br /><br /><br /><br /><br /><br /><br /></p><div class="blogger-post-footer">http://rpc.technorati.com/rpc/ping</div>Chadhttp://www.blogger.com/profile/15083359852310707247noreply@blogger.com0tag:blogger.com,1999:blog-9106226.post-32427212828714951422023-06-25T19:58:00.002-07:002023-06-25T19:58:41.195-07:00What I am Reading 6/25/2023 - Post Russian Coup Edition <p> No coup stuff - I have no freakin idea what's going on<br /></p><p><a href="https://www.washingtonpost.com/business/2023/06/24/texas-heat-wave-power-grid/" target="_blank"><b>Heat is battering Texas’s power grid. Are giant batteries the answer?</b></a><br /><br />https://www.washingtonpost.com/business/2023/06/24/texas-heat-wave-power-grid/<br /><a href=" https://arstechnica.com/science/2023/06/green-electricity-wont-help-with-pollution-disparities/" target="_blank"><br /><b>Green electricity won’t help with pollution disparities</b></a><br /><br />https://arstechnica.com/science/2023/06/green-electricity-wont-help-with-pollution-disparities/<br /><br /><a href="https://www.federalregister.gov/documents/2023/05/03/2023-08929/incentives-for-advanced-cybersecurity-investment" target="_blank"><b>Incentives for Advanced Cybersecurity Investment [by Electric Utilities]</b></a><br /><br />https://www.federalregister.gov/documents/2023/05/03/2023-08929/incentives-for-advanced-cybersecurity-investment<br /><br /><a href="https://cyberscoop.com/ferc-cybersecurity-incentives-electric-grid/" target="_blank"><b>Federal incentives could help utilities overcome major cybersecurity hurdle: money </b></a><br /><br />https://cyberscoop.com/ferc-cybersecurity-incentives-electric-grid/<br /><br /><a href="https://cyberscoop.com/energy-department-cl0p-moveit-cisa/" target="_blank"><b>Two Energy Department entities breached as part of massive MOVEit compromise </b></a><br /><br />https://cyberscoop.com/energy-department-cl0p-moveit-cisa/<br /><br /><a href="https://arstechnica.com/information-technology/2023/06/the-us-navy-nato-and-nasa-are-using-a-shady-chinese-companys-encryption-chips/" target="_blank"><b>The US Navy, NATO, and NASA are using a shady Chinese company’s encryption chips</b></a><br /><br />https://arstechnica.com/information-technology/2023/06/the-us-navy-nato-and-nasa-are-using-a-shady-chinese-companys-encryption-chips/<br /><br /><a href="https://www.darkreading.com/edge/why-legacy-system-users-prioritize-uptime-over-security" target="_blank"><b>Why Legacy System Users Prioritize Uptime Over Security</b></a><br /><br />https://www.darkreading.com/edge/why-legacy-system-users-prioritize-uptime-over-security<br /><br /><a href="https://arstechnica.com/information-technology/2023/06/millions-of-americans-personal-dmv-data-exposed-in-massive-moveit-hack/" target="_blank"><b>Millions of Americans’ personal DMV data exposed in massive MOVEit hack</b></a><br /><br />https://arstechnica.com/information-technology/2023/06/millions-of-americans-personal-dmv-data-exposed-in-massive-moveit-hack/<br /><br /><a href="https://www.darkreading.com/attacks-breaches/critical-barracuda-esg-zero-day-chinese-apt" target="_blank"><b>Critical Barracuda ESG Zero-Day Linked to Novel Chinese APT</b></a><br /><br />https://www.darkreading.com/attacks-breaches/critical-barracuda-esg-zero-day-chinese-apt<br /><br /><a href="https://arstechnica.com/information-technology/2023/06/hackers-can-steal-cryptographic-keys-by-video-recording-connected-power-leds-60-feet-away/" target="_blank"><b>Hackers can steal cryptographic keys by video-recording power LEDs 60 feet away</b></a><br /><br />https://arstechnica.com/information-technology/2023/06/hackers-can-steal-cryptographic-keys-by-video-recording-connected-power-leds-60-feet-away/<br /><br /><a href="https://www.bbc.com/news/technology-65977742?at_medium=RSS&at_campaign=KARANGA" target="_blank"><b>Why is it so rare to hear about Western cyber-attacks?</b></a><br /><br />https://www.bbc.com/news/technology-65977742?at_medium=RSS&at_campaign=KARANGA<br /><a href="https://arstechnica.com/tech-policy/2023/06/thousands-of-realistic-but-fake-ai-child-sex-images-found-online-report-says/" target="_blank"><br /><b>Thousands of realistic but fake AI child sex images found online, report says</b></a><br /><br />https://arstechnica.com/tech-policy/2023/06/thousands-of-realistic-but-fake-ai-child-sex-images-found-online-report-says/<br /><a href="https://arstechnica.com/tech-policy/2023/06/us-might-finally-force-cable-tv-firms-to-advertise-their-actual-prices/" target="_blank"><br /><b>US might finally force cable-TV firms to advertise their actual prices</b></a><br /><br />https://arstechnica.com/tech-policy/2023/06/us-might-finally-force-cable-tv-firms-to-advertise-their-actual-prices/<br /><br /><a href="https://arstechnica.com/tech-policy/2023/06/fcc-chair-to-investigate-exactly-how-much-everyone-hates-data-caps/" target="_blank"><b>FCC chair to investigate exactly how much everyone hates data caps</b></a><br /><br />https://arstechnica.com/tech-policy/2023/06/fcc-chair-to-investigate-exactly-how-much-everyone-hates-data-caps/<br /><a href="https://arstechnica.com/tech-policy/2023/06/twitter-ceo-starts-fighting-musks-battles-paying-musks-overdue-bills/" target="_blank"><br /><b>Twitter CEO starts fighting Musk’s battles, paying Musk’s overdue bills</b></a><br /><br />https://arstechnica.com/tech-policy/2023/06/twitter-ceo-starts-fighting-musks-battles-paying-musks-overdue-bills/<br /><a href="https://arstechnica.com/tech-policy/2023/06/texas-will-require-parental-consent-for-kids-to-use-social-media/" target="_blank"><br /><b>Texas will require parental consent for kids to use social media</b></a><br /><br />https://arstechnica.com/tech-policy/2023/06/texas-will-require-parental-consent-for-kids-to-use-social-media/<br /><a href="https://arstechnica.com/tech-policy/2023/06/google-may-soon-be-ordered-to-break-up-its-lucrative-ad-business-eu-warns/" target="_blank"><br /><b>Google risks forced breakup of ad business as EU alleges shocking misconduct</b></a><br /><br />https://arstechnica.com/tech-policy/2023/06/google-may-soon-be-ordered-to-break-up-its-lucrative-ad-business-eu-warns/<br /><br /><a href="https://www.bbc.com/news/business-65978053?at_medium=RSS&at_campaign=KARANGA" target="_blank"><b>Amazon accused of tricking Prime customers</b></a><br /><br />https://www.bbc.com/news/business-65978053?at_medium=RSS&at_campaign=KARANGA<br /><br /><a href="https://arstechnica.com/tech-policy/2023/06/ex-samsung-executive-alleged-to-have-stolen-tech-to-recreate-chip-plant-in-china/" target="_blank"><b>Ex-Samsung executive alleged to have stolen tech to recreate chip plant in China</b></a><br /><br />https://arstechnica.com/tech-policy/2023/06/ex-samsung-executive-alleged-to-have-stolen-tech-to-recreate-chip-plant-in-china/<br /><br /><a href="https://www.bbc.com/news/business-65861096?at_medium=RSS&at_campaign=KARANGA" target="_blank"><b>Is the US trying to kill crypto?</b></a><br /><br />https://www.bbc.com/news/business-65861096?at_medium=RSS&at_campaign=KARANGA<br /><br /><a href=" https://tryingtruly.substack.com/p/the-shitty-stack-system" target="_blank"><b>The Shitty Stack System: How Microsoft's ruthless employee evaluation system annihilated team collaboration.</b></a><br /><br />https://tryingtruly.substack.com/p/the-shitty-stack-system<br /><a href="https://around.uoregon.edu/content/study-aging-population-could-be-drag-economic-growth" target="_blank"><b><br />Study: Aging population could be a drag on economic growth</b></a><br /><br />https://around.uoregon.edu/content/study-aging-population-could-be-drag-economic-growth<br /><br /><a href="https://torrentfreak.com/u-s-seeks-70-month-prison-sentence-for-youtube-content-id-scammer-230623/" target="_blank"><b>U.S. Seeks 70-Month Prison Sentence for YouTube Content ID Scammer</b></a><br /><br />https://torrentfreak.com/u-s-seeks-70-month-prison-sentence-for-youtube-content-id-scammer-230623/<br /><br /><a href="https://restofworld.org/2023/nigerian-engineering-students-indian-youtubers/" target="_blank"><b>Nigerian engineering students’ favorite teachers are Indian YouTubers</b></a><br /><br />https://restofworld.org/2023/nigerian-engineering-students-indian-youtubers/<br /><br /><a href="https://corpgov.law.harvard.edu/2019/02/11/towards-accountable-capitalism-remaking-corporate-law-through-stakeholder-governance/" target="_blank"><b>Towards Accountable Capitalism: Remaking Corporate Law Through Stakeholder Governance</b></a><br /><br />https://corpgov.law.harvard.edu/2019/02/11/towards-accountable-capitalism-remaking-corporate-law-through-stakeholder-governance/<br /><br /><a href="https://github.com/Lesabotsy/bootcamp" target="_blank"><b>Self-Study the Basics of Computer Science</b></a><br /><br />https://github.com/Lesabotsy/bootcamp<br /><a href="https://www.theguardian.com/us-news/2023/jun/19/unabomber-ted-kaczynski-dangerous-anti-tech-manifesto-lives-on" target="_blank"><br /><b>‘His ideas resonate’: how the Unabomber’s dangerous anti-tech manifesto lives on</b></a><br /><br />https://www.theguardian.com/us-news/2023/jun/19/unabomber-ted-kaczynski-dangerous-anti-tech-manifesto-lives-on<br /><a href="https://www.bloomberg.com/news/features/2023-06-16/south-africa-s-crime-chaos-and-corruption-make-it-look-like-a-failed-state" target="_blank"><br /><b>Africa’s Richest City Is Crumbling Under Chaos and Corruption</b></a><br /><br />https://www.bloomberg.com/news/features/2023-06-16/south-africa-s-crime-chaos-and-corruption-make-it-look-like-a-failed-state<br /><br /><a href="https://onlinebooks.library.upenn.edu/" target="_blank"><b>The Online Books Page</b></a><br /><br />https://onlinebooks.library.upenn.edu/<br /><a href="https://www.washingtonpost.com/opinions/2023/06/12/books-editing-retouching-free-expression/" target="_blank"><br /><b>21st-century editors should keep their hands off 20th-century books</b></a><br /><br />https://www.washingtonpost.com/opinions/2023/06/12/books-editing-retouching-free-expression/<br /><br /><br /><br /><br /><br /><br /><br /><br /><br /><br /><br /><br /></p><div class="blogger-post-footer">http://rpc.technorati.com/rpc/ping</div>Chadhttp://www.blogger.com/profile/15083359852310707247noreply@blogger.com0tag:blogger.com,1999:blog-9106226.post-33698602741375323212023-06-14T09:44:00.005-07:002023-06-25T19:34:41.827-07:00What I am Reading 6/12/2023 - Two Days Late Edition<p><a href="https://thehackernews.com/2023/06/zero-day-alert-google-issues-patch-for.html" target="_blank"><b> Zero-Day Alert: Google Issues Patch for New Chrome Vulnerability - Update Now!</b></a><br /><br />https://thehackernews.com/2023/06/zero-day-alert-google-issues-patch-for.html<br /><br /><a href="https://www.schneier.com/blog/archives/2023/06/how-attorneys-are-harming-cybersecurity-incident-response.html" target="_blank"><b>How Attorneys Are Harming Cybersecurity Incident Response</b></a><br /><br />https://www.schneier.com/blog/archives/2023/06/how-attorneys-are-harming-cybersecurity-incident-response.html<br /><a href="https://www.bleepingcomputer.com/news/security/cisco-fixes-anyconnect-bug-giving-windows-system-privileges/" target="_blank"><br /><b>Cisco fixes AnyConnect bug giving Windows SYSTEM privileges</b></a><br /><br />https://www.bleepingcomputer.com/news/security/cisco-fixes-anyconnect-bug-giving-windows-system-privileges/<br /><a href=" https://arstechnica.com/information-technology/2023/06/mass-exploitation-of-critical-moveit-flaw-is-ransacking-orgs-big-and-small/" target="_blank"><br /><b>Mass exploitation of critical MOVEit flaw is ransacking orgs big and small</b></a><br /><br />https://arstechnica.com/information-technology/2023/06/mass-exploitation-of-critical-moveit-flaw-is-ransacking-orgs-big-and-small/<br /><a href="https://www.theregister.com/2023/06/07/10_years_after_snowden/" target="_blank"><br /><b>10 years after Snowden's first leak, what have we learned?</b></a><br /><br />https://www.theregister.com/2023/06/07/10_years_after_snowden/<br /><br /><a href=" https://securityboulevard.com/2023/06/government-cyber-policy-the-way-we-were-are-and-will-be/" target="_blank"><b>Government Cyber Policy: The Way We Were, Are and Will Be </b></a><br /><br />https://securityboulevard.com/2023/06/government-cyber-policy-the-way-we-were-are-and-will-be/<br /><br /><b><a href=" https://www.helpnetsecurity.com/2023/06/08/github-cybersecurity-projects/" target="_blank">20 cybersecurity projects on GitHub you should check out</a></b><br /><br />https://www.helpnetsecurity.com/2023/06/08/github-cybersecurity-projects/<br /><br /><a href="https://www.helpnetsecurity.com/2023/06/07/public-sector-applications-flaws/" target="_blank"><b>Public sector apps show higher rates of security flaws</b></a><br /><br />https://www.helpnetsecurity.com/2023/06/07/public-sector-applications-flaws/<br /><a href="https://www.techdirt.com/2023/06/09/elon-musk-says-twitter-is-going-to-get-rid-of-the-block-feature-enabling-greater-harassment/" target="_blank"><br /><b>Elon Musk Says Twitter Is Going To Get Rid Of The Block Feature, Enabling Greater Harassment </b></a><br /><br />https://www.techdirt.com/2023/06/09/elon-musk-says-twitter-is-going-to-get-rid-of-the-block-feature-enabling-greater-harassment/<br /><br /><a href="https://arstechnica.com/tech-policy/2023/06/inside-4chans-top-secret-moderation-machine/" target="_blank"><b>Inside 4chan’s top-secret moderation machine</b></a><br /><br />https://arstechnica.com/tech-policy/2023/06/inside-4chans-top-secret-moderation-machine/<br /><a href="https://cyberscoop.com/solarium-commission-critical-infrastructure-ppd-21/" target="_blank"><br /><b>White House needs to urgently fix nation’s approach to protecting critical infrastructure, group says</b></a><br /><br />https://cyberscoop.com/solarium-commission-critical-infrastructure-ppd-21/<br /><br /><a href="https://www.csoonline.com/article/3699128/network-perception-wants-to-give-more-visibility-into-ot-networks.html#tk.rss_all" target="_blank"><b>Network Perception wants to give more visibility into OT networks</b></a><br /><br />https://www.csoonline.com/article/3699128/network-perception-wants-to-give-more-visibility-into-ot-networks.html#tk.rss_all<br /><a href="https://www.csoonline.com/article/3698529/department-of-defense-ai-principles-have-a-place-in-the-ciso-s-playbook.html#tk.rss_all" target="_blank"><br /><b>Department of Defense AI principles have a place in the CISO’s playbook</b></a><br /><br />https://www.csoonline.com/article/3698529/department-of-defense-ai-principles-have-a-place-in-the-ciso-s-playbook.html#tk.rss_all<br /><br /><a href="https://grist.org/energy/first-us-nuclear-reactor-40-years-online-georgia/" target="_blank"><b>The US is getting its first new nuclear reactor in 40 years </b></a><br /><br />https://grist.org/energy/first-us-nuclear-reactor-40-years-online-georgia/<br /><a href="https://www.businessinsider.com/us-building-factories-census-data-chips-act-inflation-reduction-act-2023-6" target="_blank"><br /><b>The US is building factories at a wildly fast rate</b></a><br /><br />https://www.businessinsider.com/us-building-factories-census-data-chips-act-inflation-reduction-act-2023-6<br /><b><br /><a href=" https://www.construction-physics.com/p/the-birth-of-the-grid" target="_blank">The Birth of the Grid</a></b><br /><br />https://www.construction-physics.com/p/the-birth-of-the-grid<br /><br /></p><div class="blogger-post-footer">http://rpc.technorati.com/rpc/ping</div>Chadhttp://www.blogger.com/profile/15083359852310707247noreply@blogger.com0tag:blogger.com,1999:blog-9106226.post-60440683126215008642023-06-05T07:05:00.001-07:002023-06-05T07:05:58.213-07:00What I am Reading 6/5/2023<p><a href="https://www.dragos.com/blog/deconstructing-a-cybersecurity-event/" target="_blank"><b>Deconstructing a Cybersecurity Event</b></a><br /><br />https://www.dragos.com/blog/deconstructing-a-cybersecurity-event/<br /><br /><a href="https://www.darkreading.com/vulnerabilities-threats/focus-security-efforts-on-choke-points-not-visibility" target="_blank"><b>Focus Security Efforts on Choke Points, Not Visibility</b></a><br /><br />https://www.darkreading.com/vulnerabilities-threats/focus-security-efforts-on-choke-points-not-visibility<br /><br /><a href="https://arstechnica.com/information-technology/2023/05/critical-barracuda-0-day-was-used-to-backdoor-networks-for-8-months/" target="_blank"><b>Critical