Articles by category: Risky Business News

Regular cybersecurity news updates from the Risky Business team...

Risky Business Risky Business Extra AusCERT Serious Business Risky Business News

2024

Risky Biz News: Authorities take down LabHost PhaaS » 19 Apr 2024
Srsly Risky Biz: Why the compromise of open source projects is inevitable » 18 Apr 2024
Risky Biz News: PuTTY crypto bug exposes private keys » 17 Apr 2024
Between Two Nerds: 0days in 2023 » 16 Apr 2024
Risky Biz News: Palo Alto Networks scrambles to push zero-day RCE patch » 15 Apr 2024
Sponsored: When standards drive innovation » 15 Apr 2024
Risky Biz News: CISA sounds alarm on Sisense breach » 12 Apr 2024
Srsly Risky Biz: States behaving badly » 11 Apr 2024
Risky Biz News: Ukraine suspends SBU cyber chief » 10 Apr 2024
Between Two Nerds: The human side of the XZ supply chain attack » 09 Apr 2024
Sponsored: GreyNoise on last year's vulnerability exploitation trends » 08 Apr 2024
Risky Biz News: Backdoor found in 92k D-Link NAS devices » 08 Apr 2024
Risky Biz News: Ukraine wants Sandworm hackers tried at The Hague » 05 Apr 2024
Srsly Risky Biz: The heavy weight of CIRCIA regulation » 04 Apr 2024
Risky Biz News: CSRB drops scathing Microsoft report » 03 Apr 2024
Between Two Nerds: The asymmetry of 'information warfare' » 02 Apr 2024
Sponsored: Resourcely on how it manages its secure templates » 01 Apr 2024
Risky Biz News: Epic supply chain attack on Linux SSH » 01 Apr 2024
Risky Biz News: Spyware vendors behind 24 zero-days last year » 29 Mar 2024
Srsly Risky Biz: China hacking for more than just IP » 28 Mar 2024
Risky Biz News: China called out over hacks, again » 27 Mar 2024
Sponsored: Sublime Security on attack surface reduction for email » 25 Mar 2024
Risky Biz News: EU bans anonymous crypto payments » 25 Mar 2024
Risky Biz News: US sanctions Russian disinfo peddlers in LATAM » 22 Mar 2024
Srsly Risky Biz: Microsoft deserves the stick » 21 Mar 2024
Risky Biz News: New DoS loop attack impacts 300,000 systems » 20 Mar 2024
Between Two Nerds: Russia's Taurus missile leak » 19 Mar 2024
Sponsored: Kroll on the DPRK's foray into enterprise gear » 18 Mar 2024
Risky Biz News: Edge adds new sandbox escape protection » 18 Mar 2024
Risky Biz News: NIST stopped curating the CVE database a month ago » 15 Mar 2024
Srsly Risky Biz: Does 'delete America' mean deleting China too? » 14 Mar 2024
Risky Biz News: Tor launches new WebTunnel anti-censorship protocol » 13 Mar 2024
Between Two Nerds: How to disrupt ransomware groups » 12 Mar 2024
Sponsored: The Passkey juggernaut » 11 Mar 2024
Risky Biz News: Russian hackers stole Microsoft's source code » 11 Mar 2024
Risky Biz News: Crypto-fraud is now bigger than BEC » 08 Mar 2024
Srsly Risky Biz: German use of WebEx is fine, actually » 07 Mar 2024
Risky Biz News: AlphV admins exit-scam with Change Healthcare’s ransom » 06 Mar 2024
Between Two Nerds: Ukraine goes on the offensive » 05 Mar 2024
Sponsored: The state of cloud security » 04 Mar 2024
Risky Biz News: Intellexa pulls the plug on new Predator spyware infrastructure » 04 Mar 2024
Srsly Rizky Biz: The memory safety long game » 01 Mar 2024
Risky Biz News: US restricts sale of personal data to hostile nations » 01 Mar 2024
Risky Biz News: US sanctions Sandvine over Egypt sales » 28 Feb 2024
Between Two Nerds: In search of Russian cyber doctrine » 27 Feb 2024
Sponsored: Tines' Eoin Hinchy on how AI is a tool more useful to defenders than attackers » 26 Feb 2024
Risky Biz News: Backdoor code found in Tornado Cash » 26 Feb 2024
Risky Biz News: Google addresses Chrome JIT security » 23 Feb 2024
Srsly Risky Biz: China's free market espionage machine » 22 Feb 2024
Risky Biz News: Law enforcement thoroughly dismantle LockBit » 21 Feb 2024
Between Two Nerds: Russian cyber doctrine » 20 Feb 2024
Sponsored: Breaking apart OT protocols » 19 Feb 2024
Risky Biz News: NSO Group capability revealed in court documents » 19 Feb 2024
Risky Biz News: US takes down GRU/APT28 botnet » 16 Feb 2024
Srsly Risky Biz: The spyware ecosystem » 15 Feb 2024
Risky Biz News: Rhysida ransomware secretly decrypted nine months ago » 14 Feb 2024
Between Two Nerds: The cyber magic bullet » 13 Feb 2024
Sponsored: North Korea's DMARC spoofing tricks » 12 Feb 2024
Risky Biz News: Authorities take down Warzone RAT gang » 12 Feb 2024
Risky Biz News: Ransomware passed $1 billion mark in 2023 » 09 Feb 2024
Srsly Risky Biz: Beating back Volt Typhoon » 08 Feb 2024
Risky Biz News: US imposes visa ban on individuals linked to commercial spyware » 07 Feb 2024
