Sophos report even government agencies can miss hackers in their network

Hacker spent nearly five months inside a US regional government network, downloading files, using software and deleting logs, before deploying Lockbit ransomware. Sophos recreated the attack from what was left of the logs and believe the attackers got in through a public facing remote desktop protocol (RDP) port – something …

Bluetooth security flawed but fixed

Bluetooth

The Ellume – COVID-19 Home Test (ellumehealth.com) was tested and found to not be very secure. Worse compromised data was passed onto an agency vetting people entering into the USA depending on their COVID-19 status. Of course a Bluetooth-using home COVID test was cracked to fake results • The Register

Two more stories about, spyware, the NSO Group, Pegasus and another player in the commercial cyberweapons market

So if one company can produce commercial spyware then why not two. More on NSO Group and Cytrox: Two Cyberweapons Arms Manufacturers – Schneier on Security Then there are the consequences of the use of Pegasus and Predator. UN-backed investigator into possible Yemen war crimes targeted by spyware | United …