|
X-He-Spam-Score: -2.1
|
|
Return-Path: <bounce-mc.us18_98818529.11206409-9d10de3b61@mail230.atl61.mcsv.net>
|
|
Delivered-To: dropbox@plan.io
|
|
Received: from m.launch.gmbh ([127.0.0.1])
|
|
by m.launch.gmbh with LMTP
|
|
id WPZsHJ4yjWfEUyoAJzdhvw
|
|
(envelope-from <bounce-mc.us18_98818529.11206409-9d10de3b61@mail230.atl61.mcsv.net>)
|
|
for <dropbox@plan.io>; Sun, 19 Jan 2025 18:13:02 +0100
|
|
X-Spam-Checker-Version: SpamAssassin 3.4.6 (2021-04-09) on m.launch.gmbh
|
|
X-Spam-Level:
|
|
X-Spam-Status: No, score=-2.1 required=5.0 tests=BAYES_00,DKIM_SIGNED,
|
|
DKIM_VALID,DKIM_VALID_AU,DMARC_PASS,HTML_MESSAGE,RCVD_IN_DNSWL_NONE,
|
|
RCVD_IN_MSPIKE_H2,SPF_FAIL,SPF_FAIL_IGNORE,SPF_HELO_NONE,
|
|
T_KAM_HTML_FONT_INVALID autolearn=ham autolearn_force=no version=3.4.6
|
|
X-Spam-Report:
|
|
* -0.0 RCVD_IN_DNSWL_NONE RBL: Sender listed at
|
|
* https://www.dnswl.org/, no trust
|
|
* [64.90.62.164 listed in list.dnswl.org]
|
|
* -0.0 RCVD_IN_MSPIKE_H2 RBL: Average reputation (+2)
|
|
* [64.90.62.164 listed in wl.mailspike.net]
|
|
* -1.9 BAYES_00 BODY: Bayes spam probability is 0 to 1%
|
|
* [score: 0.0000]
|
|
* -0.1 DMARC_PASS DMARC check passed
|
|
* 5.0 SPF_FAIL SPF check failed
|
|
* 0.0 SPF_HELO_NONE SPF: HELO does not publish an SPF Record
|
|
* 0.0 HTML_MESSAGE BODY: HTML included in message
|
|
* -0.1 DKIM_VALID_AU Message has a valid DKIM or DK signature from
|
|
* author's domain
|
|
* -0.1 DKIM_VALID Message has at least one valid DKIM or DK signature
|
|
* 0.1 DKIM_SIGNED Message has a DKIM or DK signature, not necessarily
|
|
* valid
|
|
* 0.0 T_KAM_HTML_FONT_INVALID Test for Invalidly Named or Formatted
|
|
* Colors in HTML
|
|
* -5.0 SPF_FAIL_IGNORE Planio Inbox does not consider SPF FAILS on
|
|
* redirects
|
|
X-Spam-Score: -2.1
|
|
Authentication-Results: m.launch.gmbh; dmarc=pass (p=none dis=none) header.from=weekinsecurity.com
|
|
Authentication-Results: m.launch.gmbh; spf=fail smtp.mailfrom=mail230.atl61.mcsv.net
|
|
Authentication-Results: m.launch.gmbh;
|
|
dkim=pass (1024-bit key; unprotected) header.d=weekinsecurity.com header.i=this@weekinsecurity.com header.a=rsa-sha256 header.s=k1 header.b=Zc282kQV;
|
|
dkim-atps=neutral
|
|
Envelope-to: inbox+rlxc+36be+hoax-clearing-center@plan.io
|
|
Received: from pdx1-sub0-mail-mx209.dreamhost.com (fltr-in2.mail.dreamhost.com [64.90.62.164])
|
|
(using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)
|
|
key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256)
|
|
(No client certificate requested)
|
|
by m.launch.gmbh (Postfix) with ESMTPS id 97399168417
|
|
for <inbox+rlxc+36be+hoax-clearing-center@plan.io>; Sun, 19 Jan 2025 18:13:01 +0100 (CET)
|
|
Received: from postfix-inbound-v2-3.inbound.mailchannels.net (inbound-egress-7.mailchannels.net [23.83.220.5])
|
|
(using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)
|
|
key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256)
|
|
(No client certificate requested)
|
|
by pdx1-sub0-mail-mx209.dreamhost.com (Postfix) with ESMTPS id 4Ybg5k6y6szB4xS
|
|
for <lapor@turnbackhoax.id>; Sun, 19 Jan 2025 09:12:58 -0800 (PST)
|
|
ARC-Seal: i=1; s=arc-2022; d=mailchannels.net; t=1737306777; a=rsa-sha256;