Between Two Nerds: What to expect when you are expecting to cyber » 06 Feb 2024
Risky Biz News: Two Iranian cyber groups doxed in a week » 05 Feb 2024
Sponsored: Haroon Meer of Thinkst Canary on how attackers own networks » 04 Feb 2024
Risky Biz News: Ivanti finally releases zero-day patches » 02 Feb 2024
Srsly Risky Biz: US data dumpster fire singes NSA » 01 Feb 2024
Risky Biz News: Brazilian police arrest Grandoreiro malware gang » 31 Jan 2024
Between Two Nerds: Rethinking mobile phones on the battlefield » 30 Jan 2024
REPOSTED: Sponsored: Talking with Island on how enterprise browsers could replace some technology stacks » 29 Jan 2024
Risky Biz News: DOJ and FTC tell companies to stop deleting chats » 29 Jan 2024
Srsly Risky Biz: How the SEC's new cyber disclosure rules are shaking out » 26 Jan 2024
Risky Biz News: SVR hackers also breached HPE » 25 Jan 2024
Between Two Nerds: Why data brokers aren't causing widespread harms » 25 Jan 2024
Risky Biz News: AU, UK, US sanction Russian behind Medibank ransomware attack » 24 Jan 2024
Sponsored: Why finding and responding threats isn't enough and we need to contain them as well » 22 Jan 2024
Risky Biz News: SVR hackers breach Microsoft » 22 Jan 2024
Risky Biz News: Congress considers making CSRB permanent » 19 Jan 2024
Srsly Risky Biz: The PRC doesn't care about stealth, just access » 18 Jan 2024
Risky Biz News: Ivanti Connect Secure zero-days suffer mass exploitation » 17 Jan 2024
Between Two Nerds: Stuxnet, the inevitable game changer » 16 Jan 2024
Risky Biz News: Chinese APT hacks a third of Cisco RV320/325 routers » 15 Jan 2024
Sponsored: How the rise of cloud has changed the SIEM game » 14 Jan 2024
Risky Biz News: Chinese APT exploits two Pulse Secure zero-days » 12 Jan 2024
Srsly Risky Biz: Russia's cyber war fantasy » 11 Jan 2024
Risky Biz News: Ransomware wrecks Paraguay's largest telco » 10 Jan 2024
Between Three Nerds: Martijn Grooten on how Infosec has changed » 09 Jan 2024
Sponsored: When you have to run that Chinese government tax software » 08 Jan 2024
Risky Biz News: Merck settles NotPetya lawsuit » 08 Jan 2024

2023

Risky Biz News: UK summons Russian ambassador over hacking campaigns » 08 Dec 2023
Srsly Risky Biz: Why election interference is inevitable » 07 Dec 2023
Risky Biz News: US government agencies officially suck at logging » 05 Dec 2023
Between Two Nerds: Revisiting Ukraine's IT Army » 05 Dec 2023
Risky Biz News: US Government sounds alarm on water plant hacks » 04 Dec 2023
Risky Biz News: Black Basta group made $107 million from ransom payments » 01 Dec 2023
Srsly Risky Biz: Living off the land is the new normal » 30 Nov 2023
Risky Biz News: Ransomware cripples hospitals in six US states » 29 Nov 2023
Between Two Nerds: The evolution of Russian electricity attacks » 28 Nov 2023
Risky Biz News: Chipmaker NXT hacked by Chinese APT group » 27 Nov 2023
Sponsored: Corelight's Brian Dye on how network data is the connective tissue of incident response » 26 Nov 2023
Srsly Risky Biz: Death by a thousand cuts » 23 Nov 2023
Risky Biz News: Fastly to block domain fronting in 2024 » 23 Nov 2023
Risky Biz News: Tor Project removes 1k relays linked to cryptocurrency scheme » 22 Nov 2023
Between Two Nerds: How marketing has changed the cyber security landscape » 21 Nov 2023
Sponsored: Everything you wanted to know about Passkeys but were too afraid to ask » 20 Nov 2023
Risky Biz News: DIALStranger vulnerabilities disclosed after four years » 20 Nov 2023
Risky Biz News: FCC adopts SIM-swapping and port-out protections » 17 Nov 2023
Srsly Risky Biz: LockBit's disastrous success » 16 Nov 2023
Risky Biz News: Russia hacked 22 Danish critical infrastructure companies » 15 Nov 2023
Between Two Nerds: The Rules of War in cyberspace » 14 Nov 2023
Sponsored: Ryan Mahoney on how Gigamon lets you have your cake and eat it too » 13 Nov 2023
Risky Biz News: Malay officials take down BulletProftLink » 13 Nov 2023
Risky Biz News: Clop is coming for your SysAid servers » 10 Nov 2023
Srsly Risky Biz: Microsoft's Future Security Initiative disappoints » 09 Nov 2023
Risky Biz News: Microsoft makes MFA mandatory for cloud admin portals » 08 Nov 2023
Between Two Nerds: The Morris Worm » 07 Nov 2023
Sponsored: runZero's Huxley Barbee on finding the unknown unknowns » 06 Nov 2023
Risky Biz News: US sanctions Russian woman for laundering Ryuk gang money » 06 Nov 2023
Risky Biz News: Microsoft goes through a second Trustworthy Computing moment » 03 Nov 2023
Srsly Risky Biz: When good cyber security leads to violence » 02 Nov 2023
Risky Biz News: SEC charges SolarWinds and its CISO » 01 Nov 2023
