DevSecOps

E2EE is MIA in iPhone/Android Chat — GSMA Gonna Fix it

Richi Jennings | September 18, 2024 | android, Apple, Apple iOS, Apple iPhone, china, E2EE, end-to-end, end-to-end encryption, google, Great Firewall of China, GSMA, iChat, imessage, ios, iOS 18, iPhone, iphone security, MLS, RCS, RCS protocol, SB Blogwatch, SMS, SMS messages

No More Barf-Green Bubbles? GSM Association is “excited” to bring Apple and Google closer together, but encryption is still lacking ...

Security Boulevard

Russian ‘WhisperGate’ Hacks: 5 More Indicted

Eaten by a GRU: Fake ransomware created by Russian GRU Unit 29155 attacked Ukraine and NATO—a month before the full scale invasion ...

Security Boulevard

Yikes, YubiKey Vulnerable — ‘EUCLEAK’ FIDO FAIL?

Richi Jennings | September 4, 2024 | CVE-2024-45678, ECDSA, EUCLEAK, FIDO, FIDO2, Infineon, Passkeys, SB Blogwatch, YSA-2024-03, Yubikey

USB MFA SCA😱: Infineon hardware and software blamed for timing side-channel attack on popular auth tokens ...

Security Boulevard

‘Terrorgram’ Telegram Terrorists Trash Transformers — Grid in Peril

Should’ve listened to Edison: After the arrest of Pavel Durov—the Telegram CEO—comes news of domestic extremists using the chat app to organize ...

Security Boulevard

The word “Tuesday” in cutout paper letters on a textured background

August Patch Pileup: Microsoft’s Zero-Day Doozy Dump

Richi Jennings | August 14, 2024 | Adobe patch, august patch tuesday, CVE-2024-21302, CVE-2024-38106, CVE-2024-38107, CVE-2024-38178, CVE-2024-38189, CVE-2024-38193, CVE-2024-38199, CVE-2024-38200, CVE-2024-38202, CVE-2024-38213, Microsoft patch tuesday, Microsoft Patch Tuesday August 2024, Patch Tuesday, SB Blogwatch

See These CVEs: Patch Tuesday—ten zero-days, seven Critical vulns, zero time to waste ...

Security Boulevard

WTH? DPRK WFH Ransomware Redux: 3rd Person Charged

Richi Jennings | August 13, 2024 | Andrew M., DPRK, Korea, Korean military, Korean ransomware, Matthew Isaac Knoot, North Korea, North Korean Hacking, North Korean Threat Actors, northkorea, Noth Korea, SB Blogwatch

North Korean army of remote IT workers enabled by Matthew Isaac Knoot, alleges DoJ ...

Security Boulevard

RAD Security Combines AI With Behavioral Analytics to Improve Cybersecurity

Michael Vizard | August 8, 2024 | AI Tools, Automation, Cybersecurity, threat detection

RAD Security this week at the Black Hat USA 2024 conference revealed it has added artificial intelligence (AI) capabilities to its cloud detection and response (CDR) platform as part of an ongoing ...

Security Boulevard

Student Devices Wiped — Mobile Guardian Hacked AGAIN

Richi Jennings | August 7, 2024 | Blackmail, cybersecurity education, Cybersecurity in education, DevOps Education, DevSecOps Education, MDM, Mobile Device Management (MDM), Mobile Guardian, Ransomware, SB Blogwatch, singapore

Hackers ate my homework: MDM software for schools is breached for second time this year—13,000 devices wiped in Singapore alone ...

Security Boulevard

TikTok Abuses Kids, say DoJ and FTC

Richi Jennings | August 5, 2024 | Bytedance, children, Children and smartphones, Children's Online Privacy Protection Act (COPPA), china, chinese government, Coppa, Privacy, SB Blogwatch, , spyware, TikTok, TikTok Ban, Won’t somebody think of the children?

For You Plague: U.S. Justice Dept. and Federal Trade Commission file lawsuit, alleging TikTok broke the COPPA law, plus a previous injunction ...

Security Boulevard

David Boies, founding partner and chairman of Boies Schiller Flexner, LLP

CrowdStrike Sued? — Delta Dials David Boies

Richi Jennings | July 31, 2024 | CrowdStrike, CrowdStrike Falcon, CrowdStrike incident;, Delta Airlines, falcon, SB Blogwatch

Is Delta the First of Many? Airline calls in attorneys Boies Schiller Flexner to claw back its cash ...

Security Boulevard

DevSecOps

GoPlus’s Latest Report Highlights How Blockchain Communities Are Leveraging Critical API Security Data To Mitigate Web3 Threats

C2A Security’s EVSec Risk Management and Automation Platform Gains Traction in Automotive Industry as Companies Seek to Efficiently Meet Regulatory Requirements

Zama Raises $73M in Series A Lead by Multicoin Capital and Protocol Labs to Commercialize Fully Homomorphic Encryption

RSM US Deploys Stellar Cyber Open XDR Platform to Secure Clients

ThreatHunter.ai Halts Hundreds of Attacks in the past 48 hours: Combating Ransomware and Nation-State Cyber Threats Head-On