Sunday, May 01, 2022

This Week's Reading 1 May 2022 #infosec #cybersecurity #books

 Work Stuff

CISA - 2021 Top Routinely Exploited Vulnerabilities

https://www.cisa.gov/uscert/ncas/alerts/aa22-117a

Who is exploiting VMware right now? Probably Iran's Rocket Kitten, to name one

https://www.theregister.com/2022/04/26/iran_rocket_kitten_vmware_exploit/

That time we unplugged a data center to test our disaster readiness

https://dropbox.tech/infrastructure/disaster-readiness-test-failover-blackhole-sjc

Log4j Attack Surface Remains Massive

https://www.darkreading.com/threat-intelligence/l0g4j-attack-surface-remains-huge

What the ECDSA Flaw in Java Means for Enterprises

https://www.darkreading.com/dr-tech/what-the-ecdsa-flaw-in-java-means-for-enterprises

USA's plan to decouple its tech with China lacks a strategy – report

https://www.theregister.com/2022/04/26/usas_plan_to_decouple_its/

Germany's Nuclear Fumble

https://compactmag.com/article/germany-s-nuclear-fumble

Overlapping ICS/OT Mandates Distract From Threat Detection and Response

https://www.darkreading.com/attacks-breaches/overlapping-ics-ot-mandates-distract-from-threat-detection-and-response

Control system cyber incidents in electric and other sectors are frequent, often impactful, but not reported

https://www.controlglobal.com/blogs/unfettered/control-system-cyber-incidents-in-electric-and-other-sectors-are-frequent-often-impactful-but-not-reported/

Microsoft warns: These flaws could give attackers root privileges on Linux desktops

https://www.zdnet.com/article/microsoft-warns-these-flaws-could-give-attackers-root-privileges-on-linux-desktops/#ftag=RSSbaffb68

Mandiant: Attackers' Median Dwell Time Drops to 3 Weeks

https://news.hitb.org/content/mandiant-attackers-median-dwell-time-drops-3-weeks

Top 5 security analytics to measure

https://www.helpnetsecurity.com/2022/04/28/security-analytics-importance/

Experts Detail 3 Hacking Teams Working Under the Umbrella of TA410 Group

https://thehackernews.com/2022/04/experts-detail-3-hacking-teams-working.html

Non-Work Stuff

Facebook Doesn’t Know What It Does With Your Data, Or Where It Goes: Leaked Document

https://www.vice.com/en/article/akvmke/facebook-doesnt-know-what-it-does-with-your-data-or-where-it-goes

Hackers Reportedly Target Wind-Energy Companies

https://www.pcmag.com/news/hackers-reportedly-target-wind-energy-companies

Twitter Admits It Hid Tweets About HBO's QAnon Docuseries

https://gizmodo.com/twitter-hbo-qanon-censor-q-into-the-storm-1848842476?scrolla=5eb6d68b7fedc32c19ef33b4

Conservative Twitter accounts got boost in followers after Musk acquisition, data shows

https://www.theverge.com/2022/4/27/23045005/conservative-twitter-follower-boost-musk-acquisition-data

Network Scanning Techniques: Ethical Hacking Basics

https://www.sekurenetweb.com/network-scanning-techniques-ethical-hacking-basics/

How Technocrats Triumphed at Apple

https://www.nytimes.com/2022/05/01/technology/jony-ive-apple-design.html

Bonus Driven Development

https://twitter.com/richgel999/status/1520473199410135040

Iron Salt Aerosol

https://ironsaltaerosol.com/home/isa_summary

if this sounds intriguing read "Termination Shock" by Neal Stephenson

Hucksters on Parade

https://prospect.org/culture/books/hucksters-on-parade-todays-ceos/

No comments: