CISA releases repository security framework The recent wave of software supply chain attacks clearly shows that hardening the open-source ecosystem remains a tough nut to crack. That’s why it’s big news that CISA partnered with the Open Source Security Foundation Securing Software Repositories Working Group to release a framework. The Principles for Package Repository Security...Read More

Never too late to inspire someone right? Let me give you a run down of what I got from this session. Background overview #Techisthenewblack podcast hosted by Cyrus hairbin and his guest was Tolulope Michael Who is Tolu and why am I talking about him today, well it’s just to inspire someone out there Brief...Read More

Hackers-for-hire platform Bugcrowd locked up $102 million in fresh funding led by General Catalyst. The San Francisco-based platform allows companies of all sorts to hire freelance hackers and coders for “bug bounty” programs, helping those companies find problems in software code. In the past 12 months, Bugcrowd has nearly reached the 1,000-client milestone, added more...Read More

Cyber crime cost UK businesses over £30.5 billion in 2023, according to new research, with more than a quarter of all firms across the country impacted by attacks.  Analysis from internet service provider Beaming found small businesses were the hardest hit, with a 42% increase in the number of breaches since 2019, and a four-fold...Read More

Some smart folks have found a way to automatically unscramble documents encrypted by the Rhysida ransomware, and used that know-how to produce and release a handy recovery tool for victims. Rhysida is a newish ransomware gang that has been around since May last year. The extortion crew targets organizations in education, healthcare, manufacturing, information technology,...Read More

Courses to be made available through the scholarship program to increase the number of certified critical infrastructure protection (CIP) professionals. OPSWAT, a global leader in perimeter defense cybersecurity solutions for critical environments, announced that it is launching a $10 million scholarship program to offer essential CIP training courses. This initiative is designed to address the...Read More

An ongoing campaign of cloud account takeover has affected hundreds of user accounts, including those of senior executives, and impacted dozens of Microsoft Azure environments. Threat actors attack users with customized phishing lures inside shared documents as part of this ongoing effort. Some documents that have been weaponized have embedded links to “View document,” which,...Read More

Rebecca D’Antonio wasn’t lonely when she joined a friend in signing up on a dating app. “I was riding high on life,” she says now. With a supportive circle of friends, an unsuccessful marriage behind her and her long-held goal of owning a home within reach, she wanted only to share the good times she...Read More

Rebecca D’Antonio wasn’t lonely when she joined a friend in signing up on a dating app. “I was riding high on life,” she says now. With a supportive circle of friends, an unsuccessful marriage behind her and her long-held goal of owning a home within reach, she wanted only to share the good times she...Read More

Cybercrime: The Looming Shadow in Our Digital Age In today’s interconnected world, cybercrime has become a pressing concern. With projected costs reaching a staggering $10.5 trillion by 2025, organizations globally are scrambling to mitigate the risks. The Zero Trust Model: A Beacon of Hope One promising approach is the Zero Trust Model, which hinges on...Read More