Barracuda 0-day was used to backdoor networks for 8 months</b></a><br /><br />https://arstechnica.com/information-technology/2023/05/critical-barracuda-0-day-was-used-to-backdoor-networks-for-8-months/<br /><br /><a href=" https://www.eff.org/deeplinks/2023/05/federal-judge-makes-history-holding-border-searches-cell-phones-require-warrant" target="_blank"><b>Federal Judge Makes History in Holding That Border Searches of Cell Phones Require a Warrant</b></a><br /><br />https://www.eff.org/deeplinks/2023/05/federal-judge-makes-history-holding-border-searches-cell-phones-require-warrant<br /><a href="https://www.theregister.com/2023/05/30/column/" target="_blank"><br /><b>The FBI as advanced persistent threat – and what to do about it</b></a><br /><br />https://www.theregister.com/2023/05/30/column/<br /><br /><a href="https://www.darkreading.com/application-security/salesforce-ghost-sites-expose-sensitive-corporate-data" target="_blank"><b>Salesforce 'Ghost Sites' Expose Sensitive Corporate Data</b></a><br /><br />https://www.darkreading.com/application-security/salesforce-ghost-sites-expose-sensitive-corporate-data<br /><a href="https://www.securityweek.com/organizations-warned-of-backdoor-feature-in-hundreds-of-gigabyte-motherboards/" target="_blank"><br /><b>Organizations Warned of Backdoor Feature in Hundreds of Gigabyte Motherboards</b></a><br /><br />https://www.securityweek.com/organizations-warned-of-backdoor-feature-in-hundreds-of-gigabyte-motherboards/<br /><br /><a href=" https://arstechnica.com/information-technology/2023/05/researchers-tell-owners-to-assume-compromise-of-unpatched-zyxel-firewalls/" target="_blank"><b>Researchers tell owners to “assume compromise” of unpatched Zyxel firewalls</b></a><br /><br />https://arstechnica.com/information-technology/2023/05/researchers-tell-owners-to-assume-compromise-of-unpatched-zyxel-firewalls/<br /><br /><a href="https://arstechnica.com/tech-policy/2023/05/cyberweapon-manufacturers-plot-to-stay-on-the-right-side-of-us/" target="_blank"><b>Cyberweapon manufacturers plot to stay on the right side of US</b></a><br /><br />https://arstechnica.com/tech-policy/2023/05/cyberweapon-manufacturers-plot-to-stay-on-the-right-side-of-us/<br /><br /><a href="https://www.stevelipner.org/links/resources/The%20Birth%20and%20Death%20of%20the%20Orange%20Book.pdf" target="_blank"><b>The Birth and Death of the Orange Book</b></a><br /><br />https://www.stevelipner.org/links/resources/The%20Birth%20and%20Death%20of%20the%20Orange%20Book.pdf<br /></p><div class="style-scope ytd-watch-metadata" style="text-align: left;"><a href=" https://www.youtube.com/watch?v=4U9MI0u2VIE" target="_blank"><b>Hackers -- Cyberdelia --- Crayola Books</b></a></div><p> https://www.youtube.com/watch?v=4U9MI0u2VIE</p><p><a href=" https://news.ycombinator.com/item?id=36149904" target="_blank"><b>Ask HN: Cyber Security folks – what are your biggest pain points?</b></a><br /><br />https://news.ycombinator.com/item?id=36149904<br /><br /><a href="https://www.nytimes.com/2023/05/28/books/sybil-50th-anniversary.html" target="_blank"><b>Even After Debunking, ‘Sybil’ Hasn’t Gone Away</b></a><br /><br />https://www.nytimes.com/2023/05/28/books/sybil-50th-anniversary.html<br /><a href=" https://www.spectator.co.uk/article/the-end-of-the-silicon-valley-dream/" target="_blank"><br /><b>The end of the Silicon Valley dream</b></a><br /><br />https://www.spectator.co.uk/article/the-end-of-the-silicon-valley-dream/<br /><br /><a href="https://www.niskanencenter.org/the-planning-of-u-s-physician-shortages/" target="_blank"><b>The Planning of U.S. Physician Shortages</b></a><br /><br />https://www.niskanencenter.org/the-planning-of-u-s-physician-shortages/<br /><br /><a href=" https://www.electropages.com/blog/2023/05/ethernet-turns-50-connector-ages" target="_blank"><b>Ethernet at 50: Why It's Still the Backbone of Networking</b></a><br /><br />https://www.electropages.com/blog/2023/05/ethernet-turns-50-connector-ages<br /><a href=" https://securityboulevard.com/2023/06/two-years-after-colonial-pipeline-what-have-we-learned/" target="_blank"><br /><b>Two Years After Colonial Pipeline, What Have We Learned? </b></a><br /><br />https://securityboulevard.com/2023/06/two-years-after-colonial-pipeline-what-have-we-learned/<br /><a href="https://cyberscoop.com/white-house-section-702-fisa-surveillance/" target="_blank"><br /><b>The White House says Section 702 is critical for cybersecurity, yet public evidence is sparse </b></a><br /><br />https://cyberscoop.com/white-house-section-702-fisa-surveillance/</p><p><a href=" https://www.youtube.com/watch?v=aZSlaZq2jzA " target="_blank"><b> SCADA 103: SCADA Network Discovery & GRASSMARLIN (Kayla Carrigan from Percival Engineering)</b></a></p><p> https://www.youtube.com/watch?v=aZSlaZq2jzA <br /></p><div class="blogger-post-footer">http://rpc.technorati.com/rpc/ping</div>Chadhttp://www.blogger.com/profile/15083359852310707247noreply@blogger.com0tag:blogger.com,1999:blog-9106226.post-23389309326466244972023-06-01T09:37:00.001-07:002023-06-01T09:37:19.237-07:00Started work on my MBA in IT Management today<p>Not exactly sure why. I'm not really management material, but I do want to pursue a couple areas where an MBA is recommended. That's one reason I guess.</p><p>Second reason, when I try and make business cases I would like to be speaking from a more secure base of knowledge than stuff I have just read on my own.</p><p>Third - spite, every MBA I have known except maybe 2 are dicks. I want to be able to throw their dickishness back at them :-) <br /></p><p>Probably not the best reasons but they are mine.</p><p>First term - </p><p>Managing Organizations and Leading People</p><p>IT Project Management</p><p>Managing Human Capital</p><p>We'll see how it goes.<br /></p><div class="blogger-post-footer">http://rpc.technorati.com/rpc/ping</div>Chadhttp://www.blogger.com/profile/15083359852310707247noreply@blogger.com0tag:blogger.com,1999:blog-9106226.post-70488867573143266272023-05-30T06:27:00.003-07:002023-05-30T06:27:36.752-07:00What IAm Reading 5/30/2023<p> - Sorry missed last week and in a hurry this week so it's kind of sloppy -<br /></p><p> Is cybersecurity an unsolvable problem?<br /><br />https://arstechnica.com/features/2023/05/is-cybersecurity-an-unsolvable-problem/<br /><br />US Probing Cybersecurity Risks of Rockwell Automation’s China Operations: Report<br /><br />https://www.securityweek.com/us-probing-cybersecurity-risks-of-rockwell-automations-china-operations-report/<br /><br />Unearthed: CosmicEnergy, malware for causing Kremlin-style power disruptions<br /><br />https://arstechnica.com/information-technology/2023/05/unearthed-cosmicenergy-malware-for-causing-kremlin-style-power-disruptions/<br /><br />Chinese state hackers infect critical infrastructure throughout the US and Guam<br /><br />https://arstechnica.com/information-technology/2023/05/chinese-state-hackers-infect-critical-infrastructure-throughout-the-us-and-guam/<br /><br />People's Republic of China State-Sponsored Cyber Actor Living off the Land to Evade Detection<br /><br />https://media.defense.gov/2023/May/24/2003229517/-1/-1/0/CSA_Living_off_the_Land.PDF<br /><br />'Volt Typhoon' China-Backed APT Infiltrates US Critical Infrastructure Orgs<br /><br />https://www.darkreading.com/endpoint/-volt-typhoon-china-backed-apt-infiltrates-us-critical-infrastructure<br /><br />FBI Disarms Russian FSB 'Snake' Malware Network<br /><br />https://www.darkreading.com/attacks-breaches/fbi-disarms-russian-fsb-snake-malware-network<br /><br />Experts Detail New Zero-Click Windows Vulnerability for NTLM Credential Theft<br /><br />https://thehackernews.com/2023/05/experts-detail-new-zero-click-windows.html<br /><br />Microsoft will take nearly a year to finish patching new 0-day Secure Boot bug<br /><br />https://arstechnica.com/information-technology/2023/05/microsoft-patches-secure-boot-flaw-but-wont-enable-fix-by-default-until-early-2024/<br /><br />How Cybercriminals Adapted to Microsoft Blocking Macros by Default<br /><br />https://www.darkreading.com/application-security/how-malware-delivery-adapted-to-microsoft-blocking-macros-by-default<br /><br />Green hills forever: Windows XP activation algorithm cracked after 21 years<br /><br />https://arstechnica.com/gadgets/2023/05/a-decade-after-it-mattered-windows-xps-activation-algorithm-is-cracked/<br /><br />Cancel your WinRAR trial: Windows will soon support RAR, gz, 7z, and other archives<br /><br />https://arstechnica.com/gadgets/2023/05/cancel-your-winrar-trial-windows-will-soon-support-rar-gz-7z-and-other-archives/<br /><br />Leak of MSI UEFI signing keys stokes fears of “doomsday” supply chain attack<br /><br />https://arstechnica.com/information-technology/2023/05/leak-of-msi-uefi-signing-keys-stokes-concerns-of-doomsday-supply-chain-attack/<br /><br />Hackers attempt to extort Dragos and its executives in suspected ransomware attempt<br /><br />https://cyberscoop.com/dragos-cyberattack-ransomware/<br /><br />The Vulnerability Assessment Framework: Stop Inefficient Patching Now and Transform Your Vulnerability Management<br /><br />https://www.sans.org/blog/the-vulnerability-assessment-framework/<br /><br />Google to expand dark web monitoring to all Gmail users in the U.S. <br /><br />https://www.zdnet.com/article/google-to-expand-dark-web-monitoring-to-all-gmail-users-in-the-u-s/#ftag=RSSbaffb68<br /><br />FTX’s Bankman-Fried seeks tossing of charges over crypto collapse<br /><br />https://www.aljazeera.com/economy/2023/5/9/ftxs-bankman-fried-seeks-tossing-of-charges-over-crypto-collapse<br /><br />Zimbabwe’s new gold-backed digital currency: All you need to know<br /><br />https://www.aljazeera.com/news/2023/5/9/zimbabwes-new-gold-backed-digital-currency-all-you-need-to-know<br /><br />How An Obscure OTC-Traded Derivative From the 80's Took Over Crypto<br /><br />https://blog.everstrike.io/how-an-obscure-otc-traded-derivative-took-over-crypto/<br /><br />Texas moves to create gold-backed digital currency<br /><br />https://www.kitco.com/news/2023-04-06/Texas-moves-to-create-gold-backed-digital-currency.html<br /><br />Cory Doctorow Explains Why Big Tech Is Making the Internet Terrible<br /><br />https://jacobin.com/2023/05/cory-doctorow-big-tech-internet-monopoly-capitalism-artificial-intelligence-crypto/<br /><br />The Ten Things I Do to Burn Fat Like a Furnace<br /><br />https://primecuts.substack.com/p/the-ten-things-i-do-to-burn-fat-like<br /><br />New York Is Forcing Schools to Change How They Teach Children to Read<br /><br />https://www.nytimes.com/2023/05/09/nyregion/reading-nyc-schools.html#commentsContainer<br /><br />Students can’t get off their phones. Schools have had enough.<br /><br />https://www.washingtonpost.com/education/2023/05/09/school-cellphone-ban-yondr/<br /><br />What happens when half of the network is down?<br /><br />https://blog.ipfs.tech/2023-ipfs-unresponsive-nodes/<br /><br />Twitter plans to remove and archive inactive accounts<br /><br />https://www.bbc.com/news/technology-65533014?at_medium=RSS&at_campaign=KARANGA<br /><br />Right-wing Twitter worried Musk’s CEO pick could return Twitter to its roots<br /><br />https://arstechnica.com/tech-policy/2023/05/twitter-users-fear-new-ceo-will-end-musks-commitment-to-free-speech-on-platform/<br /><br />Children's commissioner: Pornography affecting 8-year-olds' behaviour<br /><br />https://www.bbc.com/news/technology-65534354?at_medium=RSS&at_campaign=KARANGA<br /><br />US Gulf states’ inactive, uncapped oil and gas wells a $30 billion liability<br /><br />https://arstechnica.com/science/2023/05/gulf-states-inactive-uncapped-oil-and-gas-wells-a-30-billion-liability/<br /><br />14th Amendment option on the debt ceiling would need to overcome DOJ concerns<br /><br />https://www.nbcnews.com/politics/justice-department/14th-amendment-option-debt-ceiling-need-overcome-doj-concerns-rcna83514<br /><br />What does a leaked Google memo reveal about the future of AI?<br /><br />https://www.economist.com/leaders/2023/05/11/what-does-a-leaked-google-memo-reveal-about-the-future-of-ai<br /><br />The Man Who Invented the Modern Cop Novel<br /><br />https://quillette.com/2023/04/23/the-man-who-invented-the-cop-novel/<br /><br />Vint Cerf on 3 Mistakes He Made in TCP/IP <br /><br />https://spectrum.ieee.org/vint-cerf-mistakes<br /><br />America’s jobs report is not as strong as it seems<br /><br />https://www.economist.com/graphic-detail/2023/05/05/americas-jobs-report-is-not-as-strong-as-it-seems<br /><br />Former Uber Security Officer Won’t Go To Prison For Covering Up A 2016 Data Breach <br /><br />https://www.techdirt.com/2023/05/10/former-uber-security-officer-wont-go-to-prison-for-covering-up-a-2016-data-breach/<br /><br />Executive Fired From TikTok’s Chinese Owner Says Beijing Had Access to App Data in Termination Suit<br /><br />https://www.securityweek.com/executive-fired-from-tiktoks-chinese-owner-says-beijing-had-access-to-app-data-in-termination-suit/<br /><br />Nationwide push to require social media age verification raises questions about privacy, industry standards <br /><br />https://cyberscoop.com/age-verfication-schatz-cotton-social-media/<br /><br />Can a wind turbine handle hurricane speed winds?<br /><br />https://www.bbc.com/news/business-65261147?at_medium=RSS&at_campaign=KARANGA<br /><br />China bans major chip maker Micron from key infrastructure projects<br /><br />https://www.bbc.com/news/business-65667746?at_medium=RSS&at_campaign=KARANGA<br /><br />‘In a lot of the world, the clock has hit midnight’: China is calling in loans to dozens of countries from Pakistan to Kenya<br /><br />https://fortune.com/2023/05/18/china-belt-road-loans-pakistan-sri-lanka-africa-collapse-economic-instability/<br /><br /><br /><br /><br /><br /><br /><br /><br /><br /><br /><br /><br /><br /></p><div class="blogger-post-footer">http://rpc.technorati.com/rpc/ping</div>Chadhttp://www.blogger.com/profile/15083359852310707247noreply@blogger.com0tag:blogger.com,1999:blog-9106226.post-63793363910981451892023-05-07T18:46:00.000-07:002023-05-07T18:46:33.089-07:00What I am Reading 5/7/2023<p><a href="https://www.csoonline.com/article/3695575/google-launches-entry-level-cybersecurity-certificate-to-teach-threat-detection-skills.html#tk.rss_all" target="_blank"><b> Google launches entry-level cybersecurity certificate to teach threat detection skills</b></a><br /><br />https://www.csoonline.com/article/3695575/google-launches-entry-level-cybersecurity-certificate-to-teach-threat-detection-skills.html#tk.rss_all<br />
