Troy Hunt

NOVEMBER 21, 2017

Obviously, the work I've been doing with Have I Been Pwned (HIBP) has given me a heap of insight into this specific area of infosec over the last 4 years and the folks from DC felt my views on things might be helpful. That was all great and I was happy to share my thoughts from the other side of the world.

Data breaches 232

Data breaches InfoSec Backups IoT 232

Security Boulevard

FEBRUARY 3, 2022

An infosec researcher was hacked by North Korea. law enforcement did nothing, so he took matters into his own hands. The post US Hacker ‘P4x’ Gets Back at Pyongyang (but We Smell a Rat) appeared first on Security Boulevard.

InfoSec 98

InfoSec Hacking Social Engineering IoT 98

Notice Bored

MAY 24, 2021

T he recently-published ISO/IEC TS 27570 " Privacy guidelines for smart cities" neatly illustrates the creativity required to tackle new information risks arising from innovation in the realm of IoT, AI and short range data communications between the proliferating portable, wearable and mobile IT devices now roaming our city streets.

InfoSec 98

InfoSec Risk IoT Information Security 98

SiteLock

AUGUST 27, 2021

One year ago in February, the major eBay hack was in progress, eventually resulting in over 233 million passwords being stolen. The Internet of Things (IoT) has become of the most popular technologies in recent years, connecting real-world devices with the internet – such as connected cars, wearables and even virtual reality headsets.

Passwords 95

Passwords Cybersecurity Internet Internet 95

Malwarebytes

MAY 3, 2021

We had Signal insisting it’s very private indeed , an explainer for ip addresses , vulnerabilities in IoT land , and a plan for success from the Ransomware Task Force. We also dug into a supply chain attack , discussed threats from a ransomware group , and did a deep dive on wallet recovery code scams. Other cybersecurity news.

Scams 121

Scams Banking CISO Ransomware 121

Security Boulevard

JANUARY 21, 2024

Then they switch to the best practices to prevent social media account takeovers, highlighting […] The post The World of Scambaiting, Preventing Social Media Account Takeovers, Network Wrenches Hacked appeared first on Shared Security Podcast.

Media 78

Media Accountability Hacking Scams 78

Threatpost

NOVEMBER 27, 2020

While 2021 will present evolving threats and new challenges, it will also offer new tools and technologies that will we hope shift the balance towards the defense.

Hacking 113

Hacking Cybersecurity Technology InfoSec 113

Security Through Education

JANUARY 18, 2023

Perhaps we thought, who would want to hack a completely unknow person like me? IBM describes the internet of things (IoT) as the “the concept of connecting any device … to the Internet and to other connected devices.” The expanse of the IoT has permeated every aspect of society. Update your software.

Cybersecurity 98

Cybersecurity Social Engineering Scams IoT 98

ForAllSecure

MARCH 8, 2023

Booth babes and rampant sexism were more of a problem in infosec in the past. I wrote two books, one on IoT Security and another with Kevin Mitnick, then jumped around a couple of different jobs. It’s about challenging our expectations about the people who hack for a living. That is, until Chenxi Wang spoke up.

InfoSec 40

InfoSec Engineering CSO Technology 40

Security Affairs

AUGUST 29, 2018

These evils include hacking, identity theft, online surveillance, and cyberstalking. We all know the dangers associated with hacking, identity theft, and internet surveillance, thanks to Facebook and other social networking platforms. Similarly, these hackers can hack your devices too.

Identity Theft 109

Identity Theft Internet Internet Surveillance 109

SecureWorld News

MARCH 8, 2023

Frost's presentation on "Threats to National Security in Cyberspace" had a packed crowd at attention as she talked about known hacking groups, their methods, motivations, and relationship to greater geopolitical developments—including what's happening in Russia, Ukraine, and China.

Cybersecurity 98

Cybersecurity Risk InfoSec Data privacy 98

Security Boulevard

JUNE 25, 2023

Paul also shares with us some of his greatest hacking stories and don’t miss our lively […] The post Security Podcasting, Hacking Stories, and The State of Firmware Security with Paul Asadoorian appeared first on Shared Security Podcast. Paul’s been podcasting for more then 17 years!

