CyberSecurityBoard
Sponsor Register Login

Friday Squid Blogging: New Foods from Squid Fins

We only eat about half of a squid, ignoring the fins.
As usual, you can also use this squid post to talk about the security stories in the news that I haven't covered.
It's just a complaint; the SEC still has to prove the allegations in court.
It's breathtaking in the amount and severity of failure and deceit it describes.
It's a terrific cautionary tale about underfunding controls while publishing happy talk about your stellar security practices.
I picked this up listening to episode 153 of Google's Cloud Security Podcast, in which Mandia was interviewed by Anton Chuvakin and Timothy Peacock.
Cyber hackers follow fads, and as hacking blockchainsbecomes easier to do, more hackers will focus ondirect withdrawals from the bankrather than wasting their time and efforttrying to extort ransomware victims.
Lurker January 19, 2024 5:27 PM. How to read a WEF report from Davos, or not.
Reuters says extreme weather will be the greatest risk in 2024, with mis/dis/information next.
CNN reverses the order of risk for these two events.
Everybody seens to agree that cyber insecurity will be a greater risk than armed conflict between nations.
WEF's own summary, and a downloadable pdf for masochists is at.
Vas pup January 19, 2024 5:34 PM. In world first, Israel approves cultured beef for sale to the publichttps://www.


This Cyber News was published on www.schneier.com. Publication date: Fri, 19 Jan 2024 22:43:04 +0000


