I missed last week because I was out of town at S4x22 in Miami Beach (good time), but I am back now.
Work Related Stuff
De-anonymizing Bitcoin
https://www.schneier.com/blog/archives/2022/04/de-anonymizing-bitcoin.html
Security Zines
https://securityzines.com/
How to achieve better cybersecurity assurances and improve cyber hygiene
https://www.helpnetsecurity.com/2022/04/11/reduce-cyber-attack-risk/
Russian hackers thwarted in attempt to take out electrical grid, Ukrainians say
https://www.cyberscoop.com/ukrainian-electrical-grid-industroyer2-russia-sandworm/
7th ever ICS Specific Malware
https://mobile.twitter.com/RobertMLee/status/1514291630383280146
US warning: Hackers have built tools to attack these key industrial control systems
https://www.zdnet.com/article/us-warning-hackers-have-built-tools-to-attack-these-key-industrial-control-systems/#ftag=RSSbaffb68
Zapped: The grid is on life support. Can AI fix it?
https://www.zdnet.com/article/zapped-the-grid-is-on-life-support-can-ai-fix-it/#ftag=RSSbaffb68
Flaws in ABB Network Interface Modules Expose Industrial Systems to DoS Attacks
https://www.securityweek.com/flaws-abb-network-interface-modules-expose-industrial-systems-dos-attacks
Microsoft details how China-linked crew's malware hides scheduled Windows tasks
https://www.theregister.com/2022/04/14/microsoft-tarrask-malware-in-windows/
You can’t protect the unprotectable – our critical infrastructures
https://www.controlglobal.com/blogs/unfettered/you-cant-protect-the-unprotectable-our-critical-infrastructures/
US warns of APT groups that can “gain full system access” to some industrial control systems
https://blog.malwarebytes.com/vital-infrastructure/2022/04/us-warns-of-apt-groups-that-can-gain-full-system-access-to-industrial-control-systems/
and two days later...
It's Pretty Easy to Hack the Program That Runs Our Power Grids, It Turns Out
https://gizmodo.com/hackers-breach-power-grid-opc-ua-pwn2own-2022-1848825967
This took place at the conference I was at (S4x22 - people were fairly excited by it)
Early Discovery of Pipedream Malware a Success Story for Industrial Security
https://www.darkreading.com/vulnerabilities-threats/pipedream-response-shows-best-case-for-industrial-security
Chernovite's PIPEDREAM Malware targeting Industrial Control Systems (ICS)
https://www.dragos.com/blog/industry-news/chernovite-pipedream-malware-targeting-industrial-control-systems/
Hackers find 122 vulnerabilities — 27 deemed critical — during first round of DHS bug bounty program
https://www.cyberscoop.com/dhs-bug-bounty-122-vulnerabilities-27-critical-hackers/
more from the conference I was at :-)
Communist China Has Thrown Out the Old Rules of War
https://www.realclearbooks.com/articles/2022/04/18/communist_china_has_thrown_out_the_old_rules_of_war_827699.html
Other Stuff
Why the Past 10 Years of American Life Have Been Uniquely Stupid
https://www.theatlantic.com/magazine/archive/2022/05/social-media-democracy-trust-babel/629369/
The Biden administration gives a green light to a fuel that could be even dirtier than regular gas
https://www.theverge.com/2022/4/12/23021146/biden-administration-ethanol-e15-gas-prices
An Argument for a Return to Web 1.0
https://vhsoverdrive.neocities.org/essays/oldweb.html
Can Corporate Sustainability Claims Be Trusted?
https://www.sdxcentral.com/articles/news/can-corporate-sustainability-claims-be-trusted/2022/04/?hit=9ae718fa-4918-44e0-9c8f-716971f1d32f&utm_campaign=twitter&utm_medium=social&utm_source=sdx.io
Here’s Why No One Wants to Talk About Sweden
https://brownstone.org/articles/heres-why-no-one-wants-to-talk-about-sweden/
No comments:
Post a Comment