Amateur Security Archaeologists, trying not to break things.

Category: Threat Updates (Page 1 of 5)

What’s Causing Mike’s Indigestion Now? We’re obsessed with the wrong snowflakes (28 June 2024)

Good day, folks! Another week, another headline-grabbing security incident seems to be dominating the discussion. And I am not talking about Tim Weah’s testy red card vs. Panama, or whatever comes out of the debate tonight. I am talking about a slow boiling issue that impacts all of us. After the last month’s buildup, Snowflake is in the spotlight, but don’t be fooled – this isn’t just about one company’s identity problems, and it has ripples through many. Let’s dive into why Snowflake’s woes are a wake-up call for all of us, and what else it might mean for how we tackle

Continue reading

What’s causing Mike’s Indigestion now? Someone’s entered the “find out” stage (20 June 2024)

Good day, folks! It’s been more of the same for security practitioners around the world. Increasing rates of ransom, leaks, and vulnerability announcements continue to climb. That said, interesting new news hit this week, with mixed results for cyber crime outfits. Let’s talk about ALPHV and Scattered Spider and look at some good guidance on MFA. We’ll also take a look at the other fun developments.

Continue reading

What’s causing Mike’s Indigestion now? Do you recall, Central Park in Fall? (13 June 2024)

Good evening, folks! It has been a while since my last news update. You probably recall that these have gotten a lot longer over time, so in an effort to respect our time, I will change my approach and aim for shorter. Lots to unpack lately, but one of the headline grabbers is all about setting bad precedents in ransomware response. Microsoft made one of the most confusing decisions for ‘security’ that anyone has seen, and we’re also going to have a lot more AI-related news, so let’s buckle up!

Continue reading

What’s causing Mike’s Indigestion now? Drop it like it’s hot (2 May 2024)

Good morning, folks! Another week, another threat surface gets its turn in the press! While I have been working hard to prepare for the upcoming Cisco Live (2-6 June in Las Vegas!) news seems to be picking up before RSA Conference next week. This week we saw a lot of continued fallout from breaches past, variations of perimeter defense vulns, and more. We even see yet another tool essential to many get hacked – is nothing sacred! Let’s get into it!

Continue reading

What’s causing Mike’s Indigestion now? Double Trouble (26 April 2024)

Hello folks! It seems that there is never a dull week. To almost make that point abundantly clear, we have a large number of newly announced firewall vulns, some more ransomware hitting critical targets, and more state sponsored mayhem. So let’s get started and see what is going on!

Continue reading
« Older posts
Verified by MonsterInsights