|
|
cv=none;
|
|
b=pzXDHEkEVZnigm43Netdham2FNSw1YpuSfM1b9BQqpfrwCN028LBngPtPpu5DIn+tN3rNU
|
|
4WeLKtOwc1NtYU8BFaJ8cR3DhnZ++KDgw3HkAqyc1dM5WOQyb+JA97SjCV1bsGNljhEbda
|
|
GOW4VaQWDEHZwHLA/jI/CcVirsQJb2cX4N4lKXb7xhalYUl8cvghVRByX+MgSehtS42EEk
|
|
jPwSowURvOb30fDkDsTnPk7iZvbYsCUISFhmXXXYEP/JkcFXON915r3feGl2ZLWJHQipw/
|
|
nL1qDdOFEZ4sWW5lNB6Rzp0GtNK1kgqJ92Oud96hBYiPkL0YBU3tTydm63XYGg==
|
|
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed;
|
|
d=mailchannels.net;
|
|
s=arc-2022; t=1737306777;
|
|
h=from:from:reply-to:reply-to:subject:subject:date:date:
|
|
message-id:message-id:to:to:cc:mime-version:mime-version:
|
|
content-type:content-type:list-id:list-unsubscribe:
|
|
list-unsubscribe-post:dkim-signature;
|
|
bh=IW44JgFJWKk3DKEOuLqUEmFB3R/qC3ZhYcR3fhywgrg=;
|
|
b=LaMTsdbQbKUc/EhIAA2zPqW/ctMxXGM9tYxhFCnPBnXIcvtlntj6XZEwzEUqBtEp3y69su
|
|
N5uq2La2J5Gi5lBNzfYTkXLY9OpqtbXBHUBQoWoI+vBwyG8VOH1H/3JqZT6h0qQNCdUeV8
|
|
nNBQIQZ8op9Z7AdTs5ZhbYQUTFgJ/E63xlEGgCCjZYvHhiho66G8++W6OqdjbJI/P5UrMs
|
|
B5pB13iSRLNRlPAM9t9WHrxkMmQGlsgy9soMLBQWbwFZsBEZuvpt6mL0R1ZOZpCKJ6g8oi
|
|
RPiQ73fNXcJk1Jk+/9kfGjXpsLgS283Q52Y9BicQWH+bAml5V/ZcKwrtW7WLUg==
|
|
ARC-Authentication-Results: i=1;
|
|
inbound-rspamd-7d6dbf97d6-dfw8m;
|
|
none
|
|
X-Message-ID: lfU6qjhejddY3UqMS0HMXTOu
|
|
Received: from mail230.atl61.mcsv.net (mail230.atl61.mcsv.net
|
|
[205.201.135.230])
|
|
(using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384)
|
|
by 100.116.67.154 (trex/6.10.3);
|
|
Sun, 19 Jan 2025 17:12:58 +0000
|
|
Authentication-Results: inbound.mailchannels.net;
|
|
spf=pass
|
|
smtp.mailfrom=bounce-mc.us18_98818529.11206409-9d10de3b61@mail230.atl61.mcsv.net;
|
|
dkim=pass header.d=weekinsecurity.com;
|
|
dmarc=pass (policy=none; pct=5; status=pass);
|
|
arc=none
|
|
Received-SPF: pass (dmarc-service-5d68fff777-z2jnr: domain of
|
|
mail230.atl61.mcsv.net designates 205.201.135.230 as permitted sender)
|
|
client-ip=205.201.135.230;
|
|
envelope-from=bounce-mc.us18_98818529.11206409-9d10de3b61@mail230.atl61.mcsv.net;
|
|
helo=mail230.atl61.mcsv.net;
|
|
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=weekinsecurity.com;
|
|
s=k1; t=1737306776; x=1737576776; i=this@weekinsecurity.com;
|
|
bh=IW44JgFJWKk3DKEOuLqUEmFB3R/qC3ZhYcR3fhywgrg=;
|
|
h=Subject:From:Reply-To:To:Date:Message-ID:X-MC-User:Feedback-ID:
|
|
List-ID:List-Unsubscribe:List-Unsubscribe-Post:Content-Type:
|
|
MIME-Version:CC:Date:Subject:From;
|
|
b=Zc282kQVlFIuEokFtZhCOYyLKWngnK3775kxFcX/FoKGlK71xnPjbyWYfiU65KCEr
|
|
LYrNbphPIN48rAGoWhswMDrgj4G9eMzovoX56q67and/66ZObjIs6JxFp/c2IWD985
|
|
JX0VWdgqUP6RjD7xrSQQsWSUfzvjsbHSchGdbkTE=
|
|
Subject: =?utf-8?Q?this=20week=20in=20security=20=E2=80=94=20january=2019=20edition?=
|
|
From: Zack Whittaker <this@weekinsecurity.com>
|
|
Reply-To: =?utf-8?Q?Zack=20Whittaker?= <this@weekinsecurity.com>
|
|
To: <lapor@turnbackhoax.id>
|
|
Date: Sun, 19 Jan 2025 17:12:52 +0000
|
|
Message-ID: <e1ad6038c994abec17dafb116.9d10de3b61.20250119171246.7689afb4b2.efec7967@mail230.atl61.mcsv.net>
|
|
X-Mailer: Mailchimp Mailer - **CID7689afb4b29d10de3b61**
|
|
X-Campaign: mailchimpe1ad6038c994abec17dafb116.7689afb4b2
|
|