<a href="https://www.securityweek.com/critical-infrastructure-organizations-urged-to-identify-risky-communications-equipment/" target="_blank"><br /><b>Critical Infrastructure Organizations Urged to Identify Risky Communications Equipment </b></a><br /><br />https://www.securityweek.com/critical-infrastructure-organizations-urged-to-identify-risky-communications-equipment/<br /><a href="https://securityaffairs.com/145731/cyber-warfare-2/sandworm-apt-winrar-destructive-attacks.html" target="_blank"><br /><b>Russia-linked Sandworm APT uses WinRAR in destructive attacks on Ukraine’s public sector </b></a><br /><a href="goog_350967269"><br /></a>https://securityaffairs.com/145731/cyber-warfare-2/sandworm-apt-winrar-destructive-attacks.html<br /><br /><a href="https://www.securityweek.com/critical-siemens-rtu-vulnerability-could-allow-hackers-to-destabilize-power-grid/" target="_blank"><b>Critical Siemens RTU Vulnerability Could Allow Hackers to Destabilize Power Grid</b></a><br /><br />https://www.securityweek.com/critical-siemens-rtu-vulnerability-could-allow-hackers-to-destabilize-power-grid/<br /><br /><a href="https://arstechnica.com/information-technology/2023/05/fearmongering-over-public-charging-stations-needs-to-stop-heres-why/" target="_blank"><b>Those scary warnings of juice jacking in airports and hotels? They’re nonsense</b></a><br /><br />https://arstechnica.com/information-technology/2023/05/fearmongering-over-public-charging-stations-needs-to-stop-heres-why/<br /><a href=" https://www.sans.org/blog/vmmm-self-assessment-tool/" target="_blank"><br /><b>Vulnerability Management Maturity Model – Self-Assessment Tool (VMMM-SAT)</b></a><br /><br />https://www.sans.org/blog/vmmm-self-assessment-tool/<br /><br /><a href="https://cyberscoop.com/us-cyber-strategy-local-cybersecurity-volunteers/" target="_blank"><b>The key to making the US cyber strategy work: boots on the ground </b></a><br /><br />https://cyberscoop.com/us-cyber-strategy-local-cybersecurity-volunteers/<br /><a href=" https://cyberscoop.com/easterly-warning-weapons-artificial-intelligence-chatgpt/" target="_blank"><br /><b>Top US cyber official warns AI may be the ‘most powerful weapon of our time’ </b></a><br /><br />https://cyberscoop.com/easterly-warning-weapons-artificial-intelligence-chatgpt/<br /><a href=" https://www.theregister.com/2023/05/06/ai_hacking_defcon/" target="_blank"><br /><b>DEF CON to set thousands of hackers loose on LLMs</b></a><br /><br />https://www.theregister.com/2023/05/06/ai_hacking_defcon/<br /><a href="https://www.washingtonpost.com/national-security/2023/05/01/marshals-hack-fugitives-surveillance-shutdown/"><br /><b>Computer system used to hunt fugitives is still down 10 weeks after hack</b></a><br /><br />https://www.washingtonpost.com/national-security/2023/05/01/marshals-hack-fugitives-surveillance-shutdown/<br /><br /><a href=" https://www.theregister.com/2023/05/01/fbi_director_wray_china_testimony/" target="_blank"><b>China has 50 hackers for every FBI cyber agent, says Bureau boss</b></a><br /><br />https://www.theregister.com/2023/05/01/fbi_director_wray_china_testimony/<br /><a href=" https://www.nytimes.com/2023/05/02/world/asia/korea-us-comfort-women-sexual-slavery.html" target="_blank"><br /><b>A Brutal Sex Trade Built for American Soldiers</b></a><br /><br />https://www.nytimes.com/2023/05/02/world/asia/korea-us-comfort-women-sexual-slavery.html<br /><a href=" https://www.bbc.com/news/world-asia-pacific-65453384?at_medium=RSS&at_campaign=KARANGA" target="_blank"><br /><b>Japan to ban upskirting in sweeping sex crime reforms</b></a><br /><br />https://www.bbc.com/news/world-asia-pacific-65453384?at_medium=RSS&at_campaign=KARANGA<br /><br /><a href="https://www.cbc.ca/news/politics/c11-online-streaming-1.6824314" target="_blank"><b>Controversial bill to regulate online streaming becomes law</b></a><br /><br />https://www.cbc.ca/news/politics/c11-online-streaming-1.6824314<br /><a href=" https://www.theregister.com/2023/05/01/uscis_h_1b_surge/" target="_blank"><br /><b>Uncle Sam sounds like it may actually do something about rampant visa H-1B fraud</b></a><br /><br />https://www.theregister.com/2023/05/01/uscis_h_1b_surge/<br /><br /><a href="https://www.weforum.org/agenda/2023/01/electric-cars-charging-habits" target="_blank"><b>As more electric vehicles hit the road, our charging habits must change - here’s why</b></a><br /><br />https://www.weforum.org/agenda/2023/01/electric-cars-charging-habits<br /><a href="https://www.gatesnotes.com/Wyoming-TerraPower" target="_blank"><br /><b>I’m in Wyoming to celebrate the next nuclear breakthrough</b></a><br /><br />https://www.gatesnotes.com/Wyoming-TerraPower<br /><br /><a href="https://www.pcgamer.com/so-youre-telling-me-that-us-crypto-mining-used-more-power-last-year-than-all-the-computers/" target="_blank"><b>So, you're telling me that US crypto mining used more power last year than ALL THE COMPUTERS?!</b></a><br /><br />https://www.pcgamer.com/so-youre-telling-me-that-us-crypto-mining-used-more-power-last-year-than-all-the-computers/<br /><br /><b><a href=" https://jacobin.com/2021/05/chipotle-workers-fair-workweek-law-nyc" target="_blank">Chipotle Is a Criminal Enterprise Built on Exploitation<br /></a></b><br />https://jacobin.com/2021/05/chipotle-workers-fair-workweek-law-nyc<br /><a href="https://arstechnica.com/tech-policy/2023/05/googlers-angry-about-ceos-226m-pay-after-cuts-in-perks-and-12000-layoffs/" target="_blank"><br /><b>Googlers angry about CEO’s $226M pay after cuts in perks and 12,000 layoffs</b></a><br /><br />https://arstechnica.com/tech-policy/2023/05/googlers-angry-about-ceos-226m-pay-after-cuts-in-perks-and-12000-layoffs/<br /><br /><a href="https://arstechnica.com/science/2023/05/yet-another-problem-with-recycling-it-spews-microplastics/" target="_blank"><b>Yet another problem with recycling: It spews microplastics</b><br /></a><br />https://arstechnica.com/science/2023/05/yet-another-problem-with-recycling-it-spews-microplastics/<br /><br /><br /></p><div class="blogger-post-footer">http://rpc.technorati.com/rpc/ping</div>Chadhttp://www.blogger.com/profile/15083359852310707247noreply@blogger.com0tag:blogger.com,1999:blog-9106226.post-41743449850221125482023-04-30T06:53:00.000-07:002023-04-30T06:53:02.025-07:00What I'm Reading 4/30/2023 <p> Sorry I missed last week I was getting ready for some stuff at work and just didn't have time.</p><p><a href="https://www.zdnet.com/home-and-office/work-life/5-ways-to-be-a-better-manager-best-practices-every-leader-should-know/#ftag=RSSbaffb68" target="_blank"><b>5 ways to be a better manager: Best practices every leader should know </b></a><br /><br />https://www.zdnet.com/home-and-office/work-life/5-ways-to-be-a-better-manager-best-practices-every-leader-should-know/#ftag=RSSbaffb68<br /><br /><a href=" https://www.amazingcto.com/startup-ceo-startrek-kirk-engineering-management/" target="_blank"><b>Startup CEOs learned Engineering Management from Captain Kirk</b></a><br /><br />https://www.amazingcto.com/startup-ceo-startrek-kirk-engineering-management/<br /><br /><a href="https://arstechnica.com/information-technology/2023/04/misconfigured-servers-running-salesforce-software-are-leaking-sensitive-data/" target="_blank"><b>Sensitive data is being leaked from servers running Salesforce software</b></a><br /><br />https://arstechnica.com/information-technology/2023/04/misconfigured-servers-running-salesforce-software-are-leaking-sensitive-data/<br /><br /><a href="https://arstechnica.com/gadgets/2023/04/its-the-end-of-the-line-for-yearly-windows-10-updates-says-microsoft/" target="_blank"><b>It’s the end of the line for yearly Windows 10 updates, says Microsoft</b></a><br /><br />https://arstechnica.com/gadgets/2023/04/its-the-end-of-the-line-for-yearly-windows-10-updates-says-microsoft/<br /><br /><a href=" https://arstechnica.com/gadgets/2023/04/microsoft-phone-link-barely-brings-imessage-to-windows-today/" target="_blank"><b>Windows 11’s limited iMessage integration has publicly launched</b></a><br /><br />https://arstechnica.com/gadgets/2023/04/microsoft-phone-link-barely-brings-imessage-to-windows-today/<br /><br /><a href="https://arstechnica.com/tech-policy/2023/04/google-runs-5-of-the-19-platforms-that-must-follow-eus-new-internet-rules/" target="_blank"><b>EU names 19 large tech platforms that must follow Europe’s new Internet rules</b></a><br /><br />https://arstechnica.com/tech-policy/2023/04/google-runs-5-of-the-19-platforms-that-must-follow-eus-new-internet-rules/<br /><br /><a href="https://www.zdnet.com/article/these-two-countries-are-teaming-up-to-develop-ai-for-cybersecurity/#ftag=RSSbaffb68" target="_blank"><b>These two countries are teaming up to develop AI for cybersecurity </b></a><br /><br />https://www.zdnet.com/article/these-two-countries-are-teaming-up-to-develop-ai-for-cybersecurity/#ftag=RSSbaffb68<br /><a href="https://www.csoonline.com/article/3694450/ot-giants-collaborate-on-ethos-early-threat-and-attack-warning-system.html#tk.rss_all" target="_blank"><br /><b>OT giants collaborate on ETHOS early threat and attack warning system</b></a><br /><br />https://www.csoonline.com/article/3694450/ot-giants-collaborate-on-ethos-early-threat-and-attack-warning-system.html#tk.rss_all<br /><a href="https://www.csoonline.com/article/3694089/north-dakota-turns-to-ai-to-boost-effectiveness-and-efficiency-of-its-cybersecurity.html#tk.rss_all" target="_blank"><br /><b>North Dakota turns to AI to boost effectiveness and efficiency of its cybersecurity</b></a><br /><br />https://www.csoonline.com/article/3694089/north-dakota-turns-to-ai-to-boost-effectiveness-and-efficiency-of-its-cybersecurity.html#tk.rss_all<br /><b><br /><a href=" https://www.scmagazine.com/news/threat-intelligence/eight-years-obama-xi-agreement-chinese-hacking-iworse-than-ever" target="_blank">Eight years since the Obama-Xi agreement, Chinese hacking is worse than ever</a></b><br /><br />https://www.scmagazine.com/news/threat-intelligence/eight-years-obama-xi-agreement-chinese-hacking-iworse-than-ever<br /><br /><a href=" https://www.theregister.com/2023/04/24/microsoft_windows_driver_aukill_ransomware/" target="_blank"><b>How fiends abuse an out-of-date Microsoft Windows driver to infect victims</b></a><br /><br />https://www.theregister.com/2023/04/24/microsoft_windows_driver_aukill_ransomware/<br /><a href=" https://www.bbc.com/news/technology-65377793?at_medium=RSS&at_campaign=KARANGA" target="_blank"><br /><b>New rules ban subscription traps and fake reviews</b></a><br /><br />https://www.bbc.com/news/technology-65377793?at_medium=RSS&at_campaign=KARANGA<br /><a href=" https://www.bbc.com/news/world-europe-65429936" target="_blank"><br /><b>Sperm donor who fathered 550 children ordered to stop</b></a><br /><br />https://www.bbc.com/news/world-europe-65429936<br /><a href=" https://www.wired.com/story/solarwinds-hack-public-disclosure/" target="_blank"><br /><b>The DOJ Detected the SolarWinds Hack 6 Months Earlier Than First Disclosed</b></a><br /><br />https://www.wired.com/story/solarwinds-hack-public-disclosure/<br /><a href=" https://abcnews.go.com/US/wireStory/california-approves-rule-phasing-big-diesel-trucks-98949919" target="_blank"><br /><b>California approves rule phasing out big diesel trucks</b></a><br /><br />https://abcnews.go.com/US/wireStory/california-approves-rule-phasing-big-diesel-trucks-98949919<br /><a href="https://www.commondreams.org/news/ocean-warming-study" target="_blank"><br /><b>Ocean Warming Study So Distressing, Some Scientists Didn't Even Want to Talk About It</b></a><br /><br />https://www.commondreams.org/news/ocean-warming-study<br /><br /><a href=" https://www.nytimes.com/2023/04/13/us/california-solar-panels-canals.html" target="_blank"><b>California Wants to Cover Its Canals With Solar Panels</b></a><br /><br />https://www.nytimes.com/2023/04/13/us/california-solar-panels-canals.html<br /><a href=" https://www.bloomberg.com/news/articles/2023-04-28/us-gen-z-living-paycheck-to-paycheck-is-on-the-rise?leadSource=uverify%20wall" target="_blank"><br /><b>More Young Adults Are Living Paycheck to Paycheck in the US</b></a><br /><br />https://www.bloomberg.com/news/articles/2023-04-28/us-gen-z-living-paycheck-to-paycheck-is-on-the-rise?leadSource=uverify%20wall<br /><a href="https://www.wsj.com/articles/u-s-says-some-companies-cheat-h-1b-lottery-driving-record-applications-1a3e4fd" target="_blank"><br /><b>Companies Are Colluding to Cheat H-1B Visa Lottery, U.S. Says</b></a><br /><br />https://www.wsj.com/articles/u-s-says-some-companies-cheat-h-1b-lottery-driving-record-applications-1a3e4fd<br /><a href=" https://electrek.co/2023/04/27/wind-and-solar-are-now-beating-coal-in-the-us/" target="_blank"><br /><b>Wind and solar are now beating coal in the US</b></a><br /><br />https://electrek.co/2023/04/27/wind-and-solar-are-now-beating-coal-in-the-us/<br /><a href=" https://nationalinterest.org/feature/nuclear-power-answer-global-and-environmental-energy-woes-206418" target="_blank"><br /><b>Nuclear Power is the Answer to Global and Environmental Energy Woes</b></a><br /><br />https://nationalinterest.org/feature/nuclear-power-answer-global-and-environmental-energy-woes-206418<br /><br /><a href=" https://arstechnica.com/science/2023/04/what-the-us-needs-for-future-nuclear-power-tech-to-get-off-the-ground/" target="_blank"><b>What the US needs for future nuclear power tech to get off the ground</b></a><br /><br />https://arstechnica.com/science/2023/04/what-the-us-needs-for-future-nuclear-power-tech-to-get-off-the-ground/<br /><br /><a href="https://www.canarymedia.com/articles/batteries/this-nasa-tech-might-just-spur-a-major-grid-battery-breakthrough" target="_blank"><b>This NASA tech might just spur a major grid battery breakthrough</b></a><br /><br />https://www.canarymedia.com/articles/batteries/this-nasa-tech-might-just-spur-a-major-grid-battery-breakthrough<br /><br /><a href="https://incompliancemag.com/article/scif-and-radio-frequency-secured-facility-design/" target="_blank"><b>SCIF and Radio Frequency Secured Facility Design</b></a><br /><br />https://incompliancemag.com/article/scif-and-radio-frequency-secured-facility-design/<br /><br /><a href="https://arstechnica.com/tech-policy/2023/04/colorado-governor-signs-tractor-right-to-repair-law-opposed-by-john-deere/" target="_blank"><b>Colorado governor signs tractor right-to-repair law opposed by John Deere</b></a><br /><br />https://arstechnica.com/tech-policy/2023/04/colorado-governor-signs-tractor-right-to-repair-law-opposed-by-john-deere/<br /><br /><a href=" https://grist.org/technology/microsoft-right-to-repair-quietly-supported-legislation-to-make-it-easier-to-fix-devices-heres-why-thats-a-big-deal/" target="_blank"><b>Microsoft quietly supported legislation to make it easier to fix devices. Here’s why that’s a big deal. </b></a><br /><br />https://grist.org/technology/microsoft-right-to-repair-quietly-supported-legislation-to-make-it-easier-to-fix-devices-heres-why-thats-a-big-deal/<br /><br /><a href=" https://www.theguardian.com/film/2023/apr/26/steven-spielberg-et-guns-movie-edit" target="_blank"><b>Steven Spielberg: ‘No film should be revised’ based on modern sensitivity</b></a><br /><br />https://www.theguardian.com/film/2023/apr/26/steven-spielberg-et-guns-movie-edit<br /><a href=" https://www.npr.org/2023/04/26/1170522239/tech-job-openings-mass-layoffs-workers-silicon-valley-google-meta-amazon" target="_blank"><br /><b>Have tech skills, will work. Why IT jobs remain hot despite mass layoffs</b></a><br /><br />https://www.npr.org/2023/04/26/1170522239/tech-job-openings-mass-layoffs-workers-silicon-valley-google-meta-amazon<br /><br /><a href=" https://nadia.xyz/top-talent" target="_blank"><b>Explaining tech's notion of talent scarcity</b></a><br /><br />https://nadia.xyz/top-talent<br /><br /><a href="https://www.reuters.com/legal/us-appeals-court-upholds-lower-court-order-forcing-apple-allow-third-party-app-2023-04-24/" target="_blank"><b>Apple cannot ban links to outside App Store payments, U.S. appeals court says</b></a><br /><br />https://www.reuters.com/legal/us-appeals-court-upholds-lower-court-order-forcing-apple-allow-third-party-app-2023-04-24/<br /><br /></p><div class="blogger-post-footer">http://rpc.technorati.com/rpc/ping</div>Chadhttp://www.blogger.com/profile/15083359852310707247noreply@blogger.com0tag:blogger.com,1999:blog-9106226.post-21339588096998030492023-04-28T14:40:00.002-07:002023-04-28T14:40:18.108-07:00Recent Books - Tracers in the Dark and Red Team Blues<p> Was tied up with an IG audit this week so I missed the Sunday update, but in the down time I read Red Team Blues by Cory Doctrow. I wasn't that impressed.</p><p>In a lot of ways it was a typical Doctrow book, the protagonist gets himself into some unlikely bit of trouble, but because he is supremely skilled at (insert obsession of the moment here) he manages to improvise, adapt and overcome. Not that this is any different from a billion other mystery/thriller novels, but at the same time he manages to be supremely annoying by constantly talking about eating at Michelin star restaurants, drink high-end bourbon and driving a Nissan Leaf while living in his Tour Bus RV. It's like he is constantly reminding us how much better than us he is.</p><p>Even more annoying than the above though (besides his constant repetition of The blue team has to be right every time the read team only has to be right once) is the way he trivializes tracking criminals through bitcoin. I swear 3 days and he tracks down the entire Zeta cartel and turns them against an Azerbaijani crime family. I read Tracers in the Dark and too me it seems a little more complicated than looking at some bitcoin wallets and linked in, but I am not an expert so maybe I am wrong. It just seems like Doctrow kind of magics away some of the complications.