Work Stuff
U.S. Passes New Cybersecurity Law for Critical Infrastructure Reporting
https://www.nuspire.com/blog/u-s-passes-new-cybersecurity-law-for-critical-infrastructure-reporting/
The new cybersecurity mandate - Parsing the White House’s cybersecurity directives.
https://www.csoonline.com/article/3658980/the-new-cybersecurity-mandate.html#tk.rss_all
CISA Extends Recommendations to Non-Federal Organizations - Keeping malware from entering networks through web browsers
https://blog.ericom.com/cisa-extends-recommendations/
NIST Releases Updated Cybersecurity Guidance for Managing Supply Chain Risks
https://thehackernews.com/2022/05/nist-releases-updated-guidance-for.html
Russia is losing the cyberwar against Ukraine, too
https://www.computerworld.com/article/3658951/russia-is-losing-the-cyberwar-against-ukraine-too.html#tk.rss_security
Cybersecurity metrics corporate boards want to see
https://www.csoonline.com/article/3658118/cybersecurity-metrics-corporate-boards-want-to-see.html#tk.rss_all
Hackers are exploiting 0-days more than ever
https://arstechnica.com/information-technology/2022/04/hackers-are-exploiting-0-days-more-than-ever/
How Log4j Reshaped Cloud Security Thinking
https://securityboulevard.com/2022/05/how-log4j-reshaped-cloud-security-thinking/
Here's a New Tool That Scans Open-Source Repositories for Malicious Packages
https://thehackernews.com/2022/05/heres-new-tool-that-scans-for-malicious.html
Compromising WSUS for lateral movement
https://labs.nettitude.com/blog/introducing-sharpwsus/
Kaspersky Warns of Fileless Malware Hidden in Windows Event Logs
https://www.securityweek.com/kaspersky-warns-fileless-malware-hidden-windows-event-logs
Finding the Real "Last Patched" Day (Interim Version)
https://isc.sans.edu/diary/rss/28610
Botnet that hid for 18 months boasted some of the coolest tradecraft ever
https://arstechnica.com/information-technology/2022/05/how-hackers-used-smarts-and-a-novel-iot-botnet-to-plunder-email-for-months/
Revisiting the Colonial Pipeline Cyberattack, One Year Later
https://securityboulevard.com/2022/05/revisiting-the-colonial-pipeline-cyberattack-one-year-later/
Flaws in Avast, AVG Antiviruses Could Have Facilitated Attacks on Millions of Devices
https://www.securityweek.com/flaws-avast-avg-antiviruses-could-have-facilitated-attacks-millions-devices
How masscan works
https://rushter.com/blog/how-masscan-works/
California Says It Needs More Power to Keep the Lights On
https://www.usnews.com/news/us/articles/2022-05-06/california-says-it-needs-more-power-to-keep-the-lights-on
Giving old dams new life could spark an energy boom
https://www.msn.com/en-us/news/us/giving-old-dams-new-life-could-spark-an-energy-boom/ar-AAWZKra
==========================================================================
Non-Work Stuff
This ugly t-shirt makes you invisible to facial recognition tech
https://www.wired.co.uk/article/facial-recognition-t-shirt-block
Logging and monitoring can be a form of bullying, and make for lousy infosec
https://www.theregister.com/2022/05/02/surveillance_security_is_bullying/https://www.theregister.com/2022/05/02/surveillance_security_is_bullying/
The Seven Different Types of Jerks at Work (and How to Deal With Them)
https://lifehacker.com/the-seven-different-types-of-jerks-at-work-and-how-to-1848847911
103 Bits of Advice I Wish I Had Known
https://kk.org/thetechnium/103-bits-of-advice-i-wish-i-had-known/?mc_cid=6eae91b051&mc_eid=99d4cae3b4
How big companies kill ideas — and how to fight back, with Tony Fadell
https://www.theverge.com/23053632/tony-fadell-build-decoder-apple-iphone-google-alphabet-steve-jobs
Announcing the public availability of the Cisco Cloud Controls Framework (CCF)
https://blogs.cisco.com/security/announcing-the-public-availability-of-the-cisco-cloud-controls-framework-ccf
The Crypto Elites Are Plotting a Wall Street Merger
https://concoda.substack.com/p/the-crypto-elites-are-plotting-a?s=r
IBM's asshole test
https://johnpublic.mataroa.blog/blog/the-asshole-test/
Demystifying Database Performance for Developers
https://www.crunchydata.com/blog/demystifying-database-performance-for-developers
Edward Snowden in Hindsight
https://www.zdziarski.com/blog/?p=11127
Hitting the Books: US regulators are losing the fight against Big Tech
https://www.engadget.com/hitting-the-books-access-rules-mayer-schonberger-ramge-uc-press-140054547.html?src=rss
Opinion: Do poison pills work? A finance expert explains the anti-takeover tool that Twitter hopes will keep Elon Musk at bay
https://www.marketwatch.com/story/do-poison-pills-work-a-finance-expert-explains-the-anti-takeover-tool-that-twitter-hopes-will-keep-elon-musk-atbay-11650384088?link=sfmw_tw&twclid=212egz7h2kw0hi3yuv5top0dxd
Agile and the Long Crisis of Software
https://logicmag.io/clouds/agile-and-the-long-crisis-of-software/
No comments:
Post a Comment