X-campaignid: mailchimpe1ad6038c994abec17dafb116.7689afb4b2
|
|
X-Report-Abuse: Please report abuse for this campaign here: https://mailchimp.com/contact/abuse/?u=e1ad6038c994abec17dafb116&id=7689afb4b2&e=9d10de3b61
|
|
X-MC-User: e1ad6038c994abec17dafb116
|
|
Feedback-ID: 98818529:98818529.11206409:us18:mc
|
|
List-ID: e1ad6038c994abec17dafb116mc list <e1ad6038c994abec17dafb116.94603.list-id.mcsv.net>
|
|
X-Accounttype: pd
|
|
List-Unsubscribe: <https://social.us18.list-manage.com/unsubscribe?u=e1ad6038c994abec17dafb116&id=a2457dc8ad&t=h&e=9d10de3b61&c=7689afb4b2>, <mailto:unsubscribe-mc.us18_e1ad6038c994abec17dafb116.7689afb4b2-9d10de3b61@unsubscribe.mailchimpapp.net?subject=unsubscribe>
|
|
List-Unsubscribe-Post: List-Unsubscribe=One-Click
|
|
Content-Type: multipart/alternative; boundary="_----------=_MCPart_1880723574"
|
|
MIME-Version: 1.0
|
|
|
|
This is a multi-part message in MIME format
|
|
|
|
--_----------=_MCPart_1880723574
|
|
Content-Type: text/plain; charset="utf-8"; format="fixed"
|
|
Content-Transfer-Encoding: quoted-printable
|
|
|
|
** ~this week in security~
|
|
------------------------------------------------------------
|
|
a cybersecurity newsletter by @zackwhittaker (https://mastodon.social/@zac=
|
|
kwhittaker)
|
|
|
|
volume 8=2C issue 3
|
|
View this email in your browser (https://mailchi.mp/weekinsecurity/this-we=
|
|
ek-in-security-january-19-2025-edition?e=3D9d10de3b61) | RSS (https://us18.c=
|
|
ampaign-archive.com/feed?u=3De1ad6038c994abec17dafb116&id=3Da2457dc8ad)
|
|
|
|
~ ~
|
|
|
|
|
|
** THIS WEEK=2C TL;DR
|
|
------------------------------------------------------------
|
|
PowerSchool breach may affect millions of students; no MFA on hacked accou=
|
|
nt (https://techcrunch.com/2025/01/15/powerschool-data-breach-victims-say-=
|
|
hackers-stole-all-historical-student-and-teacher-data/)
|
|
TechCrunch: Bear with me=2C there's a lot this week. Let's start with one=
|
|
of the biggest hacks of the year (already=2C I know): PowerSchool=2C used=
|
|
by 18=2C000 schools and 60+ million students=2C was breached. In absence=
|
|
of information from the company=2C affected school districts helped each=
|
|
other (https://techcrunch.com/2025/01/18/how-victims-of-powerschools-data=
|
|
-breach-helped-each-other-investigate-massive-hack/) to investigate=2C whi=
|
|
le some districts say "all" historical staff and student (https://techcrun=
|
|
ch.com/2025/01/15/powerschool-data-breach-victims-say-hackers-stole-all-hi=
|
|
storical-student-and-teacher-data/) data was stolen. Turns out PowerSchool=
|
|
wasn't using MFA (https://techcrunch.com/2025/01/17/malware-stole-interna=
|
|
l-powerschool-passwords-from-engineers-hacked-computer/) on one of its sup=
|
|
port accounts=2C which granted the hackers access to steal gobs of data. A=
|
|
lot of highly sensitive student data was taken; including grades=2C medic=
|
|
al data=2C SSNs=2C and more. Many schools have already notified
|
|
their students of the breach=2C so stay on alert for more. My team at Tech=
|
|
Crunch did incredible reporting on this story this week (disclosure: obvio=
|
|
us bias alert!). Keep a close eye on this!