</p><p>Speaking of <a href="https://www.amazon.com/Tracers-Dark-Global-Crime-Cryptocurrency/dp/B09VLJ2WWD ">Tracers in the Dark by Andy Greenberg</a>. I read it a few months ago. Excellent book. First off it starts out by establishing that Bitcoin (once thought to be untraceable) was far easier to trace than people thought (no that isn't a contradiction to my complaint above, I said simpler not easy) It then follows investigators thru a series of cases: Silk Road, Mt. Gox, and Welcome to Video among others. As it does so Greenberg show the investigative and legal difficulties involved. Really shed a lot of light on the subject. Like I said good book.<br /></p><p><br /></p><div class="blogger-post-footer">http://rpc.technorati.com/rpc/ping</div>Chadhttp://www.blogger.com/profile/15083359852310707247noreply@blogger.com0tag:blogger.com,1999:blog-9106226.post-64286470394919974532023-04-17T08:00:00.000-07:002023-04-17T08:00:35.599-07:00What I'm Reading 4/17/2023 - Shifting Cybersecurity Left and the Amazing US Dollar<p><a href="https://fedscoop.com/cisa-and-partners-issue-secure-by-design-principles-for-software-manufacturers/" target="_blank"> CISA and partners issue secure-by-design principles for software manufacturers </a><br /><br />https://fedscoop.com/cisa-and-partners-issue-secure-by-design-principles-for-software-manufacturers/<br /><br /><a href="https://www.cisa.gov/sites/default/files/2023-04/principles_approaches_for_security-by-design-default_508_0.pdf" target="_blank">Shifting the Balance of Cybersecurity Risk: Principles and Approaches for Security-by-Design and -Default</a><br /><br />https://www.cisa.gov/sites/default/files/2023-04/principles_approaches_for_security-by-design-default_508_0.pdf<br /><a href="https://www.cisa.gov/news-events/alerts/2023/04/11/cisa-releases-zero-trust-maturity-model-version-2" target="_blank"><br />CISA Releases Zero Trust Maturity Model Version 2 </a><br /><br />https://www.cisa.gov/news-events/alerts/2023/04/11/cisa-releases-zero-trust-maturity-model-version-2<br /><br /><a href="https://industrialcyber.co/cisa/string-of-ics-vulnerabilities-detected-in-hardware-deployed-across-critical-infrastructure-sectors/" target="_blank">String of ICS vulnerabilities detected in hardware deployed across critical infrastructure sectors</a><br /><br />https://industrialcyber.co/cisa/string-of-ics-vulnerabilities-detected-in-hardware-deployed-across-critical-infrastructure-sectors/<br /><br /><a href="https://cyberscoop.com/water-oldsmar-incident-cyberattack/" target="_blank">Did someone really hack into the Oldsmar, Florida, water treatment plant? New details suggest maybe not</a>. <br /><br />https://cyberscoop.com/water-oldsmar-incident-cyberattack/<br /><br /><a href="https://www.csoonline.com/article/3692815/why-reporting-an-incident-only-makes-the-cybersecurity-community-stronger.html#tk.rss_all" target="_blank">Why reporting an incident only makes the cybersecurity community stronger</a><br /><br />https://www.csoonline.com/article/3692815/why-reporting-an-incident-only-makes-the-cybersecurity-community-stronger.html#tk.rss_all<br /><br /><a href="https://www.darkreading.com/vulnerabilities-threats/us-it-pros-data-breaches-keep-quiet-data-breaches" target="_blank">Majority of US IT Pros Told to Keep Quiet About Data Breaches</a><br /><br />https://www.darkreading.com/vulnerabilities-threats/us-it-pros-data-breaches-keep-quiet-data-breaches<br /><br />Rus<a href="https://www.darkreading.com/vulnerabilities-threats/russian-intel-services-behind-barrage-espionage-cyberattacks" target="_blank">sian SolarWinds Culprits Launch Fresh Barrage of Espionage Cyberattacks</a><br /><br />https://www.darkreading.com/vulnerabilities-threats/russian-intel-services-behind-barrage-espionage-cyberattacks<br /><br /><a href="https://arstechnica.com/science/2023/04/drug-developers-condemn-texas-judges-anti-science-abortion-ruling/" target="_blank">No drug is safe: Drug developers decry Texas abortion pill ruling</a><br /><br />https://arstechnica.com/science/2023/04/drug-developers-condemn-texas-judges-anti-science-abortion-ruling/<br /><br /><a href=" https://www.eweek.com/artificial-intelligence/generative-ai-and-cybersecurity/" target="_blank">Generative AI and Cybersecurity: Advantages and Challenges</a><br /><br />https://www.eweek.com/artificial-intelligence/generative-ai-and-cybersecurity/<br /><br /><a href="https://www.energymonitor.ai/tech/renewables/vestas-hails-breakthrough-for-recycling-wind-turbine-blades/" target="_blank">Vestas hails breakthrough for recyclable wind turbines</a><br /><br />https://www.energymonitor.ai/tech/renewables/vestas-hails-breakthrough-for-recycling-wind-turbine-blades/<br /><br /><a href="https://thestrategybridge.org/the-bridge/2019/9/24/notes-from-a-sun-tzu-skeptic" target="_blank">Notes from a Sun Tzu Skeptic</a><br /><br />https://thestrategybridge.org/the-bridge/2019/9/24/notes-from-a-sun-tzu-skeptic<br /><br /><a href="https://www.paddleyourownkanoo.com/2023/04/09/seattle-discovers-its-new-1-billion-airport-terminal-cant-fit-the-long-haul-planes-it-was-designed-to-handle/" target="_blank">Seattle Discovers Its New $1 Billion Airport Terminal Can’t Fit The Long-Haul Planes it Was Designed to Handle</a><br /><br />https://www.paddleyourownkanoo.com/2023/04/09/seattle-discovers-its-new-1-billion-airport-terminal-cant-fit-the-long-haul-planes-it-was-designed-to-handle/<br /><br /><a href="https://electrek.co/2023/04/14/global-wind-energy-will-exceed-1-tw-by-the-end-of-2023/" target="_blank">Global wind energy will exceed 1 TW by the end of 2023</a><br /><br />https://electrek.co/2023/04/14/global-wind-energy-will-exceed-1-tw-by-the-end-of-2023/<br /><br /><a href="https://www.businessinsider.com/uber-amazon-pay-using-ai-different-wages-same-work-discrimination-2023-4" target="_blank">Companies like Uber and Amazon use AI to pay people different wages for the same work, a new study finds</a><br /><br />https://www.businessinsider.com/uber-amazon-pay-using-ai-different-wages-same-work-discrimination-2023-4<br /><a href="https://www.bloomberg.com/opinion/articles/2023-04-13/the-dollar-rules-the-world-now-and-for-the-foreseeable-future" target="_blank"><br />What De-Dollarization? The Dollar Rules the World</a><br /><br />https://www.bloomberg.com/opinion/articles/2023-04-13/the-dollar-rules-the-world-now-and-for-the-foreseeable-future<br /><a href=" https://www.economist.com/leaders/2023/04/13/the-lessons-from-americas-astonishing-economic-record" target="_blank"><br />The lessons from America’s astonishing economic record</a><br /><br />https://www.economist.com/leaders/2023/04/13/the-lessons-from-americas-astonishing-economic-record<br /><a href="https://www.irishtimes.com/business/work/2023/03/31/us-pay-transparency-laws-result-in-worker-discontent/" target="_blank"><br />US pay transparency laws result in worker discontent</a><br /><br />https://www.irishtimes.com/business/work/2023/03/31/us-pay-transparency-laws-result-in-worker-discontent/<br /><br /><a href="https://www.seattletimes.com/business/laid-off-by-big-tech-then-recruited-for-contract-work-at-the-same-place/" target="_blank">Laid off by Big Tech, then recruited for contract work — at the same place </a><br /><br />https://www.seattletimes.com/business/laid-off-by-big-tech-then-recruited-for-contract-work-at-the-same-place/<br /><br /><a href=" https://www.nytimes.com/2023/04/12/technology/meta-layoffs-employees-management.html" target="_blank">Mass Layoffs and Absentee Bosses Create a Morale Crisis at Meta</a><br /><br />https://www.nytimes.com/2023/04/12/technology/meta-layoffs-employees-management.html<br /><br /><a href="https://www.tpr.org/criminal-justice/2023-04-11/after-30-years-a-father-is-exonerated-in-satanic-panic-case" target="_blank">After 30 years, a father is exonerated in 'satanic panic' case</a><br /><br />https://www.tpr.org/criminal-justice/2023-04-11/after-30-years-a-father-is-exonerated-in-satanic-panic-case<br /><a href="https://tuckerconnelly.com/management-leadership" target="_blank"><br />Management & Leadership – Principles, Process, & Notes</a><br /><br />https://tuckerconnelly.com/management-leadership<br /><br /><a href="https://www.darkreading.com/vulnerabilities-threats/the-internet-reform-trilemma" target="_blank">The Internet Reform Trilemma</a><br /><br />https://www.darkreading.com/vulnerabilities-threats/the-internet-reform-trilemma<br /><br /><br /><br /></p><div class="blogger-post-footer">http://rpc.technorati.com/rpc/ping</div>Chadhttp://www.blogger.com/profile/15083359852310707247noreply@blogger.com0tag:blogger.com,1999:blog-9106226.post-18836385630120086382023-04-11T06:25:00.000-07:002023-04-11T06:25:02.900-07:00What I was Reading 4/9/2023<p></p><p><b><a href="https://www.csoonline.com/article/3692534/a-report-from-ukraine-s-cybersecurity-service-reveals-insight-into-what-the-country-has-been-facing.html#tk.rss_all" target="_blank">Views of a hot cyberwar — the Ukrainian perspective on Russia’s online assault</a></b><br /><br />https://www.csoonline.com/article/3692534/a-report-from-ukraine-s-cybersecurity-service-reveals-insight-into-what-the-country-has-been-facing.html#tk.rss_all<br /><br /><a href="https://securityboulevard.com/2023/04/white-house-moves-to-address-software-supply-chain-security/" target="_blank"><b>White House Moves to Address Software Supply Chain Security </b></a><br /><br />https://securityboulevard.com/2023/04/white-house-moves-to-address-software-supply-chain-security/<br /><br /><a href=" https://www.darkreading.com/vulnerabilities-threats/4-steps-for-shifting-left-and-winning-the-cybersecurity-battle" target="_blank"><b>4 Steps for Shifting Left & Winning the Cybersecurity Battle</b></a><br /><br />https://www.darkreading.com/vulnerabilities-threats/4-steps-for-shifting-left-and-winning-the-cybersecurity-battle<br /><br /><a href="https://www.itsecurityguru.org/2023/04/03/new-research-highlights-increased-security-risks-posed-by-remote-working-and-bring-your-own-device-policies/?utm_source=rss&utm_medium=rss&utm_campaign=new-research-highlights-increased-security-risks-posed-by-remote-working-and-bring-your-own-device-policies" target="_blank"><b>New Research Highlights Increased Security Risks Posed by Remote Working and BYOD</b></a><br /><br />https://www.itsecurityguru.org/2023/04/03/new-research-highlights-increased-security-risks-posed-by-remote-working-and-bring-your-own-device-policies/?utm_source=rss&utm_medium=rss&utm_campaign=new-research-highlights-increased-security-risks-posed-by-remote-working-and-bring-your-own-device-policies<br /><br /><a href=" https://www.isaca.org/resources/news-and-trends/isaca-now-blog/2022/exploring-hacktown-a-college-for-cybercriminals" target="_blank"><b>Exploring HackTown: A College for Cybercriminals</b></a><br /><br />https://www.isaca.org/resources/news-and-trends/isaca-now-blog/2022/exploring-hacktown-a-college-for-cybercriminals<br /><a href="https://www.economist.com/the-economist-reads/2023/03/31/five-non-fiction-graphic-books-on-lives-in-dangerous-locations" target="_blank"><br /><b>Five non-fiction graphic books on lives in dangerous locations</b></a><br /><br />https://www.economist.com/the-economist-reads/2023/03/31/five-non-fiction-graphic-books-on-lives-in-dangerous-locations<br /><a href="https://www.semperis.com/blog/why-ad-modernization-is-critical-to-cybersecurity/" target="_blank"><br /><b>Why AD Modernization Is Critical to Your Cybersecurity Program</b></a><br /><br />https://www.semperis.com/blog/why-ad-modernization-is-critical-to-cybersecurity/<br /><a href=" https://www.hackread.com/wifi-flaw-intercept-network-traffic-linux-ios-android/" target="_blank"><br /><b>WiFi Flaws Allow Network Traffic Interception on Linux, iOS, and Android</b></a><br /><br />https://www.hackread.com/wifi-flaw-intercept-network-traffic-linux-ios-android/<br /><a href="https://arstechnica.com/tech-policy/2023/04/tech-firm-posts-white-only-job-ad-then-deletes-website-amid-ensuing-outrage/" target="_blank"><br /><b>Outrage over white-only job ad drives tech firm to delete website</b></a><br /><br />https://arstechnica.com/tech-policy/2023/04/tech-firm-posts-white-only-job-ad-then-deletes-website-amid-ensuing-outrage/<br /><br /><b><a href="https://arstechnica.com/gadgets/2023/04/apple-joins-amazon-google-and-microsoft-in-tech-industry-layoffs/" target="_blank">Apple joins Amazon, Google, and Microsoft in tech industry layoffs</a></b><br /><br />https://arstechnica.com/gadgets/2023/04/apple-joins-amazon-google-and-microsoft-in-tech-industry-layoffs/<br /><a href="https://www.newyorker.com/news/our-columnists/the-case-for-banning-children-from-social-media" target="_blank"><br /><b>The Case for Banning Children from Social Media</b></a><br /><br />https://www.newyorker.com/news/our-columnists/the-case-for-banning-children-from-social-media<br /><a href=" https://woodfromeden.substack.com/p/my-long-goodbye-to-windows-xp" target="_blank"><br /><b>My long goodbye to Windows XP</b></a><br /><br />https://woodfromeden.substack.com/p/my-long-goodbye-to-windows-xp<br /><br /><a href="https://arstechnica.com/tech-policy/2023/04/could-tiktok-ban-bill-criminalize-vpn-use-the-eff-says-its-not-impossible/" target="_blank"><b>TikTok ban bill is so broad it could apply to nearly any type of tech product</b></a><br /><br />https://arstechnica.com/tech-policy/2023/04/could-tiktok-ban-bill-criminalize-vpn-use-the-eff-says-its-not-impossible/<br /><br /><a href="https://fortune.com/2023/04/05/end-of-capitalism-inflation-greedflation-societe-generale-corporate-profits/" target="_blank"><b>‘We may be looking at the end of capitalism’: One of the world’s oldest and largest investment banks warns ‘Greedflation’ has gone too far</b></a><br /><br />https://fortune.com/2023/04/05/end-of-capitalism-inflation-greedflation-societe-generale-corporate-profits/<br /><a href="https://www.msn.com/en-us/news/us/justice-dept-will-investigate-leak-of-classified-pentagon-documents/ar-AA19BjV6" target="_blank"><b><br />Justice Dept. will investigate leak of classified Pentagon documents</b></a><br /><br />https://www.msn.com/en-us/news/us/justice-dept-will-investigate-leak-of-classified-pentagon-documents/ar-AA19BjV6<br /><br /><a href=" https://www.nytimes.com/2023/04/05/business/tech-internship-application-grind.html" target="_blank"><b>For Lower-Income Students, Big Tech Internships Can Be Hard to Get</b></a><br /><br />https://www.nytimes.com/2023/04/05/business/tech-internship-application-grind.html<br /><br /><a href=" https://www.reuters.com/investigates/special-report/us-china-tech-cables/" target="_blank"><b>U.S. and China wage war beneath the waves – over internet cables </b></a><br /><br />https://www.reuters.com/investigates/special-report/us-china-tech-cables/<br /><a href=" https://www.theguardian.com/business/2023/apr/06/forbes-30-under-30-tech-finance-prison" target="_blank"><br /><b>30 under 30-year sentences: why so many of Forbes’ young heroes face jail</b></a><br /><br />https://www.theguardian.com/business/2023/apr/06/forbes-30-under-30-tech-finance-prison<br /><a href="https://cyberscoop.com/russian-hackers-cyberwar-ukraine/" target="_blank"><br /><b>What we know about Russian hackers — and how to stop them — after a year of cyberwar in Ukraine </b></a><br /><br />https://cyberscoop.com/russian-hackers-cyberwar-ukraine/<br /><a href="https://www.csoonline.com/article/3693088/cisa-warns-of-critical-flaws-in-ics-and-scada-software-from-multiple-vendors.html#tk.rss_all" target="_blank"><br /><b>CISA warns of critical flaws in ICS and SCADA software from multiple vendors</b></a><br /><br />https://www.csoonline.com/article/3693088/cisa-warns-of-critical-flaws-in-ics-and-scada-software-from-multiple-vendors.html#tk.rss_all<br /><a href=" https://securityboulevard.com/2023/04/major-cyber-insurance-overhaul-begins-now/" target="_blank"><b><br />Major Cyber Insurance Overhaul Begins Now </b></a><br /><br />https://securityboulevard.com/2023/04/major-cyber-insurance-overhaul-begins-now/<br /><a href=" https://securityboulevard.com/2023/04/new-national-cybersecurity-strategy-will-require-compliance-collaboration/" target="_blank"><br /><b>New National Cybersecurity Strategy Will Require Compliance, Collaboration </b></a><br /><br />https://securityboulevard.com/2023/04/new-national-cybersecurity-strategy-will-require-compliance-collaboration/<br /><br /></p><div class="blogger-post-footer">http://rpc.technorati.com/rpc/ping</div>Chadhttp://www.blogger.com/profile/15083359852310707247noreply@blogger.com0tag:blogger.com,1999:blog-9106226.post-33273275364029469872023-04-02T21:20:00.002-07:002023-04-02T21:20:47.714-07:00What I am Reading 4/2/2023 - Electric Grids, Tik-Tok, and Cryptocurrency, Oh My!