Between Two Nerds: What is really at stake with cyber security » 31 Oct 2023
Risky Biz News: Ransomware gangs pounce on CitrixBleed vulnerability » 30 Oct 2023
Sponsored: Talking with Nucleus Security about vulnerability threat intelligence » 29 Oct 2023
Risky Biz News: First Kazakhstan-based APT discovered, tries to disguise itself as Azerbaijan » 27 Oct 2023
Srsly Risky Biz: Ransomware's soft underbelly » 26 Oct 2023
Risky Biz News: 1Password joins the list of Okta victims » 25 Oct 2023
The Between Two Nerds Halloween Special » 24 Oct 2023
Sponsored: It's better for everyone when DevOps have tools that are secure-by-default » 23 Oct 2023
Risky Biz News: Cisco IOS XE hackers hide their tracks as patches come out » 23 Oct 2023
Risky Biz News: Two ransomware gang websites go puff! » 20 Oct 2023
Srsly Risky Biz: CISA to vendors — fix your products » 19 Oct 2023
Risky Biz News: 30k+ Cisco devices compromised with IOS XE zero-day » 18 Oct 2023
Risky Biz News: Israel warns citizens of security camera hack risk » 16 Oct 2023
Between Two Nerds: Effects operations during war and peace » 16 Oct 2023
Sponsored: Airlock Digital's co-founders on securing PowerShell » 15 Oct 2023
Risky Biz News: Microsoft takes NTLM behind the shed » 13 Oct 2023
Srsly Risky Biz: The EU needs to grow a political spine on spyware » 12 Oct 2023
Risky Biz News: Microsoft kills VBScript » 11 Oct 2023
Between Two Nerds: BEC and ransomware, a match made in hell » 10 Oct 2023
Risky Biz News: Human-operated ransomware attacks double in a year » 09 Oct 2023
Sponsored: PAM vs teenagers... FIGHT! » 08 Oct 2023
Risky Biz News: Ransomware dwell times plummet » 06 Oct 2023
Srsly Risky Biz: NSA wants to protect America's AI edge » 05 Oct 2023
Risky Biz News: Ransomware gangs hit TeamCity and WS_FTP servers » 04 Oct 2023
Between Two Nerds: Have offensive cyber operations against ransomware groups failed? » 03 Oct 2023
Risky Biz News: Critical Exim bugs remains unpatched » 02 Oct 2023
Risky Biz Sponsor Interview: The e-crime ecosystem is changing » 01 Oct 2023
Risky Biz News: More in-the-wild 0day for Firefox, Chrome » 29 Sep 2023
Srsly Risky Biz: The cyber-yoofs must be stopped! » 28 Sep 2023
Risky Biz News: CISA publishes HBOM framework » 27 Sep 2023
Risky Biz News: China admits NSA hacked Huawei » 25 Sep 2023
Between Two Nerds: Why the UK and US Cyber Strategies are Mirror Images » 25 Sep 2023
Sponsored: Stairwell's Silas Cutler on the Akira leak and attacker infrastructure » 24 Sep 2023
Risky Biz News: North Korea steals $54 million from CoinEx » 15 Sep 2023
Srsly Risky Biz: Microsoft's security culture sucks » 14 Sep 2023
Risky Biz News: Won't someone think of the... casinos?! » 13 Sep 2023
Between Two Nerds: How AI can turbocharge cyber scams » 12 Sep 2023
Sponsored: Red Canary's Gerry Johansen on IR readiness » 11 Sep 2023
Risky Biz News: Ransomware gangs using Cisco 0day » 11 Sep 2023
Risky Biz News: Microsoft explains how it lost its signing key » 08 Sep 2023
Srsly Risky Biz: Why "pig butchering" is even worse than you think » 07 Sep 2023
Risky Biz News: China cracks down on Southeast Asian scam call centers » 06 Sep 2023
Between Two Nerds: When states are at the mercy of tech company policy » 05 Sep 2023
Risky Biz Sponsor Interview: Why Island raised over $250m to build an enterprise browser » 04 Sep 2023
Risky Biz News: Okta Super Administrator accounts targeted » 04 Sep 2023
Risky Biz News: Chinese APT sneaks trojaned Signal app into Play Store » 01 Sep 2023
Srsly Risky Biz: The UK snoopers' charter won't stop security patches » 31 Aug 2023
Risky Biz News: FBI nukes Qakbot botnet » 30 Aug 2023
Between Two Nerds: Know thyself » 29 Aug 2023
Risky Biz News: Kroll SIM-swapped in attack targeting crypto platforms » 28 Aug 2023
Srsly Risky Biz: Why did Russia deploy hackers to war zones? » 25 Aug 2023
Risky Biz News: WinRAR zero-day used to hack stock and crypto traders » 25 Aug 2023
Risky Biz News: South Korea investigates Chinese "spy chips" » 23 Aug 2023
Between Two Nerds: Hacking CCTV cameras for fun and profit » 22 Aug 2023
Risky Biz Sponsor Interview: Using AI to do security research » 21 Aug 2023
Risky Biz News: Foreign intelligence services are targeting the US space sector » 21 Aug 2023
Risky Biz News: PowerShell's official package repo is a supply chain mess » 18 Aug 2023
Risky Biz News: Lockbit is posting fictitious leaks, is close to implosion » 16 Aug 2023
Between Two Nerds: The juice jacking mass delusion » 15 Aug 2023
Risky Biz Sponsor Interview with Jacob Torrey of Thinkst Labs » 14 Aug 2023