|
|
More: PowerSchool (https://www.powerschool.com/security/sis-incident/) | T=
|
|
echCrunch (https://techcrunch.com/2025/01/17/malware-stole-internal-powers=
|
|
chool-passwords-from-engineers-hacked-computer/) | K12TechPro (https://k12=
|
|
techpro.com/one-week-later-and-we-still-have-questions-about-the-powerscho=
|
|
ol-breach/) | USA Today (https://www.usatoday.com/story/news/education/202=
|
|
5/01/13/powerschool-data-breach-what-to-know-students/77667159007/) | @mal=
|
|
warejake (https://infosec.exchange/@malwarejake/113845139843736751)
|
|
https://infosec.exchange/@malwarejake/113845139843736751
|
|
Treasury names and sanctions Salt Typhoon=2C and the hacker targeting Trea=
|
|
sury (https://home.treasury.gov/news/press-releases/jy2792)
|
|
U.S. Treasury: In its final days=2C the Biden administration's cyber team=
|
|
has named=2C shamed=2C and sanctioned the group known as Salt Typhoon=2C=
|
|
the China-backed hackers behind the biggest breach of U.S. phone and inte=
|
|
rnet giants; as well as the hacker behind the recent Treasury hacks. Look=
|
|
at that; things can happen at speed when they want to get done... Per the=
|
|
Treasury=2C Salt Typhoon is linked to a Sichuan-based cybersecurity compa=
|
|
ny called Sichuan Juxinhe=2C and has "direct involvement" with the hacking=
|
|
group. Meanwhile=2C the U.S. Treasury is sanctioning Yin Kecheng=2C a Sha=
|
|
nghai-based cyber actor affiliated with the Chinese MSS=2C the ministry fo=
|
|
r foreign intelligence=2C with the hack of the Treasury itself. Bloomberg=
|
|
($) (https://www.bloomberg.com/news/articles/2025-01-16/treasury-hackers-=
|
|
focused-on-sanctions-intelligence-report-says) revealed that the scope of=
|
|
the Treasury hack includes the breach of 400+ computers and the theft of=
|
|
more than 3=2C000 files from the department. All this comes in the
|
|
same week that the feds unsealed action (https://arstechnica.com/tech-poli=
|
|
cy/2025/01/fbi-forces-chinese-malware-to-delete-itself-from-thousands-of-u=
|
|
s-computers/) they took to force-remove the China-linked PluxX malware fro=
|
|
m thousands of U.S. computers. Departing CISA chief Jen Easterly posted so=
|
|
me words (https://www.cisa.gov/news-events/news/strengthening-americas-res=
|
|
ilience-against-prc-cyber-threats) on the threat from China; and the outgo=
|
|
ing FBI director (https://bsky.app/profile/kimzetter.bsky.social/post/3lfm=
|
|
znfaj2k2u) also shared his views.
|
|
More: Washington Post ($) (https://www.washingtonpost.com/national-securit=
|
|
y/2025/01/13/salt-typhoon-china-sanctions-biden/) | CBS News (https://www.=
|
|
cbsnews.com/news/fbi-director-christopher-wray-on-threats-america-faces-de=
|
|
cision-to-step-down-60-minutes-transcript/) | Ars Technica (https://arstec=
|
|
hnica.com/tech-policy/2025/01/fbi-forces-chinese-malware-to-delete-itself-=
|
|
from-thousands-of-us-computers/) | @argvee (https://x.com/argvee/status/18=
|
|
79926597815504948) | @dnvolz (https://x.com/dnvolz/status/1878822293817971=
|
|
074)
|
|
|
|
Biden admin goes all out on final cyber executive order (https://www.csoon=
|
|
line.com/article/3802476/biden-white-house-to-go-all-out-in-final-sweeping=
|
|
-cybersecurity-order.html)
|
|
CSO Online: Relatedly... it's the Biden cyber team's swan song with their=
|
|
final executive order. Rushed out in the last days of the administration=
|
|
=2C outgoing top cyber official Anne Neuberger set out the order as settin=
|
|
g up the next administration on the best possible footing. But as it was h=
|
|
er last briefing=2C Neuberger said it wasn't clear to her who was doing wh=
|
|
at in cyber under Trump =E2=80=94 since she won't be around to see it. Muc=
|
|
h of the order was patching issues the government had worked on over the p=
|
|
ast few years. It's unclear if the Trump admin will accept or rescind the=
|
|
order=2C details of which you can read here (https://www.whitehouse.gov/b=
|
|
riefing-room/presidential-actions/2025/01/16/executive-order-on-strengthen=
|
|
ing-and-promoting-innovation-in-the-nations-cybersecurity/) and Wired ($)=
|
|
(https://www.wired.com/story/biden-executive-order-cybersecurity-ai-and-m=
|
|
ore/) has a breakdown=2C too. Much of the Trump admin's public rhetoric ha=
|
|
s been on cyber-offense=2C which only really seems like a smart
|
|
idea if you've got an incredibly strong defense base at home =E2=80=94 whi=
|
|
ch... we don't.
