Belgian defence ministry admits attackers accessed its computer network by exploiting Log4j vulnerability • The Register As if you needed reminding that if the Log4j vulnerability impacts you, you need to take action.
More on the sharing of compromised passwords with “‘;–have i been pwned?”
I wrote about this yesterday: UK National Crime Agency shares compromised passwords – Smart Thinking Solutions Here are two more stories about The National Crime Agency’s (NCA) donation of passwords in the wild. UK donates 225 million stolen passwords to hack-checking site – BBC News UK National Crime Agency finds …
Continue reading “More on the sharing of compromised passwords with “‘;–have i been pwned?””
Just like buses – Log4j flaws come in threes
Bad things come in threes: Apache reveals another Log4J bug • The Register A third bug has been found in the Log4j system. There has been three new versions of the software since the crisis started.
US federal government agency compromised with a sophisticated attack
The United States Commission on International Religious Freedom (USCIRF) is understood to have been suffering a advanced persistent threat (APT) compromising the internal networks. US federal agency compromised in suspected APT attack – The Record by Recorded Future This agency has a role in shaping US government policy when it …
Continue reading “US federal government agency compromised with a sophisticated attack”
UK National Crime Agency shares compromised passwords
There is a website where you can check if your password has been compromised – yes really. It does sound like a scam to harvest unsuspecting users passwords, but no. The website https://haveibeenpwned.com/ has built a reputation as a useful cyber security tool. Now the UK National Crime Agency has …
Continue reading “UK National Crime Agency shares compromised passwords”