Risky Biz News: CSRB to investigate Microsoft hack » 14 Aug 2023
Risky Biz News: Russia blocks OpenVPN and WireGuard VPN protocols » 11 Aug 2023
Srsly Risky Biz: Why Russia's Plan to Hide Spy Data Will Fail » 10 Aug 2023
Risky Biz News: Sandworm hackers target Ukraine's military systems » 09 Aug 2023
Between Two Nerds: China's Changing Cyber Espionage Playbook » 08 Aug 2023
Sponsored: Tines CEO Eoin Hinchy on burnout in SOC teams » 07 Aug 2023
Risky Biz News: Ransomware attack cripples hospitals across five US states » 07 Aug 2023
Risky Biz News: Microsoft botches Azure bug fix » 04 Aug 2023
Srsly Risky Biz: On Microsoft, Wyden's Bark May Have Some Bite » 03 Aug 2023
Risky Biz News: "American" cloud provider is allegedly an Iranian bulletproof host » 02 Aug 2023
Between Two Nerds: The Rights and Wrongs of IP Theft » 01 Aug 2023
Sponsored: Andrew Morris on the future of GreyNoise's honeypot network » 31 Jul 2023
Risky Biz News: Calls to investigate Microsoft over SolarWinds, Storm-0558 » 31 Jul 2023
Risky Biz News: SEC adopts new cybersecurity rules » 28 Jul 2023
Srsly Risky Biz: In Beijing, the Fourth Amendment is Still For Sale » 27 Jul 2023
Risky Biz News: Norwegian government hacked with MobileIron zero-day » 26 Jul 2023
Between Two Nerds: When iPhones aren't good enough » 25 Jul 2023
Sponsored: Everything you want to know about BYO vulnerable driver attacks but are afraid to ask » 24 Jul 2023
Risky Biz News: Ransomware victims stop paying up » 23 Jul 2023
Risky Biz News: Microsoft capitulates on cloud security logs » 21 Jul 2023
Srsly Risky Biz: Time for Cloud Transparency » 20 Jul 2023
Risky Biz News: A Citrix 0day RCE is being actively exploited » 19 Jul 2023
Between Two Nerds: Shaping ransomware group behaviour » 18 Jul 2023
Risky Biz News: JumpCloud compromised by APT group » 17 Jul 2023
Risky Biz News: Microsoft likely compromised in US Government hack » 14 Jul 2023
Srsly Risky Biz: WeChat's Privacy Policy Is Useless » 13 Jul 2023
Risky Biz News: Microsoft nukes 100 malicious drivers » 12 Jul 2023
Risky Biz Sponsor Interview with Scott Hanson from Kroll on Detection-as-Code » 10 Jul 2023
Risky Biz News: Mastodon plugs a horror-show bug » 10 Jul 2023
Risky Biz News: Ransomware cripples Japan's largest cargo port » 07 Jul 2023
Srsly Risky Biz: The Russia vs US Extradition Tug of War » 06 Jul 2023
Risky Biz News: $922 million worth of crypto stolen in H1 2023 » 04 Jul 2023
Between Two Nerds: Should journalists be protected against spyware? » 04 Jul 2023
Sponsor Interview: RunZero adds passive scanning for OT networks » 03 Jul 2023
Risky Biz News: Prigozhin's troll farms in limbo after Wagner mutiny » 03 Jul 2023
Risky Biz News: Philippine authorities free 2,700 "cybercrime slaves" » 30 Jun 2023
Srsly Risky Biz: The SEC Gets Personal » 29 Jun 2023
Risky Biz News: LetMeSpy gets hacked » 28 Jun 2023
Risky Biz News: SEC moves on SolarWinds executives » 26 Jun 2023
Risky Biz News: Apple patches "Triangulation" zero-days » 23 Jun 2023
Srsly Risky Biz: Why China's Barracuda Hacks Are Just Plain Rude » 22 Jun 2023
Risky Biz News: Albania raids Iranian MEK camp for running a "hacker center" » 21 Jun 2023
Between Two Nerds: Go Big or Go Home » 20 Jun 2023
Risky Biz News: Microsoft admits it got DDoSed by Anonymous Sudan » 19 Jun 2023
Risky Biz News: Russian LockBit affiliate arrested in… the US? » 16 Jun 2023
Srsly Risky Biz: IC Reform Wanted, Decent Privacy Laws Needed » 15 Jun 2023
Risky Biz News: CISA orders federal agencies to secure internet-exposed routers, firewalls, and VPNs » 14 Jun 2023
Between Two Nerds: The Hallmarks of a State » 13 Jun 2023
Risky Biz News: Ukrainian hackers wipe Russian telco's equipment » 12 Jun 2023
Risky Biz News: Throw your Barracudas into a wood chipper plz » 09 Jun 2023
Srsly Risky Biz: ASD's Charm Offensive » 08 Jun 2023
Risky Biz News: Clop linked to MOVEit hacks, over 100 orgs breached so far » 07 Jun 2023
Between Two Nerds: What it takes to be a Cyber Power II » 06 Jun 2023
Sponsored: Chris St. Myers on hunting new and old threats using Stairwell's Inception platform » 05 Jun 2023
Risky Biz News: Windows finally gets SMB signing by default » 05 Jun 2023
Risky Biz News: Yo Vladimir! All your iPhones are belong to us! » 02 Jun 2023
Srsly Risky Biz: Why Volt Typhoon is so worrying » 01 Jun 2023
Risky Biz News: Iranian hacktivists breach president's office, leak sensitive files » 31 May 2023
Between Two Nerds: Hiding from the State » 30 May 2023
Sponsored: Catalin Cimpanu talks CISA KEV with Nucleus Security » 29 May 2023
Risky Biz News: NSO Group has new owners » 29 May 2023