|
|
More: White House (https://www.whitehouse.gov/briefing-room/presidential-a=
|
|
ctions/2025/01/16/executive-order-on-strengthening-and-promoting-innovatio=
|
|
n-in-the-nations-cybersecurity/) | Cyberscoop (https://cyberscoop.com/aggr=
|
|
essive-cyber-offense-trump-administration-us-strategy-debate/) | CNBC (htt=
|
|
ps://www.cnbc.com/2025/01/16/biden-administration-launches-cybersecurity-e=
|
|
xecutive-order.html) | Axios (https://www.axios.com/2025/01/16/biden-execu=
|
|
tive-order-ai-cyber-security-trump)
|
|
|
|
Fortinet warns of auth. bypass zero-day under attack to hijack firewalls (=
|
|
https://www.bleepingcomputer.com/news/security/fortinet-warns-of-auth-bypa=
|
|
ss-zero-day-exploited-to-hijack-firewalls/)
|
|
Bleeping Computer: It's a day ending in "y=2C" so of course there's yet an=
|
|
other major bug in a widely used enterprise security edge device that allo=
|
|
ws hackers to break into the network ostensibly protected by the product.=
|
|
This week it's Fortinet=2C whose firewalls are vulnerable to CVE-2024-555=
|
|
91 (https://www.fortiguard.com/psirt/FG-IR-24-535) =2C which Fortinet says=
|
|
is under active exploitation in the wild. Arctic Wolf (https://arcticwolf=
|
|
=2Ecom/resources/blog/console-chaos-targets-fortinet-fortigate-firewalls/) s=
|
|
ays the bug was first exploited back in November=2C so... that's probably=
|
|
a fair number of organizations pwned so far. This lands in the same week=
|
|
that a hacking group released config files and VPN credentials on over 15=
|
|
=2C000 Fortinet devices=2C which @GossiTheDog (https://doublepulsar.com/20=
|
|
22-zero-day-was-used-to-raid-fortigate-firewall-configs-somebody-just-rele=
|
|
ased-them-a7a74e0b0c7f?gi=3D06d38535bbd7) has a good blog post with more d=
|
|
etails.
|
|
More: Fortinet (https://www.fortiguard.com/psirt/FG-IR-24-535) | TechCrunc=
|
|
h (https://techcrunch.com/2025/01/14/hackers-are-exploiting-a-new-fortinet=
|
|
-firewall-bug-to-breach-company-networks/) | The Register (https://www.the=
|
|
register.com/2025/01/14/miscreants_mass_exploited_fortinet_firewalls/)
|
|
|
|
Microsoft's first Patch Tuesday of 2025 patches 161 bugs (https://krebsons=
|
|
ecurity.com/2025/01/microsoft-happy-2025-heres-161-security-updates/)
|
|
Krebs on Security: Speaking of bugs=2C get your fill of flaws in this mont=
|
|
h's Patch Tuesday. Krebs has your run-down of the 161 updates from Microso=
|
|
ft=2C including three privilege escalation zero-days in Hyper-V=2C but lit=
|
|
tle is known about the bugs under attack in the wild just yet. The monthly=
|
|
bug patch includes six kernel address leak fixes=2C all submitted by @yar=
|
|
den_shafir (https://x.com/yarden_shafir/status/1879340852654551053) . That=
|
|
's incredible work! And thanks as always to Krebs for pulling these report=
|
|
s together!
|
|
More: CrowdStrike (https://www.crowdstrike.com/en-us/blog/patch-tuesday-an=
|
|
alysis-january-2025/) | Cyberscoop (https://cyberscoop.com/microsoft-patch=
|
|
-tuesday-january-2025/) | @screaminggoat (https://infosec.exchange/@scream=
|
|
inggoat/113826625290043358)
|
|
https://x.com/yarden_shafir/status/1879340852654551053
|
|
~ ~
|
|
|
|
|
|
** THE STUFF YOU MIGHT'VE MISSED
|
|
------------------------------------------------------------
|
|
Texas sues Allstate for violating privacy rights of 45 million Americans (=
|
|
https://therecord.media/texas-sues-allstate-data-privacy-cars)
|
|
The Record: Texas' attorney general is suing Allstate and its subsidiary A=
|
|
rity for allegedly collecting=2C using and selling cellphone location data=
|
|
and customers' movements of more than 45 million Americans without their=
|
|
knowledge=2C per a presser (https://www.texasattorneygeneral.gov/news/rel=
|
|
eases/attorney-general-ken-paxton-sues-allstate-and-arity-unlawfully-colle=
|
|
cting-using-and-selling-over-45) . (Ars Technica (https://arstechnica.com/=
|
|
gadgets/2025/01/allstate-sued-for-allegedly-tracking-drivers-behavior-thro=
|
|
ugh-third-party-apps/) has some good yarn=2C too.) Allstate and other insu=
|
|
rers would "use that consumer=E2=80=99s data to justify increasing their c=
|
|
ar insurance premium." Yuck=2C gross. Damn=2C if only they'd do something=
|
|
about this kind of invasive data collection and not say=2C oh I don't kno=
|
|
w=2C not focus on some nebulous threat from TikTok?
|
|
|
|
At least 8 Americans wrongly arrested after AI face matches (https://www.w=
|
|
ashingtonpost.com/business/interactive/2025/police-artificial-intelligence=
|
|
-facial-recognition/)
|
|
Washington Post ($): Get yourself a pot of coffee and riled up for this we=
|
|
ekend long-read. This infuriating story (the piece itself is very well don=
|
|
e) looks at deficiencies in policing standards across the U.S. resulting i=
|
|
n overconfidence by police that AI and facial recognition was working =E2=
|
|
=80=94 when it absolutely wasn't. The effect that these arrests had on the=
|
|
ir lives can't be understated.