Firmware 52

Firmware Hacking Internet Internet 52

ForAllSecure

SEPTEMBER 10, 2021

PPP wanted to give their past high school selves the infosec education they didn’t have. Megan Kerns of Carnegie-Mellon University joins The Hacker Mind to talk about the early days and the continued evolution of this popular online infosec competition site. in InfoSec however, learning happens 365 days a year.

Hacking 52

Hacking Education InfoSec Engineering 52

SecureList

MAY 31, 2021

In particular, the interest of both infosec experts and cybercriminals was piqued by vulnerabilities in the popular Microsoft Exchange Server: CVE-2021-26855 — a service-side request forgery vulnerability that allows remote code execution (RCE). IoT attacks. IoT threat statistics. Trojan-Downloader.Shell.Agent.p.

Mobile 109

Mobile Adware Ransomware Malware 109

SecureList

APRIL 25, 2022

Although many initially attributed the incidents to North Korea’s increased military activity, it was an American infosec expert nicknamed P4x who claimed responsibility. Attacks on IoT honeypots. The largest share of bots trying to hack into our SSH honeypots in Q1 fell to China (20.41%).

DDOS 126

DDOS Cybercrime Internet Internet 126

Threatpost

AUGUST 10, 2018

Vulnerabilities in healthcare devices and hospital systems are leading to growing concerns in the infosec community about patient safety.

Healthcare 42

Healthcare InfoSec Data breaches IoT 42

SecureList

AUGUST 3, 2022

Interestingly enough, one of the hacked WordPress sites was a hacktivist website used to attack Russian media outlets in the previous quarter. The incident prompted the school district administration to contract a specialized infosec provider for DDoS protection. Attacks on IoT honeypots.

DDOS 142

DDOS Government Marketing IoT 142

SecureWorld News

JUNE 20, 2024

A new report out Tuesday by Hack The Box has found that enterprises are losing approximately $626 million in lost productivity due to security practitioners feeling the squeeze on their mental health. Hack The Box commissioned an independent market research company, Censuswide, to survey two samples.

CISO 123

CISO Cybersecurity Technology Digital transformation 123

ForAllSecure

JULY 13, 2021

In 2019, the International Information System Security Certification Consortium (ISC2) released a workforce study found that there’s a shortage of infosec experts, a shortage that’s estimated to be nearly 4.8 Sixty percent of hacked small and medium-size businesses go out of business after 6 months. million worldwide.

Software 52

Software Marketing Small Business InfoSec 52

Threatpost

OCTOBER 28, 2021

Aamir Lakhani, security researcher at Fortinet, says no sector is off limits these days: It's time for everyone to strengthen the kill chain.

Cyber threats 101

Cyber threats IoT InfoSec Malware 101

The Falcon's View

FEBRUARY 27, 2017

Now that I've had a week to recover from the annual infosec circus event to end all circus events, I figured it's a good time to attempt being reflective and proffer my thoughts on the event, themes, what I saw, etc, etc, etc. Hacks are succeeding every day. For starters, holy moly, 43,000+ people?!?!?!?!?! good grief.

InfoSec 40

InfoSec Education Accountability Big data 40

ForAllSecure

SEPTEMBER 21, 2021

They discuss how software and IoT companies can avoid becoming the next Black Mirror episode and share resources that can help survivors (and those who want to help them) deal with the technology issues that can be associated with technologically facilitated abuse. But what about IoT devices? So I hope you'll stick around.

Technology 52

Technology Software Surveillance Media 52

eSecurity Planet

MAY 5, 2021

DXC Technology has over 40 years of infosec experience, most of which as HPE’s Enterprise Services. Services include tools for managing incident response, breaches, threats, and vulnerabilities, threat intelligence feeds, OT and IoT security, and cyber maturity reviews. Also Read: Apple White Hat Hack Shows Value of Pen Testers.

Penetration Testing 68

Penetration Testing Risk Technology Marketing 68

Threatpost

MAY 29, 2019

What does 5G mean from a security vendor perspective? A Palo Alto Networks expert sounds off at GSMA's Mobile360 this week.

