Security Pop Quiz! q432.mp3

News

Packet Storm Security

Security Affairs

* A cyberattack was responsible for the week-long outage affecting Cellcom wireless network
* Coinbase data breach impacted 69,461 individuals
* U.S. CISA adds Ivanti EPMM, MDaemon Email Server, Srimax Output Messenger, Zimbra Collaboration, and
* A critical flaw in OpenPGP.js lets attackers spoof message signatures
* SK Telecom revealed that malware breach began in 2022

Looking Glass Cyber

securingtomorrow.mcafee.com

Quick Heal

Threat Post

* Student Loan Breach Exposes 2.5M Records
* Watering Hole Attacks Push ScanBox Keylogger
* Tentacles of '0ktapus' Threat Group Victimize 130 Firms
* Ransomware Attacks are on the Rise
* Cybercriminals Are Selling Access to Chinese Surveillance Cameras

Naked Security

ESET

* The who, where, and how of APT attacks in Q4 2024-Q1 2025
* ESET APT Activity Report Q4 2024-Q1 2025
* Sednit abuses XSS flaws to hit gov't entities, defense companies
* Operation RoundPress
* How can we counter online disinformation? | Unlocked 403 cybersecurity podcast (S2E2)

CIS

• How Threat Modeling, Actor Attribution Grow Cyber Defenses Thu, 15 May 2025 09:37:00 -0400
  Want to enhance your threat modeling? By combining it with threat actor attribution, you can improve your cyber defenses. Read on to learn more.

Malware Patrol

SecList

• Dero miner zombies biting through Docker APIs to build a cryptojacking horde
  Kaspersky experts break down an updated cryptojacking campaign targeting containerized environments: a Dero crypto miner abuses the Docker API.

MySonicWall

Critical Infrastructure

* The importance of security for power utility substations
* Chinese threat actor resided in US electric grid for almost one year
* US experiences 47% of global utilities cyberattacks

* Windsor port authority strengthens US-Canada border waterway
* Protecting ships from cyber terrorism
* Biden administration issues executive order to secure U.S. ports

* Ensuring safety on the move: Strengthening security in public transportation
* Nearly 1M records related to personal property were exposed
* Security experts respond to the Amazon employee data breach

Case Studies

* The 2 am call: Preparing for a government cyberattack
* Häfele recovers from ransomware attack with new SASE platform
* Ride-hailing company, inDrive, uses new platform to prevent fraud

* Campus collaboration: a security-focused work management platform
* Windsor port authority strengthens US-Canada border waterway
* From the stone age to cutting edge: A case study on key management

Tools

Exploits

Last 20 Website Defacements - Zone-h

Press Play to hear the answer!

Advisories