Storm-0558 Breaks: Satya and Pooh, sitting in a tree, K.I.S.S.I.N.G.

The post ‘China’ Azure Breach: MUCH Worse Than Microsoft Said appeared first on Security Boulevard.

Kevin is Free: Hackers’ hacker dies, aged 59.

The post R.I.P. Kevin Mitnick, 1963–2023 appeared first on Security Boulevard.

All day and every day, you constantly receive highly personalized instructions for how to comply with the law, sent directly by your government and law enforcement. You’re told how to cross the street, how fast to drive on the way to work, and what you’re allowed to say or do online—if you’re in any situation that might have legal implications, you’re told exactly what to do, in real time.

Imagine that the computer system formulating these personal legal directives at mass scale is so complex that no one can explain how it reasons or works. But if you ignore a directive, the system will know, and it’ll be used as evidence in the prosecution that’s sure to follow...

The post AI and Microdirectives appeared first on Security Boulevard.

Legislation that would ban law enforcement and federal agencies from buying consumer data from data brokers without a warrant is on its way to the full House.

The post House Panel OK’s Bill to Ban Law Enforcement from Buying Data from Brokers appeared first on Security Boulevard.

European cousins Intellexa and Cytrox essentially banned by Commerce Dept. — Predator/ALIEN not welcome in U.S.

The post Biden Admin. Adds ‘Mercenary Spyware’ Firms to Ban List appeared first on Security Boulevard.

Russia’s war strategy increasingly involves cybersecurity, with the country expected to ramp up attacks on critical infrastructure in Ukraine and countries that are members of NATO, according to Switzerland’s Federal Intelligence Service (FIS). “The war in Ukraine represents a threat with partially global implications for critical infrastructure. Critical infrastructure outside the war zone could also..

The post Russia Expected to Increase Critical Infrastructure Attacks appeared first on Security Boulevard.

MX Mixup: Russian-allied government can intercept “highly sensitive information”—because there’s no “I” in .ML

The post OPSEC FAIL: US Military Email Going to Mali — via Typo appeared first on Security Boulevard.

Investigators went through phone records collected from both midtown Manhattan and the Massapequa Park area of Long Island—two areas connected to a “burner phone” they had tied to the killings. (In court, prosecutors later said the burner phone was identified via an email account used to “solicit and arrange for sexual activity.” The victims had all been Craigslist escorts, according to officials.)

They then narrowed records collected by cell towers to thousands, then to hundreds, and finally down to a handful of people who could match a suspect in the killings...

The post Tracking Down a Suspect through Cell Phone Records appeared first on Security Boulevard.

Storm-0558 Brewing: Multiple Microsoft failures cause data leaks at State and Commerce depts., plus 23 other orgs.

The post China Breaches Microsoft Cloud — Spied on US Govt. Email appeared first on Security Boulevard.

PV OT: VPN PDQ! 9.8 CVSS known since May 2022—but still exploitable on 400+ net-connected OT/ICS/SCADA systems.

The post Contec SolarView: Critical Bug Unpatched After 14 MONTHS appeared first on Security Boulevard.