The black hat hacker trap: Why unethical hacking lures young people

https://venturebeat.com/security/the-black-hat-hacker-trap-why-unethical-hacking-lures-young-people/

Does this article paint an accurate picture?

#VentureBeat #BlackHat #hacking #cybercrime #infosec #cybersecurity #WhiteHat #EthicalHacking #PenTesting

For those that are wondering, after a forensic investigation, we found that this is how the attacker got around the 2FA:

https://www.yourtechstory.com/2023/02/02/facebook-bug-allows-2fa-bypass-via-instagram/

#infosec #instagram

Until further notice, think twice before using Google to download software

Over the past month, Google has been outgunned by malvertisers with new tricks

https://arstechnica.com/information-technology/2023/02/until-further-notice-think-twice-before-using-google-to-download-software/

#Google #ArsTechnica #malware #infosec #cybersecurity #GoogleAds #malvertising

Can a new form of cryptography solve the internet’s privacy problem?

Techniques which allow the sharing of data whilst keeping it secure may revolutionise fields from healthcare to law enforcement

https://www.theguardian.com/technology/2022/oct/29/privacy-problem-tech-enhancing-data-political-legal

#theguardian #cryptography #research #infosec #cybersecurity #privacy #encryption

Cybersecurity: How closing the skills gap can improve resilience and support a workforce in transition

More people need to understand that a cyber career is attainable for anyone.

https://www.weforum.org/agenda/2023/02/cybersecurity-how-to-improve-resilience-and-support-a-workforce-in-transition/

#weforum #cybersecurity #infosecjobs #career #ransomware #cyberattack #jobs #technology

Microsoft: We are tracking these 100 active ransomware gangs using 50 types of malware

Phishing, fake software updates and unpatched vulnerabilities are being exploited for ransomware attacks.

https://www.zdnet.com/article/microsoft-we-are-tracking-these-100-active-ransomware-gangs-using-50-types-of-malware/

#zdnet #microsoft #ransomware #malware #cybercrime #infosec #cybersecurity #phishing #vulnerabilities

KeePass disputes vulnerability allowing stealthy password theft

The development team behind the open-source password management software KeePass is disputing what is described as a newly found vulnerability that allows attackers to stealthily export the entire database in plain text.

https://www.bleepingcomputer.com/news/security/keepass-disputes-vulnerability-allowing-stealthy-password-theft/

#BleepingComputer #keepass #vulnerability #passwordmanager #infosec #cybersecurity

The risks of 5G security

Unless you've been living under a rock for the past decade, you’ve probably heard of 5G telecommunications. But what is it?

https://www.techrepublic.com/article/risks-5g-security/

#5g #security #telecom #wireless #TechRepublic #technology #infosec #cybersecurity

Fear not: RSA encryption won’t fall to quantum computing anytime soon

Expert says the focus on quantum attacks may distract us from more immediate threats.

https://arstechnica.com/information-technology/2023/01/fear-not-rsa-encryption-wont-fall-to-quantum-computing-anytime-soon/

#QuantumComputing #arstechnica #encryption #infosec #cybersecurity

IBM: Quantum computing poses an ‘existential threat’ to data encryption

https://venturebeat.com/security/ibm-quantum-computing/

#ibm #QuantumComputing #encryption #VentureBeat #cryptography #infosec #cybersecurity

Restraining myself from typing this in all caps. Cellebrite, the Israeli company that develops phone cracking software/hardware that has been used by police forces worldwide, have had their tools and documentation leaked. Holy shit.
#infosec #security #tech #privacy

https://ddosecrets.substack.com/p/cellebrite-msab-phone-forensics-leak

We have a subreddit now! Check out https://reddit.com/r/infosec_jobs/ :) #infosec #infosecjobs #cyberjobs #cybersecjobs #securityjobs #reddit

Hackers using Google Ads to steal your info and drain your accounts — what you need to know

Fake ads that lead to phishing sites are distributing the Rhadamanthys malware

https://www.tomsguide.com/news/hackers-using-google-ads-to-steal-your-info-and-drain-your-accounts-what-you-need-to-know

#GoogleAds #TomsGuide #FakeAds #malware #infosec #cybersecurity

Patch Where it Hurts: Effective Vulnerability Management in 2023

A recently published Security Navigator report data shows that businesses are still taking 215 days to patch a reported vulnerability. Even for critical vulnerabilities, it generally takes more than 6 months to patch.

https://thehackernews.com/2023/01/patch-where-it-hurts-effective.html

#vulnerability #patching #înfosec #cybersecurity #TheHackerNews

A fifth of passwords used by federal agency cracked in security audit

89 percent of the department's high-value assets had easy-to-crack passcodes.

https://arstechnica.com/information-technology/2023/01/a-fifth-of-passwords-used-by-federal-agency-cracked-in-security-audit/

#infosec #cybersecurity #ArsTechnica #government #password #audit

@rgordon I recently disposed of seven old drives. Four were in enclosures and could not be accessed. I bought USB device below and was able to wipe all using DoD standard. They were then donated to Goodwill.

https://www.amazon.com/gp/aw/d/B08BNPXSJ9

#quotes #infosec #cybersec

“I’ve never seen anything like this in my more than 20 years in Congress.”

—George Santos