<p> I missed last week so it's a fairly big list this time around<b>.<br /></b></p><p><a href=" https://www.hollywoodreporter.com/movies/movie-news/oliver-stone-nuclear-now-trailer-1235357522/" target="_blank"><b>Oliver Stone Releases Trailer for His Pro-Nuclear Energy Movie, ‘Nuclear Now’</b></a><br /><br />https://www.hollywoodreporter.com/movies/movie-news/oliver-stone-nuclear-now-trailer-1235357522/<br /><br /><a href="https://www.foxnews.com/media/dennis-quaid-documentary-grid-down-power-up-explores-dangers-sudden-electric-grid-failure" target="_blank"><b>Dennis Quaid documentary 'Grid Down, Power Up' explores dangers of sudden electric grid failure</b></a><br /><br />https://www.foxnews.com/media/dennis-quaid-documentary-grid-down-power-up-explores-dangers-sudden-electric-grid-failure<br /><a href="https://www.griddownpowerup.com/watch-gdpu/" target="_blank"><br /><b>The movie - Grid Down Power Up</b></a><br /><br />https://www.griddownpowerup.com/watch-gdpu/<br /><a href="https://arstechnica.com/tech-policy/2023/03/california-wants-to-build-more-solar-farms-but-needs-more-power-lines/" target="_blank"><br /><b>California wants to build more solar farms but needs more power lines</b></a><br /><br />https://arstechnica.com/tech-policy/2023/03/california-wants-to-build-more-solar-farms-but-needs-more-power-lines/<br /><br /><b><a href=" https://www.popsci.com/environment/renewable-energy-generation-coal-2022/" target="_blank">For the first time, renewable energy generation beat out coal in the US</a></b><br /><br />https://www.popsci.com/environment/renewable-energy-generation-coal-2022/<br /><br /><a href=" https://cyberscoop.com/chinese-drone-threat-dji-regulation-critical-infrastructure/" target="_blank"><b>The pressing threat of Chinese-made drones flying above U.S. critical infrastructure </b></a><br /><br />https://cyberscoop.com/chinese-drone-threat-dji-regulation-critical-infrastructure/<br /><br /><a href=" https://cyberscoop.com/chinese-grid-equipment-us-grid/" target="_blank"><b>Dependence on Chinese-made tech threatens grid, experts warn </b></a><br /><br />https://cyberscoop.com/chinese-grid-equipment-us-grid/<br /><br /><a href="https://www.darkreading.com/vulnerabilities-threats/vulkan-playbook-leak-exposes-russia-plans-worldwide-cyber-war" target="_blank"><b>Vulkan Playbook Leak Exposes Russia's Plans for Worldwide Cyberwar</b></a><br /><br />https://www.darkreading.com/vulnerabilities-threats/vulkan-playbook-leak-exposes-russia-plans-worldwide-cyber-war<br /><b><a href="https://cyberscoop.com/easterly-cisa-budget-china-biden/" target="_blank"><br />CISA director says cutting agency’s budget would return it to ‘pre-SolarWinds world’ </a></b><br /><br />https://cyberscoop.com/easterly-cisa-budget-china-biden/<br /><br /><a href="https://www.csoonline.com/article/3691781/legacy-password-based-authentication-systems-are-failing-enterprise-security-says-study.html#tk.rss_all" target="_blank"><b>Legacy, password-based authentication systems are failing enterprise security, says study</b></a><br /><br />https://www.csoonline.com/article/3691781/legacy-password-based-authentication-systems-are-failing-enterprise-security-says-study.html#tk.rss_all<br /><a href="https://nypost.com/2023/03/24/amazon-workers-fume-after-hr-rejects-petition-against-return-to-office/" target="_blank"><br /><b>Amazon workers fume after HR rejects petition against return to office </b></a><br /><br />https://nypost.com/2023/03/24/amazon-workers-fume-after-hr-rejects-petition-against-return-to-office/<br /><br /><a href=" https://www.cnbc.com/2023/03/25/cargo-theft-led-by-food-and-beverage-is-surging-across-the-us.html" target="_blank"><b>Cargo theft, led by food and beverage, is surging across the U.S.</b></a><br /><br />https://www.cnbc.com/2023/03/25/cargo-theft-led-by-food-and-beverage-is-surging-across-the-us.html<br /><br /><b><a href="https://www.bbc.com/news/world-us-canada-65060733" target="_blank">Utah is first US state to limit teen social media access</a><br /></b><br />https://www.bbc.com/news/world-us-canada-65060733<br /><br /><a href="https://www.helsinki.fi/en/news/pandemics/nasal-spray-protects-against-coronavirus-infection-effective-also-against-recent-immune-evasive-variants" target="_blank"><b>A nasal spray protects against coronavirus infection – Effective also against recent immune-evasive variants </b></a><br /><br />https://www.helsinki.fi/en/news/pandemics/nasal-spray-protects-against-coronavirus-infection-effective-also-against-recent-immune-evasive-variants<br /><br /><a href=" https://darrellowens.substack.com/p/half-of-black-students-can-hardly" target="_blank"><b>Half of Black Students Can Barely Read</b></a><br /><br />https://darrellowens.substack.com/p/half-of-black-students-can-hardly<br /><br /><a href=" https://variety.com/2023/biz/news/writers-guild-artificial-intelligence-proposal-1235560927/" target="_blank"><b>WGA Would Allow Artificial Intelligence in Scriptwriting, as Long as Writers Maintain Credit</b></a><br /><br />https://variety.com/2023/biz/news/writers-guild-artificial-intelligence-proposal-1235560927/<br /><br /><a href=" https://www.intel.com/content/www/us/en/newsroom/news/gordon-moore-obituary.html" target="_blank"><b>Gordon Moore, Intel Co-Founder, Dies at 94</b></a><br /><br />https://www.intel.com/content/www/us/en/newsroom/news/gordon-moore-obituary.html<br /><a href=" https://www.thefp.com/p/stanfords-war-against-its-own-students" target="_blank"><br /><b>Stanford’s War Against Its Own Students</b></a><br /><br />https://www.thefp.com/p/stanfords-war-against-its-own-students<br /><br /><a href="https://www.latimes.com/california/story/2023-03-23/california-law-would-ban-skittles-other-snacks-chemicals" target="_blank"><b>End of the rainbow? California bill targets Skittles, other snacks with ‘toxic’ chemicals</b></a><br /><br />https://www.latimes.com/california/story/2023-03-23/california-law-would-ban-skittles-other-snacks-chemicals<br /><a href="https://techcrunch.com/2023/03/22/kelly-aloria-lum-passes-away-at-41-obituary/" target="_blank"><br /><b>Beloved hacking veteran Kelly ‘Aloria’ Lum passes away at 41</b></a><br /><br />https://techcrunch.com/2023/03/22/kelly-aloria-lum-passes-away-at-41-obituary/<br /><br /><a href="https://www.bbc.com/news/technology-65032848" target="_blank"><b>Bill Gates: AI is most important tech advance in decades</b></a><br /><br />https://www.bbc.com/news/technology-65032848<br /><br /><a href="https://arstechnica.com/tech-policy/2023/03/twitter-posts-the-code-it-claims-determines-which-tweets-people-see-and-why/" target="_blank"><b>Twitter posts the code it claims determines which tweets people see, and why</b></a><br /><br />https://arstechnica.com/tech-policy/2023/03/twitter-posts-the-code-it-claims-determines-which-tweets-people-see-and-why/<br /><b><br /><a href=" https://www.reuters.com/breakingviews/bitcoin-is-solution-looking-problem-2023-03-24/" target="_blank">Bitcoin is a solution looking for a problem</a></b><br /><br />https://www.reuters.com/breakingviews/bitcoin-is-solution-looking-problem-2023-03-24/<br /><br /><a href="https://arstechnica.com/information-technology/2023/03/hackers-drain-bitcoin-atms-of-1-5-million-by-exploiting-0-day-bug/" target="_blank"><b>Hackers drain bitcoin ATMs of $1.5 million by exploiting 0-day bug</b></a><br /><br />https://arstechnica.com/information-technology/2023/03/hackers-drain-bitcoin-atms-of-1-5-million-by-exploiting-0-day-bug/<br /><br /><a href="https://arstechnica.com/tech-policy/2023/03/us-agency-sues-top-crypto-exchange-binance-and-ceo-seeks-permanent-trading-bans/" target="_blank"><b>US agency sues top crypto exchange Binance and CEO, seeks permanent trading bans</b></a><br /><br />https://arstechnica.com/tech-policy/2023/03/us-agency-sues-top-crypto-exchange-binance-and-ceo-seeks-permanent-trading-bans/<br /><br /><a href="https://arstechnica.com/tech-policy/2023/03/judge-finds-google-destroyed-evidence-and-repeatedly-gave-false-info-to-court/" target="_blank"><b>Judge finds Google destroyed evidence and repeatedly gave false info to court</b></a><br /><br />https://arstechnica.com/tech-policy/2023/03/judge-finds-google-destroyed-evidence-and-repeatedly-gave-false-info-to-court/<br /><a href="https://www.zdnet.com/article/microsoft-security-copilot-harnesses-ai-to-give-superpowers-to-cybersecurity-fighters/#ftag=RSSbaffb68" target="_blank"><br /><b>Microsoft Security Copilot harnesses AI to give superpowers to cybersecurity fighters </b></a><br /><br />https://www.zdnet.com/article/microsoft-security-copilot-harnesses-ai-to-give-superpowers-to-cybersecurity-fighters/#ftag=RSSbaffb68<br /><br /><a href="https://every.to/no-small-plans/the-status-trap" target="_blank"><b>The Status Trap </b></a><br /><br />https://every.to/no-small-plans/the-status-trap<br /><a href="https://www.pewresearch.org/fact-tank/2021/03/26/about-three-in-ten-u-s-adults-say-they-are-almost-constantly-online/" target="_blank"><br /><b>About three-in-ten U.S. adults say they are ‘almost constantly’ online</b></a><br /><br />https://www.pewresearch.org/fact-tank/2021/03/26/about-three-in-ten-u-s-adults-say-they-are-almost-constantly-online/<br /><br /><a href="https://www.reuters.com/business/energy/sarabia-other-opec-producers-announce-voluntary-oil-output-cuts-2023-04-02/" target="_blank"><b>OPEC+ announces surprise oil output cuts</b></a><br /><br />https://www.reuters.com/business/energy/sarabia-other-opec-producers-announce-voluntary-oil-output-cuts-2023-04-02/<br /><br /><a href="https://fortune.com/2023/03/30/corporate-workplace-culture-soviet-union-1930s-increased-production-performance/" target="_blank"><b>Today’s management-speak has a lot in common with 1930s Soviet propaganda—and it’s making people miserable</b></a><br /><br />https://fortune.com/2023/03/30/corporate-workplace-culture-soviet-union-1930s-increased-production-performance/<br /><br /><a href=" https://www.economist.com/business/2023/03/27/where-have-all-the-laid-off-tech-workers-gone" target="_blank"><b>Where have all the laid-off tech workers gone?</b></a><br /><br />https://www.economist.com/business/2023/03/27/where-have-all-the-laid-off-tech-workers-gone<br /><a href=" https://www.sfexaminer.com/forum/put-algebra-1-back-in-eighth-grade/article_01ca608e-be01-11ed-9d12-5fb4111a4db8.html" target="_blank"><br /><b>SFUSD's delay of algebra 1 has created a nightmare of workarounds</b></a><br /><br />https://www.sfexaminer.com/forum/put-algebra-1-back-in-eighth-grade/article_01ca608e-be01-11ed-9d12-5fb4111a4db8.html<br /><a href="https://www.vice.com/en/article/4a3ddb/restrict-act-insanely-broad-ban-tiktok-vpns" target="_blank"><br /><b>The 'Insanely Broad' RESTRICT Act Could Ban Much More Than Just TikTok</b></a><br /><br />https://www.vice.com/en/article/4a3ddb/restrict-act-insanely-broad-ban-tiktok-vpns<br /><br /><a href="https://www.wionews.com/world/republican-rand-paul-blocks-tiktok-ban-asks-if-us-is-going-to-be-just-like-china-and-block-free-speech-577130" target="_blank"><b>Republican Rand Paul blocks TikTok ban, asks if US is 'going to be just like China' and block free speech</b></a><br /><br />https://www.wionews.com/world/republican-rand-paul-blocks-tiktok-ban-asks-if-us-is-going-to-be-just-like-china-and-block-free-speech-577130<br /><br /><a href="https://cyberscoop.com/software-liability-biden-microsoft-vulnerabilities/" target="_blank"><b>Can a White House initiative compel tech companies to write safer code? </b></a><br /><br />https://cyberscoop.com/software-liability-biden-microsoft-vulnerabilities/<br /><br /><a href="https://cyberscoop.com/3cx-hack-supply-chain-north-korea/" target="_blank"><b>Supply chain cyberattack with possible links to North Korea could have thousands of victims globally</b></a><br /><br />https://cyberscoop.com/3cx-hack-supply-chain-north-korea/<br /><a href="https://www.csoonline.com/article/3692354/spyware-vendors-use-exploit-chains-to-take-advantage-of-patch-delays-in-mobile-ecosystem.html#tk.rss_all" target="_blank"><br /><b>Spyware vendors use exploit chains to take advantage of patch delays in mobile ecosystem</b></a><br /><br />https://www.csoonline.com/article/3692354/spyware-vendors-use-exploit-chains-to-take-advantage-of-patch-delays-in-mobile-ecosystem.html#tk.rss_all<br /><b><a href="https://www.darkreading.com/dr-tech/how-to-solve-iot-s-identity-problem" target="_blank"><br />How to Solve IoT's Identity Problem</a></b><br /><br />https://www.darkreading.com/dr-tech/how-to-solve-iot-s-identity-problem<br /><b><a href="https://www.darkreading.com/cloud/millions-pen-tests-companies-security-posture-getting-worse" target="_blank"><br />Millions of Pen Tests Show Companies' Security Postures Are Getting Worse</a></b><br /><br />https://www.darkreading.com/cloud/millions-pen-tests-companies-security-posture-getting-worse<br /><br /><b><a href=" https://www.darkreading.com/attacks-breaches/attackers-probing-zero-day-vulns-edge-infrastructure" target="_blank">Attackers Are Probing for Zero-Day Vulns in Edge Infrastructure Products</a></b><br /><br />https://www.darkreading.com/attacks-breaches/attackers-probing-zero-day-vulns-edge-infrastructure<br /><a href="https://www.scmagazine.com/analysis/identity-and-access/cisa-nsa-push-identity-and-access-management-framework-as-risks-grow" target="_blank"><br /><b>CISA, NSA push identity and access management framework as risks grow</b></a><br /><br />https://www.scmagazine.com/analysis/identity-and-access/cisa-nsa-push-identity-and-access-management-framework-as-risks-grow<br /><br /></p><div class="blogger-post-footer">http://rpc.technorati.com/rpc/ping</div>Chadhttp://www.blogger.com/profile/15083359852310707247noreply@blogger.com0tag:blogger.com,1999:blog-9106226.post-89162531869123007232023-03-19T10:27:00.000-07:002023-03-19T10:27:53.347-07:00What I am reading 3/19/2023 <p><a href="https://cyberscoop.com/national-cybersecurity-strategy-regulation/" target="_blank"><b> The US cybersecurity strategy won’t address today’s threats with regulation alone </b></a><br /><br />https://cyberscoop.com/national-cybersecurity-strategy-regulation/<br /><br /><a href="https://www.darkreading.com/risk/the-ethics-of-network-and-security-monitoring" target="_blank"><b>The Ethics of Network and Security Monitoring</b></a><br /><br />https://www.darkreading.com/risk/the-ethics-of-network-and-security-monitoring<br /><br /><a href="https://www.darkreading.com/vulnerabilities-threats/cyberattackers-continue-assault-against-fortinet-devices" target="_blank"><b>Cyberattackers Continue Assault Against Fortinet Devices</b></a><br /><br />https://www.darkreading.com/vulnerabilities-threats/cyberattackers-continue-assault-against-fortinet-devices<br /><br /><a href="https://www.theregister.com/2023/03/17/chinese_cyberspies_fortinet_bug/" target="_blank"><b>Here's how Chinese cyber spies exploited a critical Fortinet bug</b></a><br /><br />https://www.theregister.com/2023/03/17/chinese_cyberspies_fortinet_bug/<br /><br /><a href="https://arstechnica.com/tech-policy/2023/03/inside-elon-musks-cost-cutting-drive-at-twitter/" target="_blank"><b>Inside Elon Musk’s cost-cutting drive at TwitterInside Elon Musk’s cost-cutting drive at Twitter</b></a><br /><br />https://arstechnica.com/tech-policy/2023/03/inside-elon-musks-cost-cutting-drive-at-twitter/<br /><br /><a href="https://arstechnica.com/gadgets/2023/03/plato-how-an-educational-computer-system-from-the-60s-shaped-the-future/" target="_blank"><b>PLATO: How an educational computer system from the ’60s shaped the future</b></a><br /><br />https://arstechnica.com/gadgets/2023/03/plato-how-an-educational-computer-system-from-the-60s-shaped-the-future/<br /><br /><a href="https://arstechnica.com/information-technology/2023/03/federal-agency-hacked-by-2-groups-thanks-to-flaw-that-went-unpatched-for-4-years/" target="_blank"><b>Federal agency hacked by 2 groups thanks to flaw that went unpatched for 4 years</b></a><br /><br />https://arstechnica.com/information-technology/2023/03/federal-agency-hacked-by-2-groups-thanks-to-flaw-that-went-unpatched-for-4-years/<br /><br /><a href="https://www.bbc.com/news/business-64947695?at_medium=RSS&at_campaign=KARANGA" target="_blank"><b>US court rules Uber and Lyft workers are contractors</b></a><br /><br />https://www.bbc.com/news/business-64947695?at_medium=RSS&at_campaign=KARANGA<br /><br /><a href="https://www.developing.dev/p/the-only-three-classes-that-mattered" target="_blank"><b>The Only Three Classes That Mattered From My College Degree</b></a><br /><br />https://www.developing.dev/p/the-only-three-classes-that-mattered<br /><br /><a href="https://finance.yahoo.com/news/deep-rot-america-banking-industry-104028781.html" target="_blank"><b>How deep is the rot in America’s banking industry?