IT Security News

Here are the latest IT security news from a number of hand picked sources:

today  (Schneier on Security)
Friday Squid Blogging: Person in Squid Suit Takes Dog for a Walk

today  (Schneier on Security)
I Am Not Satoshi Nakamoto

today  (Computerworld Security)
Apple needs to act against fake app-privacy promises

today  (Latest topics for ZDNet in Microsoft)
Microsoft joins grid decarbonization effort from Linux Foundation nonprofit

today  (Naked Security)
S3 Ep51: OMIGOD a gaping hole, waybill scams, and Face ID hacked [Podcast]

today  (Schneier on Security)
The Proliferation of Zero-days

today  (WeLiveSecurity)
Week in security with Tony Anscombe

today  (Graham Cluley)
Lithuania warns firms not to use Xiaomi and Huawei smartphones after investigation finds security and censorship concerns

today  (Latest topics for ZDNet in Microsoft)
This ransomware-dropping malware has swapped phishing for a sneaky new attack route

today  (ZDNet | security RSS)
FBI arrests 75-year-old for allegedly placing pipe bombs outside phone, carrier stores

1 day ago  (Graham Cluley)
Smashing Security podcast #244: Facebook Ray-Bans, VPN spies, and AI camouflage

1 day ago  (Graham Cluley)
US Government tells firms not to give in to ransomware demands, as first crypto exchange sanctioned for laundering cyber ransoms

1 day ago  (Krebs on Security)
Indictment, Lawsuits Revive Trump-Alfa Bank Story

1 day ago  (Schneier on Security)
ROT8000

1 day ago  (WeLiveSecurity)
FamousSparrow: A suspicious hotel guest

2 days ago  (Graham Cluley)
Predict 21 – the intelligence summit from Recorded Future you cannot afford to miss, October 12-13 2021

2 days ago  (Graham Cluley)
Facebook’s Ray-Ban Stories glasses have got a problem

2 days ago  (Naked Security)
VMware patch bulletin warns: “This needs your immediate attention.”

2 days ago  (Latest topics for ZDNet in Microsoft)
Microsoft Surface Duo vs Duo 2: Significant updates address first generation shortfalls

2 days ago  (Latest topics for ZDNet in Microsoft)
Microsoft refreshes its Surface PC portfolio including Android-based Duo 2

2 days ago  (Schneier on Security)
FBI Had the REvil Decryption Key

2 days ago  (ZDNet | security RSS)
This cryptocurrency miner is exploiting the new Confluence remote code execution bug

2 days ago  (Google Online Security Blog)
Distroless Builds Are Now SLSA 2

2 days ago  (Computerworld Security)
MSRT vs. MSERT: When to use each Windows malware tool

3 days ago  (Latest topics for ZDNet in Linux)
Technology skills in demand, 2021: cloud, with a twist of open source

3 days ago  (WeLiveSecurity)
European police dismantle cybercrime ring with ties to Italian Mafia

3 days ago  (Qualys Security Blog)
Apache Struts 2 Double OGNL Evaluation Vulnerability (CVE-2020-17530)

3 days ago  (Vulnerabilities and Threat Research – Qualys Security Blog)
Apache Struts 2 Double OGNL Evaluation Vulnerability (CVE-2020-17530)

3 days ago  (Google Online Security Blog)
An update on Memory Safety in Chrome

3 days ago  (ZDNet | security RSS)
HackerOne expands Internet Bug Bounty project to tackle open source bugs

3 days ago  (Schneier on Security)
Alaska’s Department of Health and Social Services Hack

3 days ago  (ZDNet | security RSS)
Siemens Energy launches AI solution to fight industrial cybercrime

3 days ago  (Graham Cluley)
106 arrests as police dismantle Mafia-linked online crime gang

4 days ago  (Krebs on Security)
Does Your Organization Have a Security.txt File?

4 days ago  (Computerworld Security)
A penchant for patching: After 20 years, the system’s still a mess

4 days ago  (Qualys Security Blog)
Detect & Prioritize NSO Pegasus iPhone Spyware Vulnerabilities Using VMDR for Mobile Devices

4 days ago  (Vulnerabilities and Threat Research – Qualys Security Blog)
Detect & Prioritize NSO Pegasus iPhone Spyware Vulnerabilities Using VMDR for Mobile Devices

4 days ago  (Vulnerabilities and Threat Research – Qualys Security Blog)
Google Android September 2021 Security Patch Vulnerabilities: Discover and Take Remote Response Action Using VMDR for Mobile Devices

7 days ago  (Schneier on Security)
Friday Squid Blogging: Ram’s Horn Squid Shells

7 days ago  (Computerworld Security)
Legacy apps are at risk with the September Patch Tuesday update

7 days ago  (Graham Cluley)
Free decryptor for past REvil ransomware victims released

7 days ago  (Schneier on Security)
Zero-Click iMessage Exploit

7 days ago  (ZDNet | security RSS)
This banking Trojan abuses YouTube to manage remote settings

7 days ago  (WeLiveSecurity)
Numando: Count once, code twice

7 days ago  (Graham Cluley)
Fake Walmart press release causes cryptocurrency price surge

8 days ago  (Krebs on Security)
Trial Ends in Guilty Verdict for DDoS-for-Hire Boss

8 days ago  (Naked Security)
OMIGOD, an exploitable hole in Microsoft open source code!

8 days ago  (Computerworld Security)
It’s been a big week for patches

8 days ago  (Computerworld Security)
Windows 11: Just say no

9 days ago  (Graham Cluley)
Smashing Security podcast #243: Breaking news, Apple zero-clicks, and bad blood