
* Ecovacs Robot Vacuums Collect Home Images for AI Training, Raising Privacy Concerns* Deepfakes on the Rise: Threatening Trust and Security* Meta Ray-Ban Glasses Hacked into Real-Time Facial Recognition Tool* Apple Patches Privacy Bugs in iOS 18: Passwords Read Aloud and Early Voice Message Recording* Cloudflare Mitigates Record-Breaking 3.8 Tbps DDoS Attack This is a public episode. If you would like to discuss this with other subscribers or get access to bonus episodes, visit edwinkwan.substack.com
Oct 10, 2024
8 min

* CISA Boss Calls for More Secure Software Development* NIST Proposes Sweeping Changes to Password Policies: Mandatory Resets and Character Rules Out* Critical Vulnerability Found in Nvidia Container Toolkit* Remote Code Execution Flaw Found in CUPS Printing System (Limited Impact)* Privacy Group Claims Mozilla's "Privacy-Preserving" Feature Tracks Users* ServiceNow Outage Caused by Expired Root CertificateSpecial Thanks to Justin Butterfield once again for contributing some of the interesting stories for this week’s cyber bites. This is a public episode. If you would like to discuss this with other subscribers or get access to bonus episodes, visit edwinkwan.substack.com
Oct 3, 2024
8 min

* CISA and FBI Urge Software Makers to Eliminate Cross-Site Scripting Vulnerabilities* Paying Ransomware Doesn't Guarantee File Recovery, Even With Decryptor* US Dismantles Chinese Government-Linked Botnet Targeting Hundreds of Thousands of Devices* Clever 'GitHub Scanner' Campaign Abusing Repos to Push Malware* Australian Government Suffers Surge in Cyber Attacks, Social Engineering Most Common TacticSpecial Thanks to Justin Butterfield once again for contributing some of the interesting stories for this week’s cyber bites. This is a public episode. If you would like to discuss this with other subscribers or get access to bonus episodes, visit edwinkwan.substack.com
Sep 26, 2024
7 min

* Millions of Devices at Risk as Microsoft and Google Disable Insecure Email Login Method* Cybersecurity Giant Fortinet Confirms Data Breach, Downplays Impact* New Laws Target Banks, Telcos and Tech Giants in Fight Against Scams* Online Voucher Scam Targets Sydney Restaurants Using Square POS* TfL Staff Face In-Person Password Resets After CyberattackSpecial Thanks to Justin Butterfield once again for contributing some of the interesting stories for this week’s cyber bites. This is a public episode. If you would like to discuss this with other subscribers or get access to bonus episodes, visit edwinkwan.substack.com
Sep 19, 2024
9 min

* AI-Powered Voice Cloning Scams on the Rise* Cyberattack Disrupts Transport for London Services* Typosquatting Threatens Developers: Malicious Code in GitHub Actions* New Supply Chain Attack Hijacks Removed PyPI Packages* White House Aims to Strengthen Internet Routing Security This is a public episode. If you would like to discuss this with other subscribers or get access to bonus episodes, visit edwinkwan.substack.com
Sep 12, 2024
14 min

* Singapore's Consumer Watchdog Fined for Data Breaches, Failed to Secure Consumer Information* Research Study: What's The Worst Place to Leave Your Secrets* Critical Infrastructure Under Threat: Zero-Day Vulnerability Exploited to Spread Mirai Botnet* Banks Under Fire for Inadequate Scam Protection as Victims Suffer* FIDO Security Token YubiKey 5 Vulnerable to Cloning Attacks* Critical Vulnerability Found in Airport Security SystemSpecial Thanks to Justin Butterfield for contributing some of the interesting stories for this week’s cyber bites. This is a public episode. If you would like to discuss this with other subscribers or get access to bonus episodes, visit edwinkwan.substack.com
Sep 5, 2024
9 min

* Cybersecurity: The Need for a Wake-Up Call* Digital Banks: Boon for Customers, Target for Scammers?* ASD Warns of Phishing Emails Targeting Australians* New Guidance Released on Best Practices for Event Logging and Threat Detection* Local Networks Exposed: A Flaw in Domain Naming Creates Security Nightmare This is a public episode. If you would like to discuss this with other subscribers or get access to bonus episodes, visit edwinkwan.substack.com
Aug 29, 2024
6 min

* Thousands of Websites Exposed AWS Credentials, Leading to Large-Scale Extortion Campaign* Mac Users Beware: Microsoft Apps May Have Allowed Hackers to Spy on You* Ransomware on Track for Record Year Despite Fewer Victims Paying* FlightAware Data Breach Exposes User Information for Years* GitHub Actions Exposing Authentication Tokens in Popular Open-Source ProjectsSpecial Thanks to Justin Butterfield once again for contributing some of the interesting stories for this week’s cyber bites. This is a public episode. If you would like to discuss this with other subscribers or get access to bonus episodes, visit edwinkwan.substack.com
Aug 22, 2024
10 min

* Background Check Company National Public Data Hit by Massive Data Breach Affecting Nearly 3 Billion People* Trojan Malware Campaign Hijacks Browsers, Steals Data of Over 300,000 Users (https://reasonlabs.com/research/new-widespread-extension-trojan-malware-campaign)* Australian Gold Miner Evolution Hit by Ransomware Attack* Critical Browser Flaw Exposes Local Networks to Attack via "0.0.0.0"* Hackers Breaches Educational Security Software Company and Wipes 13,000 students’ iPads and Chromebooks This is a public episode. If you would like to discuss this with other subscribers or get access to bonus episodes, visit edwinkwan.substack.com
Aug 15, 2024
7 min

* Australia to Mandate Ransomware Payment Disclosure* Hackers Abuse Free Cloudflare Tunnels to deliver Remote Access Trojans* Stack Exchange Used by Threat Actors to Promote Malicious Open Source Components* Hackers Poison Software Updates Through ISP Breach This is a public episode. If you would like to discuss this with other subscribers or get access to bonus episodes, visit edwinkwan.substack.com
Aug 8, 2024
4 min
Load more