Risky Biz News: Chinese APT attacks US critical infrastructure » 26 May 2023
Srsly Risky Biz: G-Men Gone Wild » 25 May 2023
Risky Biz News: FinFisher execs charged in Germany » 24 May 2023
Between Two Nerds: Cyber Pinch Points » 23 May 2023
Risky Biz News: China bans American chips, FBI feels heat over "improper" FISA searches » 22 May 2023
Risky Biz Sponsor Interview: Haroon Meer on the importance of honeypots » 21 May 2023
Risky Biz News: Google will delete inactive accounts » 19 May 2023
Srsly Risky Biz: Crimephones are a cop's best friend » 18 May 2023
Risky Biz News: US charges, sanctions WazaWaka » 17 May 2023
Between Two Nerds: The Culture of the Snake » 16 May 2023
Selena Larson on how cybercriminals use threat intelligence » 15 May 2023
Risky Biz News: The VMProtect source code leaks. Again. » 15 May 2023
Risky Biz News: Gmail to warn users on dark web password exposures » 12 May 2023
Risky Biz News: FBI takes down Turla's Snake malware » 10 May 2023
Between Two Nerds: Why cyber insurance is great in theory but not in practice » 09 May 2023
Risky Biz News: DEFCON attendees will target AI models » 08 May 2023
Sponsor Interview with Material Security's Chris Long » 07 May 2023
Risky Biz News: No jail time for Uber's Joe Sullivan » 05 May 2023
Srsly Risky Biz: Iran Fake’s It Till It Makes It » 04 May 2023
Risky Biz News: Apple and Google partner to kill AirTag stalking » 03 May 2023
Between Two Nerds: Cyber Deterrence part II » 02 May 2023
Risky Biz News: Hacker exposes Bitcoin addresses operated by Russian intelligence » 01 May 2023
Risky Biz News: Cl0p goes all-in on Papercut bug » 28 Apr 2023
Srsly Risky Biz: North Korea's "Vibes-based" targeting » 27 Apr 2023
Risky Biz News: Google Authenticator can now sync data to Google accounts » 26 Apr 2023
Between Two Nerds: Cyber Deterrence » 25 Apr 2023
Risky Biz News: CISA will rescue abandoned open source security tool » 24 Apr 2023
Risky Biz News: 3CX was a supply chain attack in a supply chain attack » 21 Apr 2023
Srsly Risky Biz: After Viasat, Space Systems Get Scrutiny » 20 Apr 2023
Risky Biz News: Apple's Lockdown Mode wins against iOS zero-day » 19 Apr 2023
Between Two Nerds: The NCF's Practical Guide to Offensive Cyber Operations » 18 Apr 2023
Risky Biz News: Israeli spyware vendor QuaDream has allegedly shut down » 17 Apr 2023
Risky Biz News: Microsoft and Fortra declare war on cracked Cobalt Strike » 07 Apr 2023
Risky Biz News: Genesis Market goes boom » 05 Apr 2023
Between Two Nerds: Why Glowing Symphony Feels So Small » 03 Apr 2023
Risky Biz News: Microsoft to fix OneNote's malspam problem » 02 Apr 2023
Risky Biz News: North Korean hackers behind supply chain attack on 3CX » 31 Mar 2023
Srsly Risky Biz: Army. Navy. Air Force. Cyber Force? » 30 Mar 2023
Risky Biz News: White House bars federal agencies from using rogue commercial spyware » 29 Mar 2023
Between Two Nerds: The Real Problem with TikTok » 27 Mar 2023
Risky Biz News: CISA rolls out pre-ransomware notification system » 26 Mar 2023
Risky Biz News: FTC to scrutinize cloud providers' business practices » 24 Mar 2023
Risky Biz News: BreachForums shuts down for good » 22 Mar 2023
Between Two Nerds: The Balance between Offence and Defence » 21 Mar 2023
Risky Biz News: Horror show 0days hit Samsung smartphones » 20 Mar 2023
Risky Biz News: Google wants to reduce lifespan of TLS certificates to 90 days » 17 Mar 2023
Srsly Risky Biz: The RESTRICT Act Is Not About TikTok » 16 Mar 2023
Risky Biz News: CISA establishes ransomware warning pilot program » 15 Mar 2023
Between Two Nerds: Cyber Powers and Talent Pipelines » 14 Mar 2023
Risky Biz News: The US Government wants to regulate cloud security » 13 Mar 2023
Risky Biz News: Hackers steal data on US House members » 10 Mar 2023
Srsly Risky Biz: Grandpa Biden, Cyber President » 09 Mar 2023
Risky Biz News: DoppelPaymer ransomware gang members identified » 08 Mar 2023
Between Two Nerds: A year of the Ukraine War » 07 Mar 2023
Risky Biz News: New vulnerabilities expose location of DJI drone operators » 06 Mar 2023
Risky Biz News: White House unveils National Cybersecurity Strategy » 03 Mar 2023
Srsly Risky Biz: Give Me E2EE or Give Me Death! » 02 Mar 2023
Risky Biz News: Chinese hackers breach ASEAN organization in cyber-espionage campaign » 01 Mar 2023
Risky Biz News: US Treasury sanctions Russian cyber and influence firms » 27 Feb 2023
Between Two Nerds: Making sense of cyber power rankings » 27 Feb 2023
Risky Biz News: Russian radio stations hacked to blast fake air raid warnings » 24 Feb 2023
Srsly Risky Biz: Move Over NSO, the Internet Has a New Villain » 23 Feb 2023
