The Last Watchdog

JUNE 10, 2024

This brought to mind 2010, the year I wrote news stories for USA TODAY about Mark Zuckerberg declaring privacy was “ no longer a social norm ” and Google CEO Eric Schmidt admitting that Google’s privacy policy was to “ get right up to the creepy line and not cross it.”

Data collection 261

Data collection Internet Internet Technology 261

Anton on Security

APRIL 7, 2022

Popular Episodes by Topic This is simply a post that categorizes our podcast episodes by topic and then by download/listen count. Data security “Data Security in the Cloud“ “Modern Data Security Approaches: Is Cloud More Secure?”

Cloud Migration 189

Cloud Migration Threat Detection CISO Engineering 189

Schneier on Security

FEBRUARY 19, 2021

was released in October 2010. Much more effort is needed to make home routers as secure as current desktop of server systems. One comment on the report: One-third ship with Linux kernel version 2.6.36 You can walk into a store today and buy a brand new router powered by software that’s almost 10 years out of date!

Firmware 292

Firmware Software Engineering Internet 292

Schneier on Security

APRIL 2, 2024

Through a 2010 FOIA request (yes, it took that long), we have copies of the NSA’s KRYPTOS Society Newsletter, “ Tales of the Krypt ,” from 1994 to 2003. There are many interesting things in the 800 pages of newsletter. There are many redactions.

Internet 315

Internet Internet 315

Krebs on Security

AUGUST 2, 2022

com , a malware-based proxy network that has been in existence since at least 2010. Cached versions of the site show that in 2010 the software which powers the network was produced with a copyright of “ Escort Software.” .” NEW SOCKS, SAME OLD SHOES. SocksEscort[.]com ” Super-socks[.]biz

Malware 298

Malware Cybercrime Internet Internet 298

Krebs on Security

NOVEMBER 15, 2022

Sources briefed on the investigation into Penchukov said that in 2010 — at a time when the Security Service of Ukraine (SBU) was preparing to serve search warrants on Tank and his crew — Tank received a tip that the SBU was coming to raid his home. “The Americans were unhappy, and a little surprised.

Banking 309

Banking Small Business Accountability Cybercrime 309

Krebs on Security

JUNE 25, 2021

“The vulnerability report CVE-2018-18472 affects My Book Live devices originally introduced to the market between 2010 and 2012,” reads a reply from Western Digital that Wizcase posted to its blog. That response also suggested this bug has been present in its devices for at least a decade.

Internet 339

Internet Internet Backups Small Business 339

CSO Magazine

MARCH 29, 2021

The lack of stringent protections in the original DNS specification and discovery of security weaknesses over time, such as the decade-old Kaminsky bug , gave birth to the Domain Name System Security Extensions (DNSSEC) in 2010. To read this article in full, please click here (Insider Story)

DNS 135

DNS Encryption Internet Internet 135

Krebs on Security

DECEMBER 8, 2021

“My exploit pack is hosted there with 0 problems,” DCReaver2 says of a shady online provider that another member asked about in May 2010. Arrested in 2010, Skorjanc was sentenced to nearly five years in prison for selling and supporting Mariposa, which was used to compromise millions of Microsoft Windows computers.

Cybercrime 314

Cybercrime Ransomware Accountability Advertising 314

Krebs on Security

JUNE 21, 2023

In 2010, someone with the username Pepyak on the Russian language affiliate forum GoFuckBiz[.]com In 2010, someone with the username Pepyak on the Russian language affiliate forum GoFuckBiz[.]com ” In January 2010, Pepyak asked the GoFuckBiz community where one might find a good USB-based modem in Phuket, Thailand.

Malware 251

Malware Antivirus Cybercrime Hacking 251

Security Boulevard

JULY 23, 2021

In 2010, John Kindervag introduced the concept of “Zero …. Five worthy reads is a regular column on five noteworthy items we’ve discovered while researching trending and timeless topics. This week, we explore why organizations should implement Zero Trust in 2021.

Cybersecurity 130

Cybersecurity 130

Krebs on Security

JULY 8, 2019

In 2010, the hottabych_k2 address was used to register the domain name dedserver[.]ru At least four posts made in 2010 to the hosting review service makeserver.ru When Oneiilk2 registered on Exploit in January 2015, he used the email address hottabych_k2@mail.ru. us to help users obfuscate their true online locations. .”