|
|
|
|
How Barcelona became an unlikely hub for spyware makers (https://techcrunc=
|
|
h.com/2025/01/13/how-barcelona-became-an-unlikely-hub-for-spyware-startups=
|
|
/)
|
|
TechCrunch: Sun=2C seafood=2C beautiful beaches... and spyware? That's Bar=
|
|
celona=2C Europe's newest spyware hub=2C according to multiple people invo=
|
|
lved in the spyware and exploit making business=2C who spoke with @lorenzo=
|
|
fb (https://bsky.app/profile/lorenzofb.bsky.social/post/3lfpkfzkucc2r) . T=
|
|
he piece follows a would-be hire at a shadowy=2C secretive spyware maker s=
|
|
tarting out in Barcelona. Sure=2C Barcelona sounds fun and the city clearl=
|
|
y has incentives to move there=2C but it's actually easier for spyware mak=
|
|
ers to export their products to Europe from Europe than it is from Israel=
|
|
=2C where many of these companies started out. At least for one person=2C=
|
|
moving to Spain was because of "expulsion" over emigration. This story go=
|
|
t an important shoutout by Citizen Lab's @jsrailton (https://bsky.app/prof=
|
|
ile/jsrailton.bsky.social) at the U.N. Security Council=2C which saw gover=
|
|
nments this week call for regulations
|
|
(https://techcrunch.com/2025/01/15/governments-call-for-spyware-regulation=
|
|
s-in-un-security-council-meeting/) on the use of spyware.
|
|
|
|
Millions of 'failed' accounts vulnerable due to Google's OAuth Flaw (https=
|
|
://trufflesecurity.com/blog/millions-at-risk-due-to-google-s-oauth-flaw)
|
|
Truffle Security: OAuth=2C the login feature that lets you sign in with an=
|
|
online account (think the "sign in with Google" login option) can have it=
|
|
s benefits=2C but you're putting your account access in the hands of someo=
|
|
ne else; in this case=2C Google. If you lose access to your account (or Go=
|
|
ogle bans you)=2C you're stuffed. This same issue happens with expired or=
|
|
lost domains=2C such as when a startup collapses; you can re-access any a=
|
|
ccount that's connected to the newly revived domain (like Zoom=2C HR syste=
|
|
ms=2C and more). Truffle Security has a good post on what happens if you b=
|
|
uy these expired domains and what access you can get to defunct Google acc=
|
|
ounts. The research was presented at ShmooCon; you can watch the talk from=
|
|
the blog.
|
|
https://trufflesecurity.com/blog/millions-at-risk-due-to-google-s-oauth-fl=
|
|
aw
|
|
Russian FSB campaign aims to exploit WhatsApp accounts (https://www.micros=
|
|
oft.com/en-us/security/blog/2025/01/16/new-star-blizzard-spear-phishing-ca=
|
|
mpaign-targets-whatsapp-accounts/)
|
|
Microsoft: Hackers believed to be associated with Russia's FSB are behind=
|
|
a new campaign targeting access to WhatsApp users. Microsoft's new resear=
|
|
ch shows (https://www.microsoft.com/en-us/security/blog/2025/01/16/new-sta=
|
|
r-blizzard-spear-phishing-campaign-targets-whatsapp-accounts/) the hackers=
|
|
are using fake QR codes to gain access to WhatsApp accounts =E2=80=94 whi=
|
|
ch=2C let's not forget=2C are widely used across governments (and in the U=
|
|
=2EK. (https://www.politico.eu/article/the-british-governments-disappearing-=
|
|
whatsapps/) ). The Guardian (https://www.theguardian.com/technology/2025/j=
|
|
an/17/russian-hackers-star-blizzard-whatsapp-accounts-ministers-officials)=
|
|
has a good tl;dr.
|
|
~ ~
|
|
THANKS FOR READING!
|
|
|
|
~this week in security~ is my free weekly cybersecurity newsletter support=
|
|
ed entirely by donations from readers like you. As a working journalist (h=
|
|
ttps://techcrunch.com/author/zack-whittaker/) =2C I don't run ads or accep=
|
|
t sponsors for this newsletter. Donations help reduce the costs of sending=
|
|
this newsletter while keeping it free=2C weekly=2C and without tracking.
|
|
|
|
To support this newsletter=2C check out my Ko-fi (https://ko-fi.com/thiswe=
|
|
ekinsecurity) to drop a one-time donation=2C or sign up from $10/monthly t=
|
|
o get cool swag (https://ko-fi.com/thisweekinsecurity/tiers) shipped world=
|
|
wide.