</b></a><br /><br />https://finance.yahoo.com/news/deep-rot-america-banking-industry-104028781.html<br /><a href="https://slate.com/business/2023/03/noncompete-clauses-washington-research-ban-ftc.html" target="_blank"><br /><b>Companies Say They Need Noncompete Clauses. Here’s How We Know That’s Not True.</b></a><br /><br />https://slate.com/business/2023/03/noncompete-clauses-washington-research-ban-ftc.html<br /><br /><b><a href="https://www.darkreading.com/application-security/meta-proposes-revamped-kill-chain-framework-online-threats" target="_blank">Meta Proposes Revamped Approach to Online Kill Chain Frameworks</a></b><br /><br />https://www.darkreading.com/application-security/meta-proposes-revamped-kill-chain-framework-online-threats<br /><b><a href=" https://flashpoint.io/blog/killnet-killmilk-private-military-hacking-company/"><br />‘Black Skills’ Is Killnet’s Attempt to Form a ‘Private Military Hacking Company’</a></b><br /><br />https://flashpoint.io/blog/killnet-killmilk-private-military-hacking-company/<br /><br /><a href="https://www.helpnetsecurity.com/2023/03/13/kali-linux-2023-1-purple/" target="_blank"><b>Kali Linux 2023.1 released – and so is Kali Purple!</b></a><br /><br />https://www.helpnetsecurity.com/2023/03/13/kali-linux-2023-1-purple/<br /><br /><b><a href="https://www.techdirt.com/2023/03/13/utility-busted-using-fake-consumer-group-to-scuttle-eugene-oregons-environmental-reforms/" target="_blank">Utility Busted Using Fake Consumer Group To Scuttle Eugene, Oregon’s Environmental Reforms </a></b><br /><br />https://www.techdirt.com/2023/03/13/utility-busted-using-fake-consumer-group-to-scuttle-eugene-oregons-environmental-reforms/<br /><b><a href="https://www.securityweek.com/counting-ics-vulnerabilities-examining-variations-in-numbers-reported-by-security-firms/"><br />Counting ICS Vulnerabilities: Examining Variations in Numbers Reported by Security Firms</a></b><br /><br />https://www.securityweek.com/counting-ics-vulnerabilities-examining-variations-in-numbers-reported-by-security-firms/<br /><b><a href="https://www.theguardian.com/science/2023/mar/19/stephen-hawking-told-me-ive-changed-my-mind-my-book-is-wrong" target="_blank"><br />A Brief History of Time is ‘wrong’, Stephen Hawking told collaborator<br /></a></b><br />https://www.theguardian.com/science/2023/mar/19/stephen-hawking-told-me-ive-changed-my-mind-my-book-is-wrong<br /><br /><a href="https://fortune.com/2023/03/09/american-skipping-college-huge-numbers-pandemic-turned-them-off-education/" target="_blank"><b>The labor shortage is pushing American colleges into crisis, with the plunge in enrollment the worst ever recorded</b></a><br /><br />https://fortune.com/2023/03/09/american-skipping-college-huge-numbers-pandemic-turned-them-off-education/<br /><br /><b><a href="https://www.youtube.com/watch?v=ik8pdd7VkmY" target="_blank">Stop worrying about Nation-States and Zero-Days; let's fix things that have been known for years!</a></b><br /><br />https://www.youtube.com/watch?v=ik8pdd7VkmY</p><div class="blogger-post-footer">http://rpc.technorati.com/rpc/ping</div>Chadhttp://www.blogger.com/profile/15083359852310707247noreply@blogger.com0tag:blogger.com,1999:blog-9106226.post-82090081489895112952023-03-12T16:10:00.000-07:002023-03-12T16:10:43.351-07:00What I'm Reading 3/12/2023 - I should probably make an interest to be more interesting edition<p><a href="https://www.darkreading.com/risk/key-proposals-in-biden-cybersecurity-strategy-face-congressional-challenges" target="_blank">Key Proposals in Biden's Cybersecurity Strategy Face Congressional Challenges</a><br /><br />https://www.darkreading.com/risk/key-proposals-in-biden-cybersecurity-strategy-face-congressional-challenges<br /><br /><a href="https://news.hitb.org/content/stealthy-uefi-malware-bypassing-secure-boot-enabled-unpatchable-windows-flaw" target="_blank">Stealthy UEFI malware bypassing Secure Boot enabled by unpatchable Windows flaw</a><br /><br />https://news.hitb.org/content/stealthy-uefi-malware-bypassing-secure-boot-enabled-unpatchable-windows-flaw<br /><br /><a href="https://www.csoonline.com/article/3689811/open-letter-demands-owasp-overhaul-warns-of-mass-project-exodus.html#tk.rss_all" target="_blank">Open letter demands OWASP overhaul, warns of mass project exodus</a><br /><br />https://www.csoonline.com/article/3689811/open-letter-demands-owasp-overhaul-warns-of-mass-project-exodus.html#tk.rss_all<br /><br /><a href="https://www.csoonline.com/article/3688958/municipal-cisos-grapple-with-challenges-as-cyber-threats-soar.html#tk.rss_all" target="_blank">Municipal CISOs grapple with challenges as cyber threats soar</a><br /><br />https://www.csoonline.com/article/3688958/municipal-cisos-grapple-with-challenges-as-cyber-threats-soar.html#tk.rss_all<br /><br /><a href=" https://www.helpnetsecurity.com/2023/03/06/cve-2023-21716-poc/" target="_blank">PoC exploit for recently patched Microsoft Word RCE is public (CVE-2023-21716)</a><br /><br />https://www.helpnetsecurity.com/2023/03/06/cve-2023-21716-poc/<br /><a href="https://securityboulevard.com/2023/03/adaptable-swiss-army-knife-malware-a-growing-threat/" target="_blank"><br />Adaptable ‘Swiss Army Knife’ Malware a Growing Threat </a><br /><br />https://securityboulevard.com/2023/03/adaptable-swiss-army-knife-malware-a-growing-threat/<br /><a href=" https://www.securityweek.com/critical-vulnerabilities-allow-hackers-to-take-full-control-of-wago-plcs/"><br />Critical Vulnerabilities Allow Hackers to Take Full Control of Wago PLCs</a><br /><br />https://www.securityweek.com/critical-vulnerabilities-allow-hackers-to-take-full-control-of-wago-plcs/<br /><br /><a href=" https://arstechnica.com/information-technology/2023/03/threat-actors-are-using-advanced-malware-to-backdoor-business-grade-routers/" target="_blank">Threat actors are using advanced malware to backdoor business-grade routers</a><br /><br />https://arstechnica.com/information-technology/2023/03/threat-actors-are-using-advanced-malware-to-backdoor-business-grade-routers/<br /><br /><a href="https://www.darkreading.com/ics-ot/5-critical-components-of-effective-ics-ot-security-">5 Critical Components of Effective ICS/OT Security</a><br /><br />https://www.darkreading.com/ics-ot/5-critical-components-of-effective-ics-ot-security-<br /><a href="https://www.darkreading.com/ics-ot/ransomware-s-favorite-target-critical-infrastructure-and-its-industrial-control-systems" target="_blank"><br />Ransomware's Favorite Target: Critical Infrastructure and Its Industrial Control Systems</a><br /><br />https://www.darkreading.com/ics-ot/ransomware-s-favorite-target-critical-infrastructure-and-its-industrial-control-systems<br /><br /><a href=" https://www.yahoo.com/lifestyle/google-over-hired-talent-fake-114331193.html" target="_blank">Google over-hired talent to do ‘fake work’ and stop them working for rivals, claims former PayPal boss, Keith Rabois</a><br /><br />https://www.yahoo.com/lifestyle/google-over-hired-talent-fake-114331193.html<br /><a href="https://fee.org/articles/what-weimar-germany-teaches-us-about-universal-basic-income/" target="_blank"><br />What Weimar Germany Teaches Us about Universal Basic Income</a><br /><br />https://fee.org/articles/what-weimar-germany-teaches-us-about-universal-basic-income/<br /><br /><a href="https://www.developing.dev/p/3-mistakes-i-made-as-an-engineer" target="_blank">3 Mistakes I Made as an Engineer, but Had To Become a Manager To See</a><br /><br />https://www.developing.dev/p/3-mistakes-i-made-as-an-engineer<br /><br /><a href="https://matthewgrohman.substack.com/p/want-an-unfair-advantage-in-your" target="_blank">Want an unfair advantage in your tech career? Consume content meant for other roles</a><br /><br />https://matthewgrohman.substack.com/p/want-an-unfair-advantage-in-your<br /><a href="https://cyberscoop.com/north-korea-hackers-linkedin-phishing/" target="_blank"><br />North Korean hackers used polished LinkedIn profiles to target security researchers </a><br /><br />https://cyberscoop.com/north-korea-hackers-linkedin-phishing/<br /><br /><a href="https://www.darkreading.com/cloud/palo-alto-networks-global-state-of-cloud-native-security-survey-reveals-90-of-organizations-cannot-detect-contain-and-resolve-cyberthreats-within-an-hour" target="_blank">Palo Alto Survey Reveals 90% of Organizations Cannot Resolve Cyberthreats Within an Hour</a><br /><br />https://www.darkreading.com/cloud/palo-alto-networks-global-state-of-cloud-native-security-survey-reveals-90-of-organizations-cannot-detect-contain-and-resolve-cyberthreats-within-an-hour<br /><br /><a href="https://www.youtube.com/watch?v=XobogsaxcUY" target="_blank">Building Great OT Incident Response Tabletop Exercises</a><br /><br />https://www.youtube.com/watch?v=XobogsaxcUY<br /><br /><a href="https://www.youtube.com/watch?v=CbIZU8cQWXc" target="_blank">Neil deGrasse Tyson - We Stopped Dreaming (Episode 1) </a><br /><br />https://www.youtube.com/watch?v=CbIZU8cQWXc<br /><br />In addition to this stuff I am finishing up Chapter 3 of <a href="https://www.amazon.com/s?k=security+engineering+3rd+edition&crid=2P1CTN6GXKHAV" target="_blank">Security Engineering by Ross Anderson</a> https://www.amazon.com/s?k=security+engineering+3rd+edition&crid=2P1CTN6GXKHAV and working on <a href="https://csrc.nist.gov/publications/detail/sp/800-37/rev-2/final" target="_blank">NIST SP 800-37 Risk Management Framework for Information Systems and Organizations: A System Life Cycle Approach for Security and Privacy</a> https://csrc.nist.gov/publications/detail/sp/800-37/rev-2/final as I prepare for my CISSP-ISSMP.<br /><br /><br /><br /><br /><br /><br /><br /><br /><br /><br /><br /><br /><br /><br /><br /><br /><br /><br /><br /><br /><br /></p><div class="blogger-post-footer">http://rpc.technorati.com/rpc/ping</div>Chadhttp://www.blogger.com/profile/15083359852310707247noreply@blogger.com0tag:blogger.com,1999:blog-9106226.post-81519476758416803372023-03-05T14:41:00.002-08:002023-03-05T14:41:53.206-08:00Revisiting a couple old posts - <p> Back in November 2005 I posted these two posts:</p><h3 class="post-title entry-title" itemprop="name">
<a href="http://blogs.guardian.co.uk/technology/archives/2005/11/09/top_20_geek_novels_the_results.html">Top 20 Geek Novels</a>
</h3>
<div class="post-header">
<div class="post-header-line-1"></div>
</div><p>
Blatantly stolen from the <a href="http://blogs.guardian.co.uk/technology/archives/2005/11/09/top_20_geek_novels_the_results.html">Technology Blog</a>. I do a little better on this list:<br /><br /><span style="font-weight: bold;">1. The HitchHiker's Guide to the Galaxy -- Douglas Adams 85% (102) </span><br /> <span style="font-weight: bold;"> 2. Nineteen Eighty-Four -- George Orwell 79% (92) </span><br /> <b><i>3. Brave New World -- Aldous Huxley 69% (77) </i></b><br /><span style="font-weight: bold;"> 4. Do Androids Dream of Electric Sheep? -- Philip Dick 64% (67) </span><br /> <span style="font-weight: bold;"> 5. Neuromancer -- William Gibson 59% (66) </span><br /> <span style="font-weight: bold;"> 6. Dune -- Frank Herbert 53% (54) </span><br /> <span style="font-weight: bold;"> 7. I, Robot -- Isaac Asimov 52% (54) </span><br /><span style="font-style: italic;"> <b>8. Foundation -- Isaac Asimov 47% (47)</b> </span><br /> <b><i>9. The Colour of Magic -- Terry Pratchett 46% (46)</i></b><br /><span style="font-weight: bold;"> 10. Microserfs -- Douglas Coupland 43% (44) </span><br /> <b><i>11. Snow Crash -- Neal Stephenson 37% (37)<br /> 12. Watchmen -- Alan Moore & Dave Gibbons 38% (37)<br /> 13. Cryptonomicon -- Neal Stephenson 36% (36)<br /> 14. Consider Phlebas -- Iain M Banks 34% (35)</i></b><br /> 1<span style="font-weight: bold;">5. Stranger in a Strange Land -- Robert Heinlein 33% (33) </span><br /> <b><i>16. The Man in the High Castle -- Philip K Dick 34% (32)</i></b><br /> <i>17. American Gods -- Neil Gaiman 31% (29)</i><br /> <b><i>18. The Diamond Age -- Neal Stephenson 27% (27)</i></b><br /><span style="font-weight: bold;"> 19. The Illuminatus! Trilogy -- Robert Shea & Robert Anton Wilson 23% (21) </span><br /> 20. Trouble with Lichen - John Wyndham 21% (19)<br /><br />Bold = Read<br />Italics = Started </p><p>Bold Italics = Read since original post <br /></p><h3 class="post-title entry-title" itemprop="name">
<a href="http://www.amazon.com/gp/richpub/listmania/fullview/1IKU96V37REPT/103-6312340-3385451?%5Fencoding=UTF8">Books every college freshman should read</a>
</h3>
<div class="post-header">
<div class="post-header-line-1"></div>
</div>
I am shamelessly stealing this list from <a href="http://www.amazon.com/gp/richpub/listmania/fullview/1IKU96V37REPT/103-6312340-3385451?%5Fencoding=UTF8">Amazon.com.</a> I dont know how many people will agree with it but see what you think do you agree with the author?<br /><br /><b><i>1. The Bell Jar - Sylvia Plath<br />2. The Metamorphosis, In the Penal Colony and Other Stories - Franz Kafka</i></b><br /><span style="font-weight: bold;">3. Mythology: Timeless Tales of Gods and Heroes - Edith Hamilton - Read</span><br /><b><i>4. Siddartha - Herman Hess</i></b><br /><i>5. The Unbearable Lightness of Being - Milan Kundera</i><br /><span style="font-weight: bold;">6. The Hobbit or There and Back Again - JRR Tolkien - Read</span><br /><b><i>7. Lolita - Vladimir Nabokov<br />8. Slaughterhouse Five - Kurt Vonnegut - Started, I hated it</i></b><br /><span style="font-weight: bold;">9. Frankenstein or the Modern Prometheus - Read (4th Grade I might read it again)</span><br /><b><i>10. The Catcher in the Rye - JD Salinger - I have started this book about 5 times I always make it to page 2.</i></b><br /><b><i>11. Atlas Shrugged - Ayn Rand</i></b><br /><span style="font-weight: bold;">12. Animal Farm - George Orwell -Read</span><br /><span style="font-weight: bold;">13. 1984 - George Orwell -Read</span><br />I read 12 and 13 in 6th grade. Those books really helped convince me communism was evil.<br /><b><i>14. Great Expectations - Charles Dickens<br />15. The Awakening and selected stories - Kate Chopin<br />16. Jane Eyre - Charlotte Bronte</i></b><br />1<span style="font-weight: bold;">7. Fahrenheit 451 - Ray Bradbury - Read somewhere around 7th or 8th Grade I
dont remember it well but I do remember it being hard to get thru.</span><br /> <span style="font-weight: bold;">18. A Connecticut Yankee in King Arthur's Court - Mark Twain - Read - Boring</span><br /><b><i>19. A Clockwork Orange - Anthony Burgess</i></b><br /><i>20. Absalom, Absalom - William Faulkner</i><br /><i><b>21. Dubliners - James Joyce</b><br />22. The Brother Karamazov - Fydor Dostevsky<br /><b>23. The Great Gatsby - F. Scott Fitzgerald</b></i><br />24. A Streetcar Named Desire - Tenessee Williams<br /><b><i>25. To the Lighthouse - Virginia Woolf