Cyber News related to Friday Squid Blogging: New Foods from Squid Fins

Friday Squid Blogging: New Foods from Squid Fins - We only eat about half of a squid, ignoring the fins. As usual, you can also use this squid post to talk about the security stories in the news that I haven't covered. It's just a complaint; the SEC still has to prove the allegations in court. It's ...
10 months ago Schneier.com
18th Anniversary Post: New Species of Pygmy Squid Discovered - They're Ryukyuan pygmy squid and Hannan's pygmy squid. As usual, you can also use this squid post to talk about the security stories in the news that I haven't covered. Yes, this is the eighteenth anniversary of Friday Squid Blogging. The first squid ...
10 months ago Schneier.com
CVE-2023-27396 - FINS (Factory Interface Network Service) is a message communication protocol, which is designed to be used in closed FA (Factory Automation) networks, and is used in FA networks composed of OMRON products. Multiple OMRON products that implement FINS ...
1 year ago
CVE-2024-23638 - Squid is a caching proxy for the Web. Due to an expired pointer reference bug, Squid prior to version 6.6 is vulnerable to a Denial of Service attack against Cache Manager error responses. This problem allows a trusted client to perform Denial of ...
6 months ago
Tyson Foods hit by Snatch Ransomware Gang - Actor: Snatch ...
1 year ago Twitter.com
Kraft Foods hit by Snatch Ransomware Gang - Actor: Snatch ...
11 months ago Twitter.com
Friday Squid Blogging: Footage of Black-Eyed Squid Brooding Her Eggs - Amazing footage of a black-eyed squid carrying thousands of eggs. They tend to hang out about 6,200 feet below sea level. As usual, you can also use this squid post to talk about the security stories in the news that I haven't covered. Corton January ...
9 months ago Schneier.com
Friday Squid Blogging: Operation Squid - Operation Squid found 1.3 tons of cocaine hidden in frozen fish. As usual, you can also use this squid post to talk about the security stories in the news that I haven't covered. Gay parades for all you must all be gay or kneel before the gays in ...
8 months ago Schneier.com
CVE-2024-25617 - Squid is an open source caching proxy for the Web supporting HTTP, HTTPS, FTP, and more. Due to a Collapse of Data into Unsafe Value bug ,Squid may be vulnerable to a Denial of Service attack against HTTP header parsing. This problem allows a remote ...
7 months ago
Friday Squid Blogging: A Penguin Named "Squid" - As usual, you can also use this squid post to talk about the security stories in the news that I haven't covered. ...
9 months ago Schneier.com
CVE-2023-46724 - Squid is a caching proxy for the Web. Due to an Improper Validation of Specified Index bug, Squid versions 3.3.0.1 through 5.9 and 6.0 prior to 6.4 compiled using `--with-openssl` are vulnerable to a Denial of Service attack against SSL Certificate ...
1 year ago
East Texas hospital network can't receive ambulances because of potential cybersecurity incident - GetTime();if(!(u<=a&&d<=l throw new RangeError("Invalid interval");return r.inclusive?u<=l&&d<=a:ut||isNaN(t. Step):1;if(s<1||isNaN(s throw new RangeError("`options. Step):1;if(l<1||isNaN(l throw new RangeError("`options. GetTime()<=n throw new ...
11 months ago Cnn.com
Friday Squid Blogging: New Squid Species - About Bruce Schneier I am a public-interest technologist, working at the intersection of security, technology, and people. I've been writing about security issues on my blog since 2004, and in my monthly newsletter since 1998. I'm a fellow and ...
4 months ago Schneier.com
Friday Squid Blogging: Influencer Accidentally Posts Restaurant Table QR Ordering Code - The woman-who has only been identified by her surname, Wang-was having a meal with friends at a hotpot restaurant in Kunming, a city in southwest China. When everyone's selections arrived at the table, she posted a photo of the spread on the Chinese ...
11 months ago Schneier.com
Friday Squid Blogging: Sqids - Sqids is an open-source library that lets you generate YouTube-looking IDs from numbers. These IDs are short, can be generated from a custom alphabet and are guaranteed to be collision-free. I haven't dug into the details enough to know how they can ...
10 months ago Schneier.com
Friday Squid Blogging: Vegan Squid-Ink Pasta - It is a simple idea but probably never seen before, since it is the opposite of what most people usually want: website owners want the most data they can get and players want to choose their username/avatar. In the context of privacy, doxing and ...
9 months ago Schneier.com
Tech Companies Sign Accord to Combat AI-Generated Election Trickery - Executives from Adobe, Amazon, Google, IBM, Meta, Microsoft, OpenAI and TikTok gathered at the Munich Security Conference to announce a new framework for how they respond to AI-generated deepfakes that deliberately trick voters. Twelve other ...
9 months ago Securityweek.com
CVE-2022-31207 - The Omron SYSMAC Cx product family PLCs (CS series, CJ series, and CP series) through 2022-05-18 lack cryptographic authentication. They utilize the Omron FINS (9600/TCP) protocol for engineering purposes, including downloading projects and control ...
2 years ago
CVE-2019-18678 - An issue was discovered in Squid 3.x and 4.x through 4.8. It allows attackers to smuggle HTTP requests through frontend software to a Squid instance that splits the HTTP Request pipeline differently. The resulting Response messages corrupt caches ...
4 years ago
CVE-2023-49288 - Squid is a caching proxy for the Web supporting HTTP, HTTPS, FTP, and more. Affected versions of squid are subject to a a Use-After-Free bug which can lead to a Denial of Service attack via collapsed forwarding. All versions of Squid from 3.5 up to ...
11 months ago Tenable.com
Understanding the New SEC Rules for Disclosing Cybersecurity Incidents - The U.S. Securities and Exchange Commission recently announced its new rules for public companies regarding cybersecurity risk management, strategy, governance, and incident exposure. "Currently, many public companies provide cybersecurity disclosure ...
11 months ago Feeds.dzone.com
Neurosurgeons of New Jersey Confirms Cyber Attack Resulting in Recent Data Breach - On December 4, 2023, Neurosurgical Associates of New Jersey filed a notice of data breach with the U.S. Department of Health and Human Services Office for Civil Rights after discovering. In this notice, Neurosurgeons of New Jersey explains that an ...
11 months ago Jdsupra.com
New Relic CEO sets observability strategy for the AI age - The executive that replaced Gary Steele as CEO at Proofpoint when Steele left for Splunk has now followed Steele's path from cybersecurity to the helm of an observability company. Ashan Willy was appointed CEO at New Relic in December, a month after ...
4 months ago Techtarget.com
CVE-2019-12525 - An issue was discovered in Squid 3.3.9 through 3.5.28 and 4.x through 4.7. When Squid is configured to use Digest authentication, it parses the header Proxy-Authorization. It searches for certain tokens such as domain, uri, and qop. Squid checks if ...
2 years ago
CVE-2023-49285 - Squid is a caching proxy for the Web supporting HTTP, HTTPS, FTP, and more. Due to a Buffer Overread bug Squid is vulnerable to a Denial of Service attack against Squid HTTP Message processing. This bug is fixed by Squid version 6.5. Users are ...
11 months ago Tenable.com

Latest Cyber News


Cyber Trends (last 7 days)


Trending Cyber News (last 7 days)