Storing a GPG / PGP key on a Yubikey
Moving a GPG key to a Yubikey and using it from there to encrypt documents Continue reading on Cloud Security »
Cyber News, Cyber Threat Trends
- April 23, 2023
- April 23, 2023
Troubleshooting S3 bucket policies
ACM.199 A working Organization CloudTrail Bucket Policy Continue reading on Cloud Security »
Cyber News, Cyber Threat Trends
- April 23, 2023
CISA Adds 3 Actively Exploited Flaws to KEV Catalog, including Critical PaperCut Bug
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Friday added three security flaws to its Known Exploited Vulnerabilities (KEV) catalog, based on evidence of active exploitation. The three vulnerabilities are as follows – CVE-2023-28432 (CVSS score – 7.5) – MinIO Information Disclosure Vulnerability CVE-2023-27350 (CVSS score – 9.8) – PaperCut MF/NG Improper Access Control
Cyber News, Cyber Threat Trends
- April 23, 2023
Lazarus X_TRADER Hack Impacts Critical Infrastructure Beyond 3CX Breach
Lazarus, the prolific North Korean hacking group behind the cascading supply chain attack targeting 3CX, also breached two critical infrastructure organizations in the power and energy sector and two other businesses involved in financial trading using the trojanized X_TRADER application. The new findings, which come courtesy of Symantec’s Threat Hunter Team, confirm earlier suspicions that the
Cyber News, Cyber Threat Trends
- April 23, 2023
S3 Server Access Log Bucket Policy
ACM.200 Revisiting default AWS S3 ACLs that still exist Continue reading on Medium »
Cyber News, Cyber Threat Trends
- April 23, 2023
Configuring PFSense and Netgate Devices
Stories on various settings available in PFSense and Netgate devices running it Continue reading on Cloud Security »
Cyber News, Cyber Threat TrendsFriday Squid Blogging: More on Squid Fishing
The squid you eat most likely comes from unregulated waters. As usual, you can also use this squid post to talk about the security stories in the news that I haven’t covered. Read my blog posting guidelines here.
Cyber News, Cyber Threat TrendsGovernment Agencies Release Blueprint for Secure Smart Cities
NCSC and CISA want to balance connectivity with resilience
Cyber News, Cyber Threat TrendsGet ready for RSA 2023: Stronger Together
Going to RSA next week? If you don’t know, it’s a huge cybersecurity conference held at Moscone Center in San Francisco, CA. If you’re going, please stop by the AT&T Cybersecurity booth and check us out. It’s at #6245 in the North Hall. Remember to bring a picture ID for RSA check-in, otherwise you’ll have […]
Cyber News, Cyber Threat Trends