GitGuardian Researchers Find Thousands of Leaked Secrets in PyPI (Python Package Index) Packages
By Dwayne McDaniel, GitGuardian Developer and Security Advocate, GitGuardian The modern world of DevOps means relying on our code connecting…
April 2024
Brokewell Android malware supports an extensive set of Device Takeover capabilities
ThreatFabric researchers identified a new Android malware called Brokewell, which implements a wide range of device takeover capabilities. ThreatFabric researchers…
Friday Squid Blogging: Searching for the Colossal Squid
A cruise ship is searching for the colossal squid. As usual, you can also use this squid post to talk…
Showcasing Artwork by Max for Autism Awareness Month
New pop-up art display honors Autism Awareness Month at Sophos UK.
FBI Director Wray Issues Dire Warning on China’s Cybersecurity Threat
Chinese actors are ready and poised to do "devastating" damage to key US infrastructure services if needed, he said.
UNDP, City of Copenhagen Targeted in Data-Extortion Cyberattack
A ransomware gang claimed responsibility for the attack, though it is unknown if a ransom was demanded or paid.
Multiple LastPass Users Lose Master Passwords to Ultra-Convincing Scam
CryptoChameleon attackers trade quantity for quality, dedicating time and resources to trick even the most diligent user into handing over…
Rethinking How You Work With Detection and Response Metrics
Airbnb's Allyn Stott introduces maturity model inspired by the Hunting Maturity Model (HMM) to complement MITRE ATT&CK to improve security…
AI Lowers Barrier for Cyber-Adversary Manipulation in 2024 Election
Securing the presidential election requires vigilance and hardened cybersecurity defenses.
‘MagicDot’ Windows Weakness Allows Unprivileged Rootkit Activity
Malformed DOS paths in file-naming nomenclature in Windows could be used to conceal malicious content, files, and processes.