</i></b><p> No point to this update really, other than to show I can actually read I guess.<br /></p><p></p><div class="blogger-post-footer">http://rpc.technorati.com/rpc/ping</div>Chadhttp://www.blogger.com/profile/15083359852310707247noreply@blogger.com0tag:blogger.com,1999:blog-9106226.post-26146785261346064972023-03-05T14:12:00.003-08:002023-03-05T14:12:48.627-08:00What I'm Reading 3/5/2023 - Power Grid Attacks Edition<p><a href="https://www.youtube.com/watch?v=U3NEfl5rtWo" target="_blank"><b> Why the US Power Grid is Under Attack </b></a></p><p>https://www.youtube.com/watch?v=U3NEfl5rtWo<br /><br /><a href="https://theweek.com/crime-and-punishment/1021282/attacking-the-grid" target="_blank"><b>Attacking the grid</b></a><br /><br />https://theweek.com/crime-and-punishment/1021282/attacking-the-grid<br /><br /><a href="https://www.cbsnews.com/news/physical-attacks-on-power-grid-rose-by-71-last-year-compared-to-2021/" target="_blank"><b>Physical attacks on power grid rose by 71% last year, compared to 2021</b></a><br /><br />https://www.cbsnews.com/news/physical-attacks-on-power-grid-rose-by-71-last-year-compared-to-2021/<br /><b><br /><a href="https://cyberscoop.com/puesh-kumar-energy-cybersecurity/" target="_blank">The Energy Department’s Puesh Kumar on grid hacking, Ukraine and Pipedream malware </a></b><br /><br />https://cyberscoop.com/puesh-kumar-energy-cybersecurity/<br /><b><br /><a href="https://www.wsj.com/articles/s-o-s-for-the-u-s-electric-grid-pjm-interconnection-blackout-supply-renewables-subsidy-report-fossil-fuel-4cbdd56e" target="_blank">S.O.S for the U.S. Electric Grid</a></b><br /><br />https://www.wsj.com/articles/s-o-s-for-the-u-s-electric-grid-pjm-interconnection-blackout-supply-renewables-subsidy-report-fossil-fuel-4cbdd56e<br /><b><br /><a href="https://arstechnica.com/information-technology/2023/03/biden-administration-wants-to-hold-companies-liable-for-bad-cybersecurity/">Biden administration wants to hold companies liable for bad cybersecurity</a></b><br /><br />https://arstechnica.com/information-technology/2023/03/biden-administration-wants-to-hold-companies-liable-for-bad-cybersecurity/<br /><br /><a href="https://www.whitehouse.gov/wp-content/uploads/2023/03/National-Cybersecurity-Strategy-2023.pdf" target="_blank"><b>--National Cybersecurity Strategy March 2023</b></a><br /><br />https://www.whitehouse.gov/wp-content/uploads/2023/03/National-Cybersecurity-Strategy-2023.pdf<br /><b><br /><a href="https://www.securityweek.com/feedback-friday-industry-reactions-to-us-national-cybersecurity-strategy/" target="_blank">Industry Experts Analyze US National Cybersecurity Strategy</a></b><br /><br />https://www.securityweek.com/feedback-friday-industry-reactions-to-us-national-cybersecurity-strategy/<br /><br /><a href="https://www.artofmanliness.com/character/habits/how-to-do-a-dopamine-reset/" target="_blank"><b>How to Do a Dopamine Reset</b></a><br /><br />https://www.artofmanliness.com/character/habits/how-to-do-a-dopamine-reset/<br /><br /><a href="https://www.cisa.gov/news-events/alerts/2023/02/28/cisa-red-team-shares-key-findings-improve-monitoring-and-hardening-networks"><b>CISA Red Team Shares Key Findings to Improve Monitoring and Hardening of Networks</b></a><br /><br />https://www.cisa.gov/news-events/alerts/2023/02/28/cisa-red-team-shares-key-findings-improve-monitoring-and-hardening-networks<br /><br /><a href="https://www.csoonline.com/article/3688918/well-funded-security-systems-fail-to-prevent-cyberattacks-in-us-and-europe-report.html#tk.rss_all" target="_blank"><b>Well-funded security systems fail to prevent cyberattacks in US and Europe: Report</b></a><br /><br />https://www.csoonline.com/article/3688918/well-funded-security-systems-fail-to-prevent-cyberattacks-in-us-and-europe-report.html#tk.rss_all<br /><br /><a href="https://www.csoonline.com/article/3688922/hacked-home-computer-of-engineer-led-to-second-lastpass-data-breach.html#tk.rss_all" target="_blank"><b>Hacked home computer of engineer led to second LastPass data breach</b></a><br /><br />https://www.csoonline.com/article/3688922/hacked-home-computer-of-engineer-led-to-second-lastpass-data-breach.html#tk.rss_all<br /><br /><a href="https://cyberscoop.com/jen-easterly-secure-by-design/" target="_blank"><b>CISA director urges tech sector to stop shipping unsafe products </b></a><br /><br />https://cyberscoop.com/jen-easterly-secure-by-design/<br /><br /><a href="https://krebsonsecurity.com/2023/02/when-low-tech-hacks-cause-high-impact-breaches/" target="_blank"><b>When Low-Tech Hacks Cause High-Impact Breaches</b></a><br /><br />https://krebsonsecurity.com/2023/02/when-low-tech-hacks-cause-high-impact-breaches/<br /><br /><a href=" https://www.forcepoint.com/blog/x-labs/all-gone-critical-infrastructure" target="_blank"><b>It’s all Gone Critical (Infrastructure)</b></a><br /><br />https://www.forcepoint.com/blog/x-labs/all-gone-critical-infrastructure<br /><br /><a href="https://www.securityweek.com/us-electric-cooperative-association-launches-commercial-ot-security-solution/?mc_cid=885aee189f&mc_eid=UNIQID" target="_blank"><b>US Electric Cooperative Association Launches Commercial OT Security Solution</b></a><br /><br />https://www.securityweek.com/us-electric-cooperative-association-launches-commercial-ot-security-solution/?mc_cid=885aee189f&mc_eid=UNIQID<br /><br /><a href="https://arstechnica.com/tech-policy/2023/03/netflix-fights-attempt-to-make-streaming-firms-pay-for-isp-network-upgrades/" target="_blank"><b>Netflix fights attempt to make streaming firms pay for ISP network upgrades</b></a><br /><br />https://arstechnica.com/tech-policy/2023/03/netflix-fights-attempt-to-make-streaming-firms-pay-for-isp-network-upgrades/<br /><br /><a href="https://www.csoonline.com/article/3689808/unpatched-old-vulnerabilities-continue-to-be-exploited-report.html#tk.rss_all" target="_blank"><b>Unpatched old vulnerabilities continue to be exploited: Report </b></a><br /><br />https://www.csoonline.com/article/3689808/unpatched-old-vulnerabilities-continue-to-be-exploited-report.html#tk.rss_all<br /><a href="https://www.theregister.com/2023/03/01/blacklotus_malware_eset/" target="_blank"><br /><b>It's official: BlackLotus malware can bypass Secure Boot on Windows machines</b></a><br /><br />https://www.theregister.com/2023/03/01/blacklotus_malware_eset/<br /><br /><a href=" https://github.com/Asabeneh/30-Days-Of-Python/blob/master/readme.md" target="_blank"><b>30 Days Of Python</b></a><br /><br />https://github.com/Asabeneh/30-Days-Of-Python/blob/master/readme.md<br /><br /><a href="http://paulsec.github.io/posts/i-quitted-infosec/" target="_blank"><b>I quitted Infosec and I couldn't be happier.</b></a><br /><br />http://paulsec.github.io/posts/i-quitted-infosec/<br /><br /><br /></p><div class="blogger-post-footer">http://rpc.technorati.com/rpc/ping</div>Chadhttp://www.blogger.com/profile/15083359852310707247noreply@blogger.com0tag:blogger.com,1999:blog-9106226.post-52997983262940600622023-02-26T13:21:00.000-08:002023-02-26T13:21:05.718-08:00What I am Reading 2/26/23 - Back from Miami Beach edition<p> It was a busy couple weeks traveling to Miami Beach, attending S4x23, and then coming home and dropping back into the grind, but I haven't forgotten about you guys. Without further ado a couple weeks worth of reading:</p><p><a href="https://medium.com/@pravse/the-maze-is-in-the-mouse-980c57cfd61a" target="_blank"><b>The maze is in the mouse: What ails Google and how it can turn things around.</b></a><br /><br />https://medium.com/@pravse/the-maze-is-in-the-mouse-980c57cfd61a<br /><br /><a href=" https://techcrunch.com/2023/02/21/sensitive-united-states-military-emails-spill-online/" target="_blank"><b>Sensitive US military emails spill online</b></a><br /><br />https://techcrunch.com/2023/02/21/sensitive-united-states-military-emails-spill-online/<br /><br /><a href="https://www.antipope.org/charlie/blog-static/2023/02/place-your-bets.html" target="_blank"><b>Place your bets</b></a><br /><br />https://www.antipope.org/charlie/blog-static/2023/02/place-your-bets.html<br /><br /><a href="https://www.itsecurityguru.org/2023/02/15/dragos-report-identifies-new-threat-groups/?utm_source=rss&utm_medium=rss&utm_campaign=dragos-report-identifies-new-threat-groups" target="_blank"><b>Dragos Report Identifies Two New Threat Groups</b></a><br /><br />https://www.itsecurityguru.org/2023/02/15/dragos-report-identifies-new-threat-groups/?utm_source=rss&utm_medium=rss&utm_campaign=dragos-report-identifies-new-threat-groups<br /><br /><a href="https://www.itsecurityguru.org/2023/02/15/traditional-pam-solutions-arent-working-keeper-security-study-finds/?utm_source=rss&utm_medium=rss&utm_campaign=traditional-pam-solutions-arent-working-keeper-security-study-finds" target="_blank"><b>Traditional PAM solutions aren’t working, Keeper Security study finds</b></a><br /><br />https://www.itsecurityguru.org/2023/02/15/traditional-pam-solutions-arent-working-keeper-security-study-finds/?utm_source=rss&utm_medium=rss&utm_campaign=traditional-pam-solutions-arent-working-keeper-security-study-finds<br /><br /><a href="https://www.schneier.com/blog/archives/2023/02/cyberwar-lessons-from-the-war-in-ukraine.html" target="_blank"><b>Cyberwar Lessons from the War in Ukraine</b></a><br /><br />https://www.schneier.com/blog/archives/2023/02/cyberwar-lessons-from-the-war-in-ukraine.html<br /><a href=" https://arstechnica.com/science/2023/02/the-return-of-flat-earth-the-grandfather-of-conspiracy-theories/" target="_blank"><br /><b>The return of Flat Earth, the grandfather of conspiracy theories</b></a><br /><br />https://arstechnica.com/science/2023/02/the-return-of-flat-earth-the-grandfather-of-conspiracy-theories/<br /><br /><a href="https://arstechnica.com/tech-policy/2023/02/us-says-google-routinely-destroyed-evidence-and-lied-about-use-of-auto-delete/" target="_blank"><b>US says Google routinely destroyed evidence and lied about use of auto-delete</b></a><br /><br />https://arstechnica.com/tech-policy/2023/02/us-says-google-routinely-destroyed-evidence-and-lied-about-use-of-auto-delete/<br /><a href="https://arstechnica.com/information-technology/2023/02/ukraine-suffered-more-data-wiping-malware-than-anywhere-ever/" target="_blank"><br /><b>Ukraine suffered more data-wiping malware than anywhere, ever</b></a><br /><br />https://arstechnica.com/information-technology/2023/02/ukraine-suffered-more-data-wiping-malware-than-anywhere-ever/<br /><a href="https://www.bbc.com/news/world-us-canada-64727735?at_medium=RSS&at_campaign=KARANGA" target="_blank"><br /><b>Seattle becomes first US city to ban caste discrimination</b></a><br /><br />https://www.bbc.com/news/world-us-canada-64727735?at_medium=RSS&at_campaign=KARANGA<br /><br /><a href="https://www.bbc.com/news/world-us-canada-64727712?at_medium=RSS&at_campaign=KARANGA" target="_blank"><b>US Supreme Court wary of removing tech firms' legal shield in Google case</b></a><br /><br />https://www.bbc.com/news/world-us-canada-64727712?at_medium=RSS&at_campaign=KARANGA<br /><a href="https://www.zdnet.com/article/technical-debt-dont-spend-more-than-one-quarter-of-your-time-dealing-with-it/" target="_blank"><br /><b>Technical debt? Don't spend more than one-quarter of your time dealing with it </b></a><br /><br />https://www.zdnet.com/article/technical-debt-dont-spend-more-than-one-quarter-of-your-time-dealing-with-it/<br /><br /><a href="https://www.wsj.com/articles/covid-origin-china-lab-leak-807b7b0a" target="_blank"><b>Lab Leak Most Likely Origin of Covid-19 Pandemic, Energy Department Now Says</b></a><br /><br />https://www.wsj.com/articles/covid-origin-china-lab-leak-807b7b0a<br /><br /><a href="https://www.telegraph.co.uk/news/2023/02/25/james-bond-books-edited-remove-racist-references/" target="_blank"><b>James Bond books edited to remove racist references </b></a><br /><br />https://www.telegraph.co.uk/news/2023/02/25/james-bond-books-edited-remove-racist-references/<br /><br /><a href="https://beej.us/guide/bgc/html/split/index.html" target="_blank"><b>Beej's Guide to C Programming</b></a><br /><br />https://beej.us/guide/bgc/html/split/index.html<br /><a href="https://jacobin.com/2023/02/capitalist-road-to-serfdom-surveillance-wage-labor" target="_blank"><br /><b>The Capitalist Road to Serfdom</b></a><br /><br />https://jacobin.com/2023/02/capitalist-road-to-serfdom-surveillance-wage-labor<br /><br /><a href=" https://www.washingtonpost.com/us-policy/2023/02/24/temporary-visa-h1b-tech-layoffs/" target="_blank"><b>High-skilled visa holders at risk of deportation amid tech layoffs</b></a><br /><br />https://www.washingtonpost.com/us-policy/2023/02/24/temporary-visa-h1b-tech-layoffs/<br /><a href="https://www.reuters.com/business/environment/us-corn-based-ethanol-worse-climate-than-gasoline-study-finds-2022-02-14/" target="_blank"><br /><b>U.S. corn-based ethanol worse for the climate than gasoline, study finds</b></a><br /><br />https://www.reuters.com/business/environment/us-corn-based-ethanol-worse-climate-than-gasoline-study-finds-2022-02-14/<br /><br /><a href="https://www.gamedeveloper.com/culture/even-neal-stephenson-doesn-t-seem-keen-on-crypto-anymore" target="_blank"><b>Even Neal Stephenson doesn't seem keen on crypto anymore</b></a><br /><br />https://www.gamedeveloper.com/culture/even-neal-stephenson-doesn-t-seem-keen-on-crypto-anymore<br /><b><br /><a href="https://www.economist.com/science-and-technology/2023/02/22/there-is-a-worrying-amount-of-fraud-in-medical-research" target="_blank">There is a worrying amount of fraud in medical research</a></b><br /><br />https://www.economist.com/science-and-technology/2023/02/22/there-is-a-worrying-amount-of-fraud-in-medical-research<br /><a href="https://www.wsj.com/articles/stanford-faculty-moves-to-stop-students-from-reporting-bias-anonymously-cbac78ed" target="_blank"><br /><b>Stanford Faculty Say Anonymous Student Bias Reports Threaten Free Speech</b></a><br /><br />https://www.wsj.com/articles/stanford-faculty-moves-to-stop-students-from-reporting-bias-anonymously-cbac78ed<br /><br /><a href="https://www.vice.com/en/article/dy7a7x/companies-cant-ask-you-to-shut-up-to-receive-severance-nlrb-rules" target="_blank"><b>Companies Can’t Ask You to Shut up to Receive Severance, NLRB Rules</b></a><br /><br />https://www.vice.com/en/article/dy7a7x/companies-cant-ask-you-to-shut-up-to-receive-severance-nlrb-rules<br /><a href="https://www.seattletimes.com/seattle-news/how-indias-caste-system-manifests-in-seattle-area-workplaces-and-beyond/" target="_blank"><br /><b>How India’s caste system manifests in Seattle-area workplaces and beyond </b></a><br /><br />https://www.seattletimes.com/seattle-news/how-indias-caste-system-manifests-in-seattle-area-workplaces-and-beyond/<br /><br /><a href="https://uxdesign.cc/the-age-of-agile-must-end-bc89c0f084b7" target="_blank"><b>The age of Agile must end</b></a><br /><br />https://uxdesign.cc/the-age-of-agile-must-end-bc89c0f084b7<br /><br /><a href=" https://abcnews.go.com/Health/5th-person-confirmed-cured-hiv/story?id=97323361" target="_blank"><b>5th person confirmed to be cured of HIV</b></a><br /><br />https://abcnews.go.com/Health/5th-person-confirmed-cured-hiv/story?id=97323361<br /><a href=" https://nymag.com/intelligencer/2023/02/the-silicon-valley-loop-malcolm-harriss-palo-alto.html" target="_blank"><br /><b>The Silicon Valley Loop How the dot-com crash created Palo Alto’s clueless investor class.</b><br /></a><br />https://nymag.com/intelligencer/2023/02/the-silicon-valley-loop-malcolm-harriss-palo-alto.html<br /><a href=" https://bigthink.com/thinking/is-speech-violence/" target="_blank"><br /><b>Speech is violence? Not if we want a liberal, intellectual society</b></a><br /><br />https://bigthink.com/thinking/is-speech-violence/<br /><br /><a href="https://www.businessinsider.com/tech-jobs-recession-layoffs-gen-z-students-class-of-2023-2023-2" target="_blank"><b>Big Tech’s massive layoffs will come back to haunt it</b></a><br /><br />https://www.businessinsider.com/tech-jobs-recession-layoffs-gen-z-students-class-of-2023-2023-2<br /><br /><a href=" https://www.darkreading.com/ics-ot/ot-network-security-myths-busted-in-a-pair-of-hacks" target="_blank"><b>OT Network Security Myths Busted in a Pair of Hacks</b></a><br /><br />https://www.darkreading.com/ics-ot/ot-network-security-myths-busted-in-a-pair-of-hacks<br /><a href="https://www.csoonline.com/article/3687814/attacks-on-industrial-infrastructure-on-the-rise-defenses-struggle-to-keep-up.html#tk.rss_all" target="_blank"><br /><b>Attacks on industrial infrastructure on the rise, defenses struggle to keep up</b></a><br /><br />https://www.csoonline.com/article/3687814/attacks-on-industrial-infrastructure-on-the-rise-defenses-struggle-to-keep-up.html#tk.rss_all<br /><br /><a href="https://www.csoonline.com/article/3687991/plc-vulnerabilities-can-enable-deep-lateral-movement-inside-ot-networks.html#tk.rss_all" target="_blank"><b>PLC vulnerabilities can enable deep lateral movement inside OT networks</b></a><br /><br />https://www.csoonline.com/article/3687991/plc-vulnerabilities-can-enable-deep-lateral-movement-inside-ot-networks.html#tk.rss_all<br /><a href=" https://cyberscoop.com/puesh-kumar-energy-cybersecurity/" target="_blank"><br /><b>The Energy Department’s Puesh Kumar on grid hacking, Ukraine and Pipedream malware </b></a><br /><br />https://cyberscoop.com/puesh-kumar-energy-cybersecurity/<br /><a href=" https://www.darkreading.com/edge-articles/is-owasp-at-risk-of-irrelevance" target="_blank"><br /><b>Is OWASP at Risk of Irrelevance?