Risky Biz News: Russia preparing new Vepr surveillance system » 22 Feb 2023
Between Two Nerds: Is cyberespionage actually signals intelligence? » 21 Feb 2023
Risky Biz News: Applied Materials to take $250m ransomware hit » 20 Feb 2023
Risky Biz News: EU cybersecurity agencies warn of Chinese APT spying » 17 Feb 2023
Srsly Risky Biz: North Korean ransomware, Biden flags US privacy reform » 16 Feb 2023
Risky Biz News: FTC orders MoneyGram to return $115 million to scammed victims » 15 Feb 2023
Between Two Nerds: Deny! Degrade! Discombobulate? » 14 Feb 2023
Risky Biz News: Russia wants to absolve patriotic hackers of criminal liability » 13 Feb 2023
Risky Biz News: US and UK sanction seven Trickbot members » 10 Feb 2023
Srsly Risky Biz: China's magnificent spy balloon, Iran throws an epic cyber tanty » 09 Feb 2023
Risky Biz News: Tor network hit with DDoS attacks over past seven months » 08 Feb 2023
Risky Biz News: Ransomware wave hits thousands of VMWare ESXi servers » 06 Feb 2023
Between Two Nerds: When companies become an arm of the State » 06 Feb 2023
Risky Biz News: Zero-day alert for GoAnywhere file transfer servers » 03 Feb 2023
Srsly Risky Biz: Links between Russian state and cybercriminals remain elusive » 02 Feb 2023
Risky Biz News: Google discloses breach of its Fi cell service » 01 Feb 2023
Risky Biz News: FCC warns Twilio on scam robocalls » 30 Jan 2023
Risky Biz News: FBI hacked Hive ransomware infrastructure, stole decryption keys » 27 Jan 2023
Risky Biz News: FBI links Harmony's $100 million hack to the Lazarus Group » 25 Jan 2023
Risky Biz News: Crypto-crime volumes went down in 2022, ransomware payments too » 23 Jan 2023
Between Two Nerds: When Operations Get Burnt » 23 Jan 2023
Risky Biz News: Dark web mega-hack as Kraken takes over Solaris » 20 Jan 2023
Srsly Risky Biz: LockBit ripe for disruption, Russians throw kitchen sink at Ukraine » 19 Jan 2023
Risky Biz News: Google Search and Ads have a major malware problem » 18 Jan 2023
Risky Biz News: Secure Boot is useless on recent MSI motherboards » 16 Jan 2023
Risky Biz News: Pro-Russian hacktivists offer cryptocurrency for DDoS attacks against Ukraine and western targets » 13 Jan 2023
Srsly Risky Biz: Carnegie Report Takes Wind Out of Cyber War's Sails » 12 Jan 2023
Risky Biz News: Windows 7 reaches end-of-support » 11 Jan 2023
Risky Biz News: Ukraine jams Russian satellite TV stations in occupied territories » 09 Jan 2023

2022

Srsly Risky Biz: The Access Debate is Now the Child Safety Debate » 15 Dec 2022
Risky Biz News: Citrix and Fortinet patch zero-days exploited in APT and ransomware campaigns » 14 Dec 2022
Between Two Nerds: The US has it all wrong on cyber » 13 Dec 2022
Risky Biz News: Disgruntled member doxes and extorts URSNIF gang » 12 Dec 2022
Risky Biz News: Apple to encrypt iCloud backups, support third-party security keys » 09 Dec 2022
Srsly Risky Biz: Microsoft’s Dull Bulb Fails to Illuminate » 08 Dec 2022
Risky Biz News: New Scattered Spider group targets telcos for SIM swapping attacks » 07 Dec 2022
Between Two Nerds: The ethical rules of espionage » 06 Dec 2022
Risky Biz News: Samsung, MediaTek, and other Android platform certs used to sign malware » 05 Dec 2022
Risky Biz News: LastPass discloses second breach, Google exposes new spyware vendor » 02 Dec 2022
Srsly Risky Biz: We Need a More Conscious Decoupling » 01 Dec 2022
Risky Biz News: Australia passes new privacy bill with huge data breach fines » 30 Nov 2022
Between Two Nerds: Good News, Bad News » 29 Nov 2022
Risky Biz News: US and UK ban Chinese equipment on national security grounds » 28 Nov 2022
Risky Biz News: Authorities seize iSpoof in major blow to fraudsters and cybercrime groups » 25 Nov 2022
Srsly Risky Biz: Why TikTok is a genuine risk, inside the NSPM-13 changes » 24 Nov 2022
Risky Biz News: Meta formally links pro-Western influence operation to US military » 23 Nov 2022
Risky Biz News: Cyber Partisans hack and disrupt Kremlin censor » 21 Nov 2022
Between Two Nerds: Why regulating the 0day market won't stop mercenary spyware » 21 Nov 2022
Risky Biz News: Iranian state hackers breached US government, deployed a cryptominer » 18 Nov 2022
Risky Biz News: Major hack-and-leak info-op unfolding in Moldova » 16 Nov 2022
Risky Biz News: Australia to hack the hackers » 14 Nov 2022
Risky Biz News: Twitter's CISO and head of trust and safety both resign » 11 Nov 2022
RBTALKS: Google's VP of Security Engineering Heather Adkins Talks Aurora » 10 Nov 2022
Risky Biz News: The spyware industry has found a cozy home in the EU » 09 Nov 2022
