What I'm Reading 11/20/2022

Exclusive: Russian software disguised as American finds its way into U.S. Army, CDC apps

https://www.reuters.com/technology/exclusive-russian-software-disguised-american-finds-its-way-into-us-army-cdc-2022-11-14/

5 Kali Linux tools you should learn how to use

https://www.helpnetsecurity.com/2022/11/14/kali-linux-tools/

Swimlane and Nozomi Networks, Vulnerability Management Automation for Critical Infrastructure

https://securityboulevard.com/2022/11/swimlane-and-nozomi-networks-vulnerability-management-automation-for-critical-infrastructure/

Will a Labeling System Solve IoT Security Challenges?

https://www.hackread.com/abeling-system-iot-security-challenges/

Is the Grid Secure Enough for the Electric Vehicle Influx?

https://www.itsecurityguru.org/2022/11/14/is-the-grid-secure-enough-for-the-electric-vehicle-influx/?utm_source=rss&utm_medium=rss&utm_campaign=is-the-grid-secure-enough-for-the-electric-vehicle-influx

Applying IP network guidance has harmed control system field devices and legacy control systems

https://www.controlglobal.com/protect/cybersecurity/blog/21436469/applying-ip-network-guidance-has-harmed-control-system-field-devices-and-legacy-control-systems

Microsoft: Hackers are using this 'concerning' tactic to dodge multi-factor authentication

https://www.zdnet.com/article/microsoft-hackers-are-using-this-concerning-tactic-to-dodge-multi-factor-authentication/#ftag=RSSbaffb68

Get Ahead of the Five Most Dangerous New Attack Techniques

https://www.sans.org/blog/get-ahead-of-the-five-most-dangerous-new-attack-techniques/

US govt: Iranian hackers breached federal agency using Log4Shell exploit

https://www.bleepingcomputer.com/news/security/us-govt-iranian-hackers-breached-federal-agency-using-log4shell-exploit/

US Gov Warning: Start Hunting for Iranian APTs That Exploited Log4j

https://www.securityweek.com/us-gov-warning-start-hunting-iranian-apts-exploited-log4j

Researchers Say China State-backed Hackers Breached a Digital Certificate Authority

https://thehackernews.com/2022/11/researchers-say-china-state-backed.html

Omron PLC Vulnerability Exploited by Sophisticated ICS Malware

https://www.securityweek.com/omron-plc-vulnerability-exploited-sophisticated-ics-malware

Over 12,000 Cyber Incidents at DoD Since 2015, But Incident Management Still Lacking

https://www.securityweek.com/over-12000-cyber-incidents-dod-2015-incident-management-still-lacking

How to overcome OT security threats?

https://securityboulevard.com/2022/11/how-to-overcome-ot-security-threats/