</b></a><br /><br />https://www.darkreading.com/edge-articles/is-owasp-at-risk-of-irrelevance</p><p><a href="https://youtube.com/watch?v=ihvrqlxk5tA&feature=shares" target="_blank"><b>Bill Fehrman - CEO Berkshire Hathaway Energy talking at S4x23</b></a></p><p>https://youtube.com/watch?v=ihvrqlxk5tA&feature=shares<br /></p><p><br /></p><div class="blogger-post-footer">http://rpc.technorati.com/rpc/ping</div>Chadhttp://www.blogger.com/profile/15083359852310707247noreply@blogger.com0tag:blogger.com,1999:blog-9106226.post-20774519481980121762023-02-25T19:09:00.000-08:002023-02-25T19:09:08.747-08:00Page Ranking the Cybersecurity Literature<p> As all of you, the imaginary voices in my head, know I maintain a pretty <a href="https://docs.google.com/spreadsheets/d/12z7_8fUwSejPVd6bIosD405mhpLLM_DnTdcIiiKWpqw/edit#gid=2079030996" target="_blank">extensive meta-list of cybersecurity reading</a>, a list of lists compiling recommendations from different companies, government / military organizations, academic institutions, and individuals. (30+ sources and close to 900 readings at this point). I have tried to group the sources in categories and every time a reading appears I increment a score column. This is supposed to help gauge relative importance based on community perception. The readings are listed alphabetically.</p><p></p><div class="separator" style="clear: both; text-align: center;"><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEh1DcU2p7vSJJnESFXaO4NKC2KmQZA826RDksvEddSsjXapp0cV50wT0R36nJsHoLHOORrTcvElQIHjvF3ufeRalcoIUUUACOB3LOBAHd9ASi-V49SJfL5mayWGQrFe1rxbnyK8s5LhG1qYvLSanB8aB7vuOX0J4Sb6TgsxkfyCsvMa2wUZiME/s3808/readlist_score.jpg" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="1789" data-original-width="3808" height="150" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEh1DcU2p7vSJJnESFXaO4NKC2KmQZA826RDksvEddSsjXapp0cV50wT0R36nJsHoLHOORrTcvElQIHjvF3ufeRalcoIUUUACOB3LOBAHd9ASi-V49SJfL5mayWGQrFe1rxbnyK8s5LhG1qYvLSanB8aB7vuOX0J4Sb6TgsxkfyCsvMa2wUZiME/s320/readlist_score.jpg" width="320" /></a></div><br /> <p></p><p>Since I started this project I have always just kind of thought of it as a handy list for myself and some of my friends, although I have blasted it out on twitter and various other forums ad nauseam, but today I realized two things:</p><p>a) other than me no one uses or cares about this list</p><p>b) In doing this I have re-invented a very clumsy way of doing page ranking, like Google's very dimwitted cousin that the family keeps locked in the basement and who they occasionally throw some food and porn and hope no one will ever learn of their shame.</p><p>c) Although I am doing this in the most moronic and labor intensive way possible there are actually possibilities here.</p><p>d) That was three things not two, obviously I am a moron who can't count.</p><p>e) Dammit, that was four!</p><p>f) Aargh!!!!</p><p>OK, had to break out of that hell...</p><p>Anyway, I have mentioned before that it would be interesting to build a list of the articles that SANS uses in their various courses. At the time I was mainly thinking of it as just an additional resource to help study for their exams, but now I am seeing a couple of other possibilities mainly in helping industry newcomers and students identify subjects that cut across various specialties. It might also help build cohesion and help reinforce learning by being able to identify subjects that are found to be important by the various course authors.</p><p><i>(Also now that I think about it, this could serve as the basis of a talk at a convention. DIBS!!!)</i></p><p>I've probably wasted enough of your time by now and I need to think about how to proceed:</p><p>I guess I could start a go-fund me for $17,500,000,000.00 so I could take all the available SANS classes and then I could manually pull the article information from the footnotes on each page, a variation, I could brush up on my python skills and try to do that automatically using digital copies. Obviously that's not gonna happen - the last time I asked for help on line all I got was one random Fuck You. </p><p>The other, more realistic scenario is that people may have already compiled some of this information. If you have and you wouldn't mind sharing let me know in the comments or on twitter. </p><p><br /></p><br /><p><br /></p><div class="blogger-post-footer">http://rpc.technorati.com/rpc/ping</div>Chadhttp://www.blogger.com/profile/15083359852310707247noreply@blogger.com0tag:blogger.com,1999:blog-9106226.post-61564917627675733912023-02-05T19:13:00.003-08:002023-02-05T19:16:34.785-08:00What I am Reading 2/5/2023 - including free course in cyber-physical system security<p><b><a href="https://nwn.blogs.com/nwn/2023/02/richard-bartle-crypto-circle-blockchain-nft-virtual-worlds.html" target="_blank">Richard Bartle, Top Virtual World Expert, Tries Explaining Core Problems With NFT & Blockchain at a Crypto Conference. It Does Not Go Well.</a></b><br /><br />https://nwn.blogs.com/nwn/2023/02/richard-bartle-crypto-circle-blockchain-nft-virtual-worlds.html<br /><b><a href="https://www.aljazeera.com/opinions/2023/1/29/greening-ourselves-to-extinction" target="_blank"><br />We are ‘greening’ ourselves to extinction</a></b><br /><br />https://www.aljazeera.com/opinions/2023/1/29/greening-ourselves-to-extinction<br /><br /><b><a href="https://www.zdnet.com/article/microsoft-warning-protect-this-critical-piece-of-your-tech-infrastructure/#ftag=RSSbaffb68" target="_blank">Microsoft warning: Protect this critical piece of your tech infrastructure </a></b><br /><br />https://www.zdnet.com/article/microsoft-warning-protect-this-critical-piece-of-your-tech-infrastructure/#ftag=RSSbaffb68<br /><b><a href="https://www.csoonline.com/article/3686692/why-you-might-not-be-done-with-your-january-microsoft-security-patches.html#tk.rss_all" target="_blank"><br />Why you might not be done with your January Microsoft security patches</a></b><br /><br />https://www.csoonline.com/article/3686692/why-you-might-not-be-done-with-your-january-microsoft-security-patches.html#tk.rss_all<br /><b><a href="https://cyberscoop.com/hack-electric-vehicle-chargers/" target="_blank"><br />Vulnerabilities could let hackers remotely shut down EV chargers, steal electricity </a></b><br /><br />https://cyberscoop.com/hack-electric-vehicle-chargers/<br /><br /><b><a href=" https://www.darkreading.com/vulnerabilities-threats/firmware-flaws-could-spell-lights-out-for-servers" target="_blank">Firmware Flaws Could Spell 'Lights Out' for Servers</a></b><br /><br />https://www.darkreading.com/vulnerabilities-threats/firmware-flaws-could-spell-lights-out-for-servers<br /><br /><b><a href="https://www.darkreading.com/application-security/cisa-to-open-supply-chain-risk-management-office" target="_blank">CISA to Open Supply Chain Risk Management Office</a></b><br /><br />https://www.darkreading.com/application-security/cisa-to-open-supply-chain-risk-management-office<br /><b><a href="https://medium.com/developer-purpose/after-16-years-at-google-justin-moore-was-fired-with-an-automated-email-f715ab307871" target="_blank"><br />After 16 years at Google, Justin Moore was fired with an automated email</a></b><br /><br />https://medium.com/developer-purpose/after-16-years-at-google-justin-moore-was-fired-with-an-automated-email-f715ab307871<br /><br /><b><a href="https://www.sjc.edu/academic-programs/undergraduate/great-books-reading-list" target="_blank">St. John’s Reading List: A Great Books Curriculum</a></b><br /><br />https://www.sjc.edu/academic-programs/undergraduate/great-books-reading-list<br /><br /><b><a href=" https://www.foreignaffairs.com/united-states/stop-passing-buck-cybersecurity" target="_blank">Stop Passing the Buck on Cybersecurity</a></b><br /><br />https://www.foreignaffairs.com/united-states/stop-passing-buck-cybersecurity</p><p><i>article by Jen Easterly the Head of CISA</i><br /><br /><b><a href="https://www.darkreading.com/remote-workforce/patch-critical-bug-qnap-nas-devices-ripe-slaughter" target="_blank">Patch Critical Bug Now: QNAP NAS Devices Ripe for the Slaughter</a></b><br /><br />https://www.darkreading.com/remote-workforce/patch-critical-bug-qnap-nas-devices-ripe-slaughter<br /><b><a href="https://www.helpnetsecurity.com/2023/02/01/cve-2023-20076/" target="_blank"><br />Vulnerability in Cisco industrial appliances is a potential nightmare (CVE-2023-20076)</a></b><br /><br />https://www.helpnetsecurity.com/2023/02/01/cve-2023-20076/<br /><br /><b><a href="https://www.helpnetsecurity.com/2023/01/31/cybersecurity-concerns-utility-infrastructure-modernization-efforts/">3 ways to stop cybersecurity concerns from hindering utility infrastructure modernization efforts</a></b><br /><br />https://www.helpnetsecurity.com/2023/01/31/cybersecurity-concerns-utility-infrastructure-modernization-efforts/<br /><br /><b><a href=" https://www.theregister.com/2023/02/05/supply_chain_security_efforts/" target="_blank">Have we learnt nothing from SolarWinds supply chain attacks? Not yet it appears</a></b><br /><br />https://www.theregister.com/2023/02/05/supply_chain_security_efforts/<br /><br /><b><a href="https://www.youtube.com/watch?v=FksEGpBLfis" target="_blank"><i>Video - </i>How Would a Nuclear EMP Affect the Power Grid?</a></b><br /><br />https://www.youtube.com/watch?v=FksEGpBLfis<br /><b><a href="https://www.udacity.com/course/cyber-physical-systems-security--ud279" target="_blank"><br /><i>Free Course -</i> Cyber-Physical System Security</a></b><br /><br />https://www.udacity.com/course/cyber-physical-systems-security--ud279<br /><i><br /></i><b><a href="https://sites.google.com/site/samanzonouz4n6/resume/oms-intro-cps-security?pli=1" target="_blank"><i>- - Syallabus </i>- Cyber-Physical System Security</a></b><br /><br />https://sites.google.com/site/samanzonouz4n6/resume/oms-intro-cps-security?pli=1<br /><br /></p><div class="blogger-post-footer">http://rpc.technorati.com/rpc/ping</div>Chadhttp://www.blogger.com/profile/15083359852310707247noreply@blogger.com0tag:blogger.com,1999:blog-9106226.post-6864405550224237562023-01-29T09:19:00.001-08:002023-01-29T09:20:51.454-08:00What I am Reading 1/29/2023<p><b><a href="https://www.amperesec.com/blog/alexa-can-you-tell-me-when-my-gird-is-hacked" target="_blank"> NERC-CIP Stuff - Alexa, can you tell me when my grid is hacked?</a></b><br /><br />https://www.amperesec.com/blog/alexa-can-you-tell-me-when-my-gird-is-hacked</p><p><i>Within the next 2-3 years, if you are a NERC Registered Entity with high impact or medium impact with ERC BES cyber systems, you will need to baseline your network traffic for all applicable cyber assets inside the ESP and look for anomalies beyond the traditional anti-malware and port-restriction controls already in place as part of the existing CIP standards. Examples of anomalies could be, among other things, accounts used in ways they shouldn’t be or new unexpected devices on the network or sending legitimate commands to control systems in ways that could stop or degrade the system. Further, you will need to record/log the traffic information and protect that information from misuse.</i><br /><br /><a href="https://securityboulevard.com/2023/01/rip-perimeter-security-critical-infrastructure-breaches-demand-new-approach/" target="_blank"><b>RIP Perimeter Security: Critical Infrastructure Breaches Demand New Approach </b><br /></a><br />https://securityboulevard.com/2023/01/rip-perimeter-security-critical-infrastructure-breaches-demand-new-approach/<br /><br /><b><a href="https://calmatters.org/environment/2023/01/california-electric-cars-grid/" target="_blank">Race to zero: Can California’s power grid handle a 15-fold increase in electric cars? </a></b><br /><br />https://calmatters.org/environment/2023/01/california-electric-cars-grid/<br /><br /><a href="https://spectrum.ieee.org/electric-vehicle-grid-storage" target="_blank"><b>EVs Are Essential Grid-Scale Storage</b></a><br /><br />https://spectrum.ieee.org/electric-vehicle-grid-storage<br /><b><a href="https://cyberscoop.com/sandworm-wiper-ukraine-russia-military-intel/" target="_blank"><br />Russia’s Sandworm hackers blamed in fresh Ukraine malware attack </a></b><br /><br />https://cyberscoop.com/sandworm-wiper-ukraine-russia-military-intel/<br /><br /><b><a href=" https://media.defense.gov/2023/Jan/18/2003145994/-1/-1/0/CSI_IPV6_SECURITY_GUIDANCE.PDF" target="_blank">National Security Agency | Cybersecurity Information Sheet | IPv6 Security Guidance</a></b><br /><br />https://media.defense.gov/2023/Jan/18/2003145994/-1/-1/0/CSI_IPV6_SECURITY_GUIDANCE.PDF<br /><b><a href=" https://www.helpnetsecurity.com/2023/01/23/trained-developers-code-scanning-tools/"><br />Trained developers get rid of more vulnerabilities than code scanning tools</a></b><br /><br />https://www.helpnetsecurity.com/2023/01/23/trained-developers-code-scanning-tools/<br /><b><a href="https://arstechnica.com/gadgets/2023/01/microsoft-will-stop-selling-windows-10-on-january-31st-but-workarounds-remain/" target="_blank"><br />Microsoft will stop selling Windows 10 on January 31, but workarounds remain</a></b><br /><br />https://arstechnica.com/gadgets/2023/01/microsoft-will-stop-selling-windows-10-on-january-31st-but-workarounds-remain/<br /><br /><b><a href=" https://fedscoop.com/nist-working-on-potential-significant-updates-to-cybersecurity-framework/" target="_blank">NIST working on ‘potential significant updates’ to cybersecurity framework </a></b><br /><br />https://fedscoop.com/nist-working-on-potential-significant-updates-to-cybersecurity-framework/<br /><br /><b><a href="https://www.nist.gov/system/files/documents/2023/01/19/CSF_2.0_Concept_Paper_01-18-23.pdf" target="_blank">The Concept Paper - NIST Cybersecurity Framework 2.0 Concept Paper: Potential Significant Updates to the Cybersecurity Framework</a></b><br /><br />https://www.nist.gov/system/files/documents/2023/01/19/CSF_2.0_Concept_Paper_01-18-23.pdf<br /><b><a href="https://www.securityweek.com/new-open-source-ot-security-tool-helps-address-impact-of-upcoming-microsoft-patch/" target="_blank"><br />New Open Source OT Security Tool Helps Address Impact of Upcoming Microsoft Patch </a></b><br /><br />https://www.securityweek.com/new-open-source-ot-security-tool-helps-address-impact-of-upcoming-microsoft-patch/<br /><br /><b><a href=" https://www.theverge.com/2023/1/26/23571659/tech-layoffs-facebook-google-amazon" target="_blank">Why are so many tech companies laying people off right now?</a></b><br /><br />https://www.theverge.com/2023/1/26/23571659/tech-layoffs-facebook-google-amazon<br /><br /><b><a href=" https://www.schneier.com/blog/archives/2023/01/kevin-mitnick-hacked-california-law-in-1983.html" target="_blank">Kevin Mitnick Hacked California Law in 1983</a></b><br /><br />https://www.schneier.com/blog/archives/2023/01/kevin-mitnick-hacked-california-law-in-1983.html<br /><b><br /><a href=" https://gizmodo.com/google-bing-microsoft-chatgpt-ai-antitrust-doj-screwed-1850029781" target="_blank">Google Is Screwed, Even If It Wins Its Antitrust Case</a></b><br /><br />https://gizmodo.com/google-bing-microsoft-chatgpt-ai-antitrust-doj-screwed-1850029781<br /><br /><b><a href=" https://www.newyorker.com/news/q-and-a/two-supreme-court-cases-that-could-break-the-internet" target="_blank">Two Supreme Court Cases That Could Break the Internet</a></b><br /><br />https://www.newyorker.com/news/q-and-a/two-supreme-court-cases-that-could-break-the-internet<br /><b><br /><a href="https://www.csoonline.com/article/3686610/hackers-abuse-legitimate-remote-monitoring-and-management-tools-in-attacks.html#tk.rss_all" target="_blank">Hackers abuse legitimate remote monitoring and management tools in attacks</a></b><br /><br />https://www.csoonline.com/article/3686610/hackers-abuse-legitimate-remote-monitoring-and-management-tools-in-attacks.html#tk.rss_all<br /><br /><br /></p><div class="blogger-post-footer">http://rpc.technorati.com/rpc/ping</div>Chadhttp://www.blogger.com/profile/15083359852310707247noreply@blogger.com0