Risky Biz News: Chinese APTs used more zero-days last year » 07 Nov 2022
Between Two Nerds: Why does Europe suck? » 07 Nov 2022
Risky Biz News: OPERA1ER group hits African banks for $30 million » 04 Nov 2022
Srsly Risky Biz: The Liz Truss hack and securing politcians' comms » 03 Nov 2022
REPOST: Risky Biz News: Internal chats for Yanluowang ransomware gang leaked » 02 Nov 2022
Risky Biz News: The Profanity Vulnerability Claims Another Victim » 31 Oct 2022
Between Two Nerds: When Small is Beautiful » 30 Oct 2022
Risky Biz News: Microsoft rolls out number matching to counter MFA push notification spam attacks » 28 Oct 2022
Risky Biz News: Raccoon Stealer dev didn't die in Ukrainian war; he was arrested in the Netherlands » 26 Oct 2022
Risky Biz News: GitHub aflood with fake and malicious PoCs » 24 Oct 2022
Between Two Nerds: Internet Giants and the state » 23 Oct 2022
Risky Biz News: URSNIF goes from banking trojan to backdoor, dreaming of ransomware profits » 21 Oct 2022
Risky Biz News: IRGC installed malware on phones of Iranian protesters following their arrest » 19 Oct 2022
Risky Biz News: Russia is building a centralized video surveillance system » 17 Oct 2022
Between Two Nerds: Cyber Operations on the Battlefield » 16 Oct 2022
Risky Biz News: China does a funny and tries to pose as IntrusionTruth » 14 Oct 2022
Seriously Risky Biz: Biden's SIGINT EO Doesn't Change Much » 13 Oct 2022
Risky Biz News: White House working on cybersecurity labels for IoT products » 12 Oct 2022
Risky Biz News: LofyGang runs amok in the npm ecosystem with minimal gains » 10 Oct 2022
Between Two Nerds: Using Offensive Capabilities Against Criminals » 10 Oct 2022
Risky Biz News: Good news for the Capital One hacker, bad news for the former Uber CSO » 07 Oct 2022
Seriously Risky Biz: The CIA is too stupid to know it's stupid » 06 Oct 2022
Risky Biz News: China blocks several protocols used to bypass the Great Firewall » 05 Oct 2022
Risky Biz News: Interpol arrests scammers linked to Nigerian "Air Lords" crime syndicate » 03 Oct 2022
Between Two Nerds: How cyber agencies are constrained » 02 Oct 2022
Seriously Risky Biz #12 -- Why Huawei is Germany's next Nordstream » 30 Sep 2022
Risky Biz News: Twitch limits browser logins as it deals with massive bot attack » 30 Sep 2022
Risky Biz News: Facebook takes down large network of (low quality) fake news sites pushing Russian propaganda » 28 Sep 2022
Risky Biz News: XakNet "hacktivists" linked to APT28 and Russia's GRU intelligence service » 26 Sep 2022
Between Two Nerds: How Ukraine Could Actually Use Its "IT Army" » 25 Sep 2022
Risky Biz News: EU data supervisor sues the EU and Europol for skirting data protection rules » 23 Sep 2022
Seriously Risky Biz: Chaos Is the New Normal » 22 Sep 2022
Risky Biz News: US Ransomware Task Force to go after ransomware top dogs » 21 Sep 2022
Risky Biz News: KiwiFarms discloses security breach, says user data may have been stolen » 19 Sep 2022
Between Two Nerds: On culture and SIGINT agencies » 19 Sep 2022
Risky Biz News: Poland refuses to cooperate with the EU in spyware scandal » 16 Sep 2022
Seriously Risky Biz: Why Twitter is a magnet for foreign infiltrators » 15 Sep 2022
Risky Biz News: Breached forum has already replaced the now-defunct RAIDforums » 14 Sep 2022
Risky Biz News: Albania-Iran cyber drama far from over » 12 Sep 2022
Risky Biz News: Former Conti members are now targeting Ukraine » 09 Sep 2022
Seriously Risky Biz #9 -- Albania suspends diplomatic ties with Iran over hack » 08 Sep 2022
Risky Biz News: China does its best US APT attribution effort but falls short of the mark » 07 Sep 2022
Risky Biz News: Encryption and privacy pioneer Peter Eckersley has died » 05 Sep 2022
Between Two Nerds: How OSINT makes clandestine HUMINT difficult » 05 Sep 2022
Risky Biz News: Academics find a tiny crack in Apple's Private Relay » 02 Sep 2022
Seriously Risky Biz #8 -- Why Western propaganda is good, actually » 01 Sep 2022
Risky Biz News: Greece tries to downplay its spyware scandal » 31 Aug 2022
Risky Biz News: Cybercrime groups got bored of RU/UA hacktivism » 29 Aug 2022
Between Two Nerds: Why we hate the term "cyberwar" » 28 Aug 2022
Seriously Risky Biz: What the Lloyd's of London decision means for governments » 26 Aug 2022
Risky Biz News: Rare pro-Western influence operation caught and exposed » 26 Aug 2022
Risky Biz News: Explosive whistleblower report exposes Twitter's shoddy security » 24 Aug 2022
RBTALKS3: Vitali Kremez on the impending downfall of the RaaS ecosystem » 23 Aug 2022
Risky Biz News: Bitcoin ATMs hacked » 22 Aug 2022
