The Top 15 Security Posts – Vetted & Curated *Threats & Defense* 1. Feds list the top 30 most exploited vulnerabilities. Many are years old (Ars Technica, Jul 29 2021) Hackers continue to exploit publicly known—and often dated—software vulnerabilities. 2. Navigating the 2021 threat landscape: Security operations, cybersecurity maturity (Help
A Review of the Best News of the Week on Cybersecurity Management & Strategy CISA Launches JCDC, the Joint Cyber Defense Collaborative (Dark Reading:, Aug 05 2021) “We can’t do this alone,” the new CISA director told attendees in a keynote at Black Hat USA today. #BHUSA: Researchers Criticize Apple
A Review of the Best News of the Week on Identity Management & Web Fraud Zoom Lied about End-to-End Encryption (Schneier on Security, Aug 05 2021) “The facts aren’t news, but Zoom will pay $85M — to the class-action attorneys, and to users — for lying to users about end-to-end
A Review of the Best News of the Week on Cloud Security, DevOps, AppSec New CISA & NSA Guidance Details Steps to Harden Kubernetes (SecurityWeek, Aug 04 2021) New guidance from the United States Cybersecurity and Infrastructure Security Agency (CISA) and the National Security Agency (NSA) provides information on the
A Review of the Best News of the Week on AI, IoT, & Mobile Security Apple releases patch for zero‑day flaw in iOS, iPadOS and macOS (WeLiveSecurity, Jul 28 2021) The vulnerability is under active exploitation by unknown attackers and affects a wide range of Apple’s products. Android Banking Trojan
A Review of the Best News of the Week on Cyber Threats & Defense Feds list the top 30 most exploited vulnerabilities. Many are years old (Ars Technica, Jul 29 2021) Hackers continue to exploit publicly known—and often dated—software vulnerabilities. Navigating the 2021 threat landscape: Security operations, cybersecurity maturity (Help
The Top 15 Security Posts – Vetted & Curated *Threats & Defense* 1. Disrupting Ransomware by Disrupting Bitcoin (Schneier on Security, Jul 26 2021) In this light, banning cryptocurrencies like bitcoin is an obvious solution. But while the solution is conceptually simple, it’s also impossible because — despite its overwhelming
A Review of the Best News of the Week on Cybersecurity Management & Strategy The Life Cycle of a Breached Database (Krebs on Security, Jul 29 2021) Every time there is another data breach, we are asked to change our password at the breached entity. But the reality is that
A Review of the Best News of the Week on Identity Management & Web Fraud De-anonymization Story (Schneier on Security, Jul 28 2021) This is important: Monsignor Jeffrey Burrill was general secretary of the US Conference of Catholic Bishops (USCCB), effectively the highest-ranking priest in the US who is not