|
|
~ ~
|
|
|
|
|
|
** OTHER NEWSY NUGGETS
|
|
------------------------------------------------------------
|
|
Clop claims hacked Cleo customers: The Clop ransomware gang's latest mass-=
|
|
hack campaign targeting customers of Cleo Software seemed to return little=
|
|
=2C if anything=2C on the ransom front and appears to have been a bust. Cl=
|
|
op named dozens of companies that it claimed to have hacked in recent week=
|
|
s by way of exploiting a zero-day in the Cleo software used by its custome=
|
|
rs=2C but actually=2C many of the companies said they had no evidence they=
|
|
were hacked (https://techcrunch.com/2025/01/16/clop-ransomware-gang-names=
|
|
-dozens-of-victims-hit-by-cleo-mass-hack-but-several-firms-dispute-breache=
|
|
s/) (which of course doesn't mean they weren't)=2C but several said they w=
|
|
eren't even Cleo customers! (via TechCrunch (https://techcrunch.com/2025/0=
|
|
1/16/clop-ransomware-gang-names-dozens-of-victims-hit-by-cleo-mass-hack-bu=
|
|
t-several-firms-dispute-breaches/) )
|
|
|
|
Gov't websites awash with scams and porn: Reports this week show both U.S.=
|
|
federal (https://theintercept.com/2025/01/14/government-websites-porn-spa=
|
|
m-hack/) and Indian government websites (https://techcrunch.com/2025/01/07=
|
|
/indian-government-websites-are-still-redirecting-users-to-scam-sites/) ar=
|
|
e full of spam=2C scams=2C and sometimes porn=2C for reasons that aren't c=
|
|
ompletely clear=2C but somehow=2C somewhere=2C hackers are breaking in and=
|
|
dropping pages and redirects to their own sites=2C which are getting cach=
|
|
ed in Google and other search engines. It's not a new issue by any means..=
|
|
=2E and yet=2C nevertheless=2C it persists. (via The Intercept ($) (https://=
|
|
theintercept.com/2025/01/14/government-websites-porn-spam-hack/) =2C @dell=
|
|
(https://bsky.app/profile/dell.bsky.social/post/3lfqntcqbis2v) )
|
|
https://bsky.app/profile/dell.bsky.social/post/3lfqntcqbis2v
|
|
British ban busts bad bods' business: The U.K. government says it's going=
|
|
to =E2=80=94 probably=2C maybe=2C someday =E2=80=94 ban itself and other=
|
|
public sector organizations=2C including schools and local councils=2C fr=
|
|
om paying any hacker ransoms following a cyberattack. The U.K.'s security=
|
|
minister says it's only a proposal for now (details within (https://www.g=
|
|
ov.uk/government/news/world-leading-proposals-to-protect-businesses-from-c=
|
|
ybercrime) )=2C but comes after a series of major hacks at NHS trusts acro=
|
|
ss the U.K. over the past year=2C including the Synnovis lab hack=2C which=
|
|
Bloomberg ($) (https://www.bloomberg.com/news/articles/2025-01-14/nhs-ran=
|
|
somware-hack-caused-patient-harm-in-uk-data-shows) reports that a post-mor=
|
|
tem of the incident shows it had real-world harm on patients. (via U.K. go=
|
|
vernment (https://www.gov.uk/government/news/world-leading-proposals-to-pr=
|
|
otect-businesses-from-cybercrime) =2C Home Office
|
|
(https://www.gov.uk/government/consultations/ransomware-proposals-to-incre=
|
|
ase-incident-reporting-and-reduce-payments-to-criminals) )
|
|
|
|
Otelier breach exposes millions of hotel goers: Well=2C this ain't good: O=
|
|
telier=2C a hotel management platform=2C was hit by a data breach after th=
|
|
reat actors broke into the company's AWS S3 cloud storage and stole millio=
|
|
ns of guests' information and reservations from well-known hotel chains li=
|
|
ke Marriott=2C Hilton=2C and Hyatt. Otelier confirmed it was hacked=2C and=
|
|
apparently it was due to stolen credentials (through info-stealing malwar=
|
|
e=2C no less =E2=80=94 a common theme!). It's unclear if MFA was used; but=
|
|
either way=2C that's an eye-wateringly big breach for such a simple=2C ba=
|
|
sic security issue. (via Bleeping Computer (https://www.bleepingcomputer.c=
|
|
om/news/security/otelier-data-breach-exposes-info-hotel-reservations-of-mi=
|
|
llions/) )
|
|
|
|
CISA to get new leadership: Politico reports that with leadership at CISA=
|
|
(and the rest of the Biden administration's political appointments) leavi=
|
|
ng on January 20 ahead of the Trump admin's inauguration=2C the CISA top j=
|
|
ob may end up going to former Dept. of Energy and NSC staffer Sean Plankey=
|
|
=2E I guess we'll find out in=2C *checks notes*=2C a day or two or whenever.=
|
|
(via Politico (https://www.politico.com/live-updates/2025/01/15/congress/=
