Changelog: Hello to LockBitSupp and goodbye to Changelog
Welcome to Changelog for 5/13/2024. Nathaniel Mott here with the final installment of this newsletter, but first, the week’s leading security news.
Changelog: ArcaneDoor campaign targets Cisco devices
Welcome to Changelog for 4/25/2024, published by Synack! README senior editor Nathaniel Mott here with all the doom and gloom you need this fine Spring day.
Changelog: Sandworm becomes APT44
Welcome to Changelog for 4/18/2024, published by Synack! README senior editor Nathaniel Mott here with the week’s leading security news.
NIST vulnerability bottleneck underscores fragility of software security
A sudden halt to the ranking of vulnerability severity has left government agencies and some companies without an approved source of ranking and prioritization.
Changelog: Kaspersky is the new TikTok
Welcome to Changelog for 4/11/2024, published by Synack! README senior editor Nathaniel Mott “enjoying” those April showers and bringing you the top security news of the week.
CISA cyber reporting mandate faces tough road
A coalition of organizations has asked CISA to extend the public comment period on new cyberattack reporting rules proposed in response to CIRCIA.
Changelog: Cyber review board is all bark, no bite on Microsoft
Welcome to Changelog for 4/4/2024, published by Synack! README senior editor Nathaniel Mott here after a long weekend with the week’s leading security news.
Changelog: The U.S. and U.K. expose APT31
Welcome to Changelog for 3/28/2024, published by Synack! README senior editor Nathaniel Mott here with the week’s leading security news.
Exploits Explained: ZIP embedding attack on Google Chrome extensions
Malcolm Stagg recounts the discovery of CVE-2024-0333, a vulnerability in Google Chrome that could have been exploited to install malicious extensions.
Page