IoT 75

IoT InfoSec Mobile Hacking 75

Threatpost

MAY 8, 2019

Having appropriate security configurations requires your applications, servers and databases to be hardened in accordance with best practices.

Passwords 70

Passwords InfoSec IoT Malware 70

Security Boulevard

OCTOBER 6, 2024

In this episode, the hosts discuss a significant vulnerability found in Kia’s web portal that allows remote control of various car features via their app, potentially enabling unauthorized unlocking and tracking. The conversation highlights the broader issue of web vulnerabilities in the automotive industry.

Passwords 64

Passwords Authentication Data privacy Cyber threats 64

Threatpost

NOVEMBER 19, 2018

If a network-connected smoke detector starts communicating with the mail server, you know you have a problem.

DDOS 70

DDOS Internet Internet IoT 70

Threatpost

NOVEMBER 15, 2018

Why manufacturing and logistics are especially challenged.

Manufacturing 64

Manufacturing Risk Internet Internet 64

ForAllSecure

MARCH 24, 2021

It’s about challenging our expectations about people who hack for a living. Particularly in IoT, where we find ourselves using MQTT and other ancient protocols, not for what they were originally designed for, but for our immediate need for lightweight communications among devices.

Software 52

Software Passwords Internet Internet 52

ForAllSecure

MARCH 24, 2021

It’s about challenging our expectations about people who hack for a living. Particularly in IoT, where we find ourselves using MMQT and other ancient protocols, not for what they were originally designed for, but for our immediate need for lightweight communications among devices.

Software 52

Software Passwords Internet Internet 52

eSecurity Planet

DECEMBER 3, 2021

Shah provides her expertise in hacking, software development, and kernel development and advocates for open source initiatives. Lots of accounts including Bezos, Elon Musk, Joe Biden, Barack Obama, Bill Gates, Mr Beast, and a ton more getting hacked for a bitcoin scheme. — Dave Kennedy (@HackingDave) July 15, 2020.

Accountability 139

Accountability Cybersecurity Penetration Testing InfoSec 139

ForAllSecure

MAY 26, 2022

Is hacking a crime? Bryan McAninch (Aph3x) talks about his organization, Hacking Is Not A Crime , and the ethical line it draws on various hacking activities. I used to hack the phone company quite a bit. The 33 year old from suffer faced charges from US prosecutors as hacking into computers at various American agencies.

Hacking 52

Hacking Technology InfoSec Media 52

ForAllSecure

APRIL 26, 2022

Like any other criminal hack. It’s about challenging our expectations about the people who hack for a living. A village is like a mini conference within a larger conference and it is not just at DEF CON, ICS village is also at RSAC, Hack the Capital, AvergerCon, BSides, and many more. The hack was on that pipeline.

Hacking 52

Hacking Energy and Utilities Manufacturing Firmware 52

Threatpost

NOVEMBER 8, 2019

Unlike Elliot, real-world adversaries don’t have lofty ideals nor do they suffer crises of conscience.

InfoSec 44

InfoSec IoT Hacking 44

ForAllSecure

AUGUST 2, 2022

In this episode I’m talking to the organizers of the Lockpicking Village,the ICS village, the Car Hacking Village, and the Aerospace Village. And, there’s thirty more villages including Girls Hack Village, the Voting Machine Hacking village, the IoT Village, and the Bio Hacking village.

Hacking 40

Hacking Computers and Electronics InfoSec Software 40

SecureList

MAY 26, 2021

One more constellation of vulnerabilities that appeared in the infosec sky was a threesome of critical bugs in the popular SolarWinds Orion Platform – CVE-2021-25274 , CVE-2021-25275 , CVE-2021-25276. IoT attacks. IoT threat statistics. These vulnerabilities were found in-the-wild and had been used by APT and ransomware groups.

Phishing 144

Phishing Malware Ransomware Adware 144

SecureList

AUGUST 15, 2022

The Conti infrastructure was shut down in late June, but some in the infosec community believe that Conti members are either just rebranding or have split up and joined other ransomware teams, including Hive, AvosLocker and BlackCat. IoT attacks. IoT threat statistics. TOP 10 threats delivered to IoT devices via Telnet.

Mobile 90

Mobile Adware Malware Ransomware 90