Ransomware 264

Ransomware Accountability Cybercrime Passwords 264

Schneier on Security

APRIL 21, 2023

I don’t understand pickleball at all, so that explanation doesn’t make a lot of sense to me. (I I watched a video explaining the shot; that helped somewhat.) But it looks like an excellent example.

Hacking 235

Hacking 235

Krebs on Security

JUNE 1, 2023

Fitis’s real-life identity was exposed in 2010 after two of the biggest sponsors of pharmaceutical spam went to war with each other, and large volumes of internal documents, emails and chat records seized from both spam empires were leaked to this author. My fingerprints change beyond recognition every few days. Image: Archive.org.

Malware 283

Malware Cybercrime Software Accountability 283

Heimadal Security

MARCH 3, 2021

The service provider notified the airline warning that data of the Enrich program was exposed to security breaches between March 2010 and June 2019. A security breach occurred via a third-party IT service provider. About the Enrich flyer program Enrich is the frequent flyer program of Malaysia Airlines.

Data breaches 121

Data breaches Passwords Cybersecurity 121

The Last Watchdog

JULY 6, 2023

Nuvoton was spun-off as a Winbond Electronics affiliate in July 2008 and went public in September 2010 on the Taiwan Stock Exchange (TWSE). About Nuvoton Technology: Nuvoton Technology Corporation (Nuvoton) was founded to bring innovative semiconductor solutions to the market.

Computers and Electronics 246

Computers and Electronics Marketing Technology IoT 246

Krebs on Security

SEPTEMBER 8, 2020

Microsoft fixed at least five other serious bugs in Sharepoint versions 2010 through 2019 that also could be used to compromise systems running this software. Security firm Tenable notes that this bug is reminiscent of CVE-2019-0604 , another Sharepoint problem that’s been exploited for cybercriminal gains since April 2019.

Software 286

Software Backups Authentication Internet 286

Security Affairs

SEPTEMBER 30, 2020

Rapid7 reported that 87% of almost 138,000 Exchange 2016 servers and 77% of around 25,000 Exchange 2019 servers are still vulnerable to CVE-2020-0688 attacks, and roughly 54,000 Exchange 2010 servers have not been updated in six years. After Microsoft addressed the flaw experts reportedly observed that APT actors exploiting the flaw.

Advertising 131

Advertising Authentication Hacking Accountability 131

Security Affairs

OCTOBER 9, 2020

. “My thought is that the existing Strategic Concept, which we agreed in 2010, has served NATO well. Having said that, I think we all have to realise that since we agreed the Strategic Concept back in 2010, the world has fundamentally changed.” And it has actually served us well for many years.

Artificial Intelligence 134

Artificial Intelligence Technology Advertising Marketing 134

The Hacker News

FEBRUARY 28, 2023

Xorist, detected since 2010, is distributed as a It's based on commodity ransomware dubbed Xorist and has been observed in attacks targeting entities in the U.S., the Philippines, the U.K., and Turkey.

Ransomware 106

Ransomware Cybersecurity 106

Anton on Security

DECEMBER 20, 2021

Random fun new posts: “SOC Technology Failures?—?Do Do They Matter?” Kill SOC Toil, Do SOC Eng” “Anton and The Great XDR Debate, Part 1” Fun posts by topic.

Threat Detection 44

Threat Detection Cloud Migration Encryption Engineering 44

Security Affairs

NOVEMBER 4, 2021

The oldest vulnerability included in the catalog is the CVE-2010-5326? RCE in SAP NetWeaver Application Server and dates back to 2010. The catalog includes vulnerabilities for products from Adobe, Apple, Atlassian, Cisco, Google, IBM, Microsoft, Nagios, Netgear, Oracle, Pulse Secure, and many other companies.

Risk 141

Risk Cyber Attacks Cybersecurity Hacking 141

Security Affairs

APRIL 11, 2021

.” Reports claim that the attack was launched by Israel-linked hackers, the same state is suspected to have had a main role in the Stuxnet attack that hit the same nuclear plant back in 2010.

Cyber Attacks 139

Cyber Attacks Energy and Utilities Media Hacking 139

Krebs on Security

FEBRUARY 11, 2020

Another flaw fixed this month in Microsoft Exchange 2010 through 2019 may merit special attention. The bug could allow attackers to exploit the Exchange Server and execute arbitrary code just by sending a specially crafted email.

