Cyber criminals are now hiding credit card stealer scripts within web pages' <img> tags. buff.ly/4gS1pD3 #CyberCrime

MITRE ATT&CK is a great framework for tracking cyber threats. Now a team of researchers has proposed several approaches to make it even better. buff.ly/3CZPyFh #MITRE #CyberSecurity

Punycode: The text encoding system for the internationally minded, which is also a cyber criminal's ideal #phishing toolkit. buff.ly/436oKOf #CyberCrime

Sneaky Russian cyber intruders are targeting people of interest by using Signal's Linked Devices feature and malicious QR codes to hijack their accounts. buff.ly/3D6itYc #Russia #Signal #surveillance #infosec

#Apple can only detect around half of #iPhone infections with Pegasus #spyware, say researchers. buff.ly/4k5EYgF

#Fedora #Linux kernel flaw exposed sensitive data to attackers buff.ly/434IoKE #DataBreach #CyberSecurity

Top tip: If you're a government contractor hoping to buy an #iPhone hacking tool, maybe don't send a email soliciting quotes for pricing to a bunch of investigative cybersecurity journalists. buff.ly/3F0m76s #CyberSecurity #Graykey

Here's how a sophisticated group exploited Cisco kit and lived off the land for the Salt Typhoon hack, says @talossecurity buff.ly/41pPIiP #SaltTyphoon #CyberEspionage #telco #infosec

Internal tensions lead to the publication of chat logs from #ransomware group Black Basta. Key members and victims exposed. buff.ly/4iaiXeY #CyberCrime

Australia joins the US in banning #Kaspersky software, citing Russian espionage worries. buff.ly/4k9DQZn #Antivirus #AV #CyberSecurity

Company data is impossible to hack - "Get it??", says rude CEO in response to researcher who found its data exposed in a public database. buff.ly/41sTeIV #DataBreach #Infosec #Teammate

A 130,000-device Chinese #botnet is hammering #Microsoft 365 accounts right now. buff.ly/4h5yRXa #M365 #CyberCrime

Bad news for #Linux users today: New #malware offers full remote access to attackers. buff.ly/41ee4ur #CyberSecurity

MITRE has a new framework called OCCULT for mapping large language model-related security threats. buff.ly/4ihix6A #AI $LLM #GenAI #CyberSecurity #Offsec

A US law that allowed companies to share cybersecurity data with the government is expiring soon. Are lawmakers ready to renew it? buff.ly/4gXVjkW #CyberSecurity #privacy

Researchers used #Apple's network to precisely geolocate any #Bluetooth-enabled device from any vendor within seconds. It's a stalker's dream. buff.ly/3QzRWG3 #privacy #CyberStalking #surveillance #AirTag

Another corker from the good folks over at Black Hills Information Security: Wi-Fi Forge is a free tool they developed that lets you practice #WiFi hacking without expensive hardware. buff.ly/4h6DYpQ #EthicalHacking #PenTest

Say hello to Globstar, an open-source static analysis toolkit for writing and running code checkers. buff.ly/3QEvVFW #SAST #OSS #FOSS #SoftwareDevelopment #CyberSecurity

Cyber criminals are using 'pass-the-cookie' attacks to bypass #MFA. buff.ly/4hY1arH #InfoSec #CyberCrime