Between Two Nerds: Predatory Sparrow, the "hacktivist crew" obsessed with norms » 22 Aug 2022
Risky Biz News: CyberCom faces staffing issues » 19 Aug 2022
Risky Biz News: Programmers will need to learn to love MFA, even if they like it or not » 17 Aug 2022
Risky Biz News: Is ransomware going after the Global South? Sure looks like it! » 15 Aug 2022
Between Two Nerds: Why some APT crews don't care about OPSEC » 07 Aug 2022
Risky Biz News: FIRST releases TLP v2.0 » 05 Aug 2022
Srsly Risky Biz #6 -- On Spyware, More Sanctions Please » 04 Aug 2022
Risky Biz News: Would a tax relief for SMBs improve cybersecurity postures and ransomware defenses? » 03 Aug 2022
Risky Biz News: Confluence servers under attack due to hardcoded password » 01 Aug 2022
Srsly Risky Biz #5 -- US DNI will monitor the commercial spyware industry » 29 Jul 2022
Risky Biz News: Microsoft puts the limelight on another spyware maker—DSIRF from Austria » 29 Jul 2022
Risky Biz News: Microsoft mitigates PPL exploit after four years » 27 Jul 2022
RBTALKS2: How the Belarusian Cyber Partisans learned from real spies » 25 Jul 2022
RBTALKS1: Yuriy Ackermann on securing Ukraine with security keys » 22 Jul 2022
Srsly Risky Biz #4 -- The Global Internet is Dead » 21 Jul 2022
Risky Biz News: Google removes app permissions from the Play Store » 18 Jul 2022
Risky Biz News: Chinese APT targeted White House reporters ahead of Jan. 6 insurrection » 15 Jul 2022
Risky Biz News: New side-channel attack disclosed in Intel and AMD processors » 13 Jul 2022
Risky Biz News: Thousands of Yubikeys have been deployed in Ukraine, more to come » 11 Jul 2022
Risky Biz News: Apple debuts Lockdown Mode to protect users against high-end spyware » 08 Jul 2022
Srsly Risky Biz #3 — China Gonna China » 07 Jul 2022
Risky Biz News: China faces its first truly mega-leak » 06 Jul 2022
Risky Biz News: HackerOne discloses malicious insider incident, and nobody's surprised » 04 Jul 2022
Risky Biz News: Half of 2022's zero-days are variants of older vulnerabilities » 01 Jul 2022
Srsly Risky Biz #2 — Israel's Implausible Deniability » 30 Jun 2022
Risky Biz News: Hackers hit Iranian steel industry » 29 Jun 2022
Risky Biz News: US critical infrastructure needs better cyber insurance coverage » 27 Jun 2022
Risky Biz News: Google TAG says it tracks 30 surveillance vendors » 24 Jun 2022
Srsly Risky Biz #1 — TikTok can't unscramble it's data omelette » 23 Jun 2022
Risky Biz News: Hackers blamed for false air raid sirens in Israel » 22 Jun 2022
Risky Biz News: Germany indicts GRU hacker for NATO think tank breach » 20 Jun 2022
Risky Biz News: Top websites have sucky password policies » 17 Jun 2022
Risky Biz News: Microsoft accused of concealing Azure vulnerabilities » 15 Jun 2022
Risky Biz News: Google shuts down YouTube Russian propaganda channels » 13 Jun 2022
Risky Biz News: BPF malware is now a thing » 10 Jun 2022
Risky Biz News: LockBit-Mandiant drama, explained » 08 Jun 2022
Risky Biz News: Microsoft disrupts Bohrium APT infrastructure » 06 Jun 2022
Risky Biz News: Website defacements and CCTV hacks in Iran » 03 Jun 2022
Risky Biz News: Russia orders Google to remove Tor Browser from Russian Play Store » 01 Jun 2022
Risky Biz News: Threat actor stole data for 100,000 npm users » 30 May 2022
Risky Biz News: Microsoft will enable better security defaults for all Azure AD tenants next month » 27 May 2022
Risky Biz News: Python and PHP libraries hijacked to steal AWS keys » 25 May 2022
Risky Biz News: STAR Labs wins Pwn2Own 2022 » 23 May 2022
Risky Biz News: FSB-linked DDoS tool could also be used for disinformation campaigns » 20 May 2022
Risky Biz News: New Bluetooth relay attack bypasses current defenses » 18 May 2022
Risky Biz News: Zyxel firewalls and VPN devices come under attack » 16 May 2022
Risky Biz News: Musk says Russia has ramped up efforts to hack Starlink » 13 May 2022
Risky Biz News: EU, Five Eyes condemn Russia's Viasat hack » 11 May 2022
Risky Biz News: Costa Rica declares national emergency after ransomware attack » 09 May 2022
Risky Biz News: Apple, Google, and Microsoft commit to passwordless logins » 06 May 2022
Risky Biz News: SEC expands crypto cyber fraud team » 04 May 2022
Risky Biz News: Side-channel attacks discovered in Apple CPUs; new twist in Kronos ransomware attack fallout » 02 May 2022
Risky Biz News: Microsoft saw Russia pre-position a year before invasion » 29 Apr 2022
Risky Biz News: VirusTotal denies vulnerability report; and some NFT apes got stolen... again » 27 Apr 2022

Navigation
» Home
» Newsletters
» About
» Contact
» Sponsorship