Backups 58

Backups Malware Internet Internet 58

CSO Magazine

MARCH 1, 2023

Gen Z refers to those born between mid-to-late 1990s and 2010, making them between the ages of 11 and 28. In doing so, I had to educate myself on what they value and realized the many differences between Gen Z and previous generations. This means they grew up experiencing a much faster rate in which technology evolves.

Education 126

Education Internet Internet Technology 126

Penetration Testing

JANUARY 4, 2024

In January 2010, Inductive Automation introduced the Ignition platform, an integrated software solution for SCADA systems.

Penetration Testing 92

Penetration Testing Architecture Software 92

Security Affairs

JULY 26, 2020

The toolkit was first released in 2010 by SANS fellow researcher Lenny Zeltser , who is still maintaining the software. REMnux is a Linux toolkit for reverse-engineering and dissecting software, it includes a collection of free tools created by the community that allows researchers to investigate malware.

Malware 145

Malware Advertising Software Engineering 145

Security Affairs

JANUARY 4, 2021

He published thousands of classified diplomatic and military documents on WikiLeaks in 2010. In 2010, Assange gained unauthorized access to a government computer system of a NATO country and years later he contacted s LulzSec leader who was working for the FBI and provided him a list of targets.

Government 144

Government Risk Passwords Hacking 144

Anton on Security

SEPTEMBER 16, 2021

Now, posts by topic. Security operations / detection & response: “Security Correlation Then and Now: A Sad Truth About SIEM” “Can We Have “Detection as Code”?”

Threat Detection 42

Threat Detection Cloud Migration Encryption Engineering 42

Security Affairs

JUNE 25, 2024

He published thousands of classified diplomatic and military documents on WikiLeaks in 2010. In 2010, Assange gained unauthorized access to a government computer system of a NATO country and years later he contacted a LulzSec leader who was working for the FBI and provided him a list of targets.

Passwords 127

Passwords Hacking Government Information Security 127

Krebs on Security

AUGUST 26, 2020

For several years beginning around 2010, a lone teenager in Vietnam named Hieu Minh Ngo ran one of the Internet’s most profitable and popular services for selling “ fullz ,” stolen identity records that included a consumer’s name, date of birth, Social Security number and email and physical address.

Identity Theft 360

Identity Theft Computers and Electronics Hacking Accountability 360

Krebs on Security

JANUARY 24, 2023

RUSdot is the successor forum to Spamdot , a far more secretive and restricted community where most of the world’s top spammers, virus writers and cybercriminals collaborated for years before the forum imploded in 2010. A Google-translated version of the Rusdot spam forum.

Cybercrime 259

Cybercrime Advertising IoT Malware 259

Heimadal Security

JUNE 22, 2022

It was initially known as the Home Delivery Network, until it bought the B2B and B2C businesses of DHL Express UK and afterward, renamed itself as Yodel in May 2010. Yodel is a delivery service company from the United Kingdom. What Happened? A cyberattack has caused delays in package distribution and online order tracking for […].

B2C 97

B2C B2B Cyber Attacks Cybersecurity 97

Krebs on Security

JULY 20, 2021

In 2010, Microsoft — in tandem with a number of security researchers — launched a combined technical and legal sneak attack on the Waledac botnet, successfully dismantling it. A screenshot of the “SevAntivir” fake antivirus or “scareware” affiliate program run by Severa.

Antivirus 332

Antivirus Cybercrime Identity Theft Scams 332

Schneier on Security

AUGUST 28, 2019

And the NSA routinely assists in securing business and consumer systems, including helping Google defend itself from Chinese hackers in 2010. Yes, there are some military applications that are different. The US nuclear system Barr mentions is one such example -- and it uses ancient computers and 8-inch floppy drives.

Computers and Electronics 268

Computers and Electronics Encryption Internet Internet 268

The Hacker News

MAY 2, 2022

Unfortunately, witches don’t work in cybersecurity – where networks generally have so many vulnerabilities that they resemble sieves. For most of us, keeping the sieve of our networks afloat requires nightmarishly hard work and frequent compromises on which holes to plug first. The reason?

Cybersecurity 94

Cybersecurity 94

Security Affairs

APRIL 24, 2021

On June 16, 2010, he was named by Internet Corporation for Assigned Names and Numbers (ICANN) as one of the Trusted Community Representatives for the DNSSEC root. Dan Kaminsky was very active in the cyber security community, he was a regular speaker at major cybersecurity and hacking conferences, including Black Hat and DEFCON.

Cybersecurity 145

Cybersecurity InfoSec DNS Hacking 145