ISC2 Security Congress 2024: The Landscape of Nation-State Cyber Attacks

CISA advisor Nicole Perlroth closed out ISC2 Security Congress’ keynotes with a wake-up call for security teams to watch for nation-state-sponsored attacks. Continue reading ISC2 Security Congress 2024: The Landscape of Nation-State Cyber Attacks

Smashing Security podcast #389: WordPress vs WP Engine, and the Internet Archive is down

WordPress’s emperor, Matt Mullenweg, demands a hefty tribute from WP Engine, and a battle erupts, leaving millions of websites hanging in the balance. Meanwhile, the Internet Archive, a digital library preserving our online history, is under siege fro… Continue reading Smashing Security podcast #389: WordPress vs WP Engine, and the Internet Archive is down

Internet Archive data breach, defacement, and DDoS: Users’ data compromised

The Internet Archive has suffered a data breach, leading to the compromise of email addresses, screen names and bcrypt password hashes of some 31 million users. The compromise was revealed on Wednesday afternoon, when the digital library’s websit… Continue reading Internet Archive data breach, defacement, and DDoS: Users’ data compromised

CUPS vulnerabilities could be abused for DDoS attacks

While the Common UNIX Printing System (CUPS) vulnerabilities recently disclosed by researcher Simone “evilsocket” Margaritelli are not easily exploited for remote command execution on vulnerable systems, they could offer more opportunity to… Continue reading CUPS vulnerabilities could be abused for DDoS attacks