|
|
sean-plankey-likely-to-lead-u-s-cyber-agency-00198382) )
|
|
|
|
TikTok and others disappear after U.S. ban: We can't not talk about the Ti=
|
|
kTok ban that went into effect overnight. I have a lot of opinions on this=
|
|
=2C but suffice to say=2C it's clearly a First Amendment issue (https://co=
|
|
nstitution.congress.gov/constitution/amendment-1/) to ban an app (ie. Cong=
|
|
ress created a law that prohibits free expression)=2C and that the nationa=
|
|
l security concerns aren't that much different from the U.S. tech giants t=
|
|
hat exploit their users the same way=2C just at home where that data=2C an=
|
|
d algorithms that handle that data=2C can also be used against them. If Ti=
|
|
kTok is a national security threat=2C so is Meta=2C so is X=2C and so are=
|
|
data brokers that collect all of this data and share it with others. And=
|
|
please=2C don't try to use a shady VPN to get around the ban; not least=
|
|
=2C you can't=2C but also it's just very=2C very bad for your security to=
|
|
hand your network traffic to an entity you cannot trust any more than you=
|
|
r ISP. (via BBC News (https://www.bbc.com/news/articles/cz6p1g54q85o) =2C
|
|
Associated Press (https://apnews.com/article/tiktok-ban-trump-biden-china-=
|
|
bdc79b7ce741a81761f67ea56d410103) =2C Wired ($) (https://www.wired.com/sto=
|
|
ry/how-to-get-around-the-us-tiktok-ban/) )
|
|
https://x.com/ShyBucketGetter/status/1879400978946097448
|
|
~ ~
|
|
|
|
|
|
** THE HAPPY CORNER
|
|
------------------------------------------------------------
|
|
There's no time to wait. Happy corner=2C commence!
|
|
|
|
Next time you hear that a large enterprise or corporate giant was hit by a=
|
|
"sophisticated attacker=2C" remember that it was probably just a fat cat=
|
|
(https://x.com/vxunderground/status/1878184456340615458) and not the moun=
|
|
tain lion you might be picturing.
|
|
https://x.com/vxunderground/status/1878184456340615458
|
|
Moving on. Not even Harry Potter can escape the corporate phishing test (h=
|
|
ttps://hachyderm.io/@forrestbrazeal/113829121978374399) .
|
|
https://hachyderm.io/@forrestbrazeal/113829121978374399
|
|
Now=2C in obscure science news (https://www.bbc.com/news/videos/cly9vl9jjk=
|
|
vo) . Imagine you're a piece of interstellar rock=2C hurtling through spac=
|
|
e at absolutely ridiculous speeds. You're whizzing past asteroids=2C stars=
|
|
=2C and through the dust of the occasional comet trail. Then=2C out of now=
|
|
here=2C you see this bright=2C blue=2C beautiful planet in the distance...=
|
|
and as you get nearer=2C you see that it's this round=2C gorgeous oasis i=
|
|
n space=2C and you can't wait to get even closer. As you approach=2C you f=
|
|
eel like you're speeding up=2C as you dodge your way through a cluster of=
|
|
orbiting satellites... you're getting hotter and hotter=2C but closer and=
|
|
closer... and you're nearly there and...
|
|
https://www.bbc.com/news/videos/cly9vl9jjkvo
|
|
=2E..whoops? Well=2C by catching this footage on a doorbell camera (https://=
|
|
www.bbc.com/news/videos/cly9vl9jjkvo) =2C it's a historic first since thes=
|
|
e sorts of events don't happen very often=2C scientists say (https://www.l=
|
|
ivescience.com/space/doorbell-camera-captures-1st-ever-video-of-the-sound-=
|
|
and-sight-of-a-meteorite-crash-landing) .
|
|
|
|
And before we go: bonus cybercat (https://infosec.exchange/@hal_pomeranz/1=
|
|
13851892936658346) =2C because why not?
|
|
If you have good news you want to share=2C get in touch at: this@weekinsec=
|
|
urity.com (mailto:this@weekinsecurity.com?subject=3DGood%20news%20for%20yo=
|
|
ur%20newsletter) .
|
|
~ ~
|
|
|
|
|
|
** CYBER CATS & FRIENDS
|
|
------------------------------------------------------------
|
|
Meet Shane=2C this week's cyber cat. If you think companies take your secu=
|
|
rity and privacy seriously=2C you'd be right to be suspicious. Shane=2C on=
|
|
the other hand=2C really does want you to take your security and privacy=
|
|
seriously. You're a great advocate=2C Shane! (ba-dum tssk.) Thanks so muc=
|
|
h to Rob S. for sending in!
|
|
Shane is a very handsome=2C green-eyed tabby cat who's looking directly in=
|
|
to the camera with a serious (but cute!) expression on his face.
|
|
Keep sending in your cyber cats! (mailto:this@weekinsecurity.com?Subject=
|
|
=3DCyber%20Cat%20%28%26%20Friends%29%20submission&Body=3DPlease%20include%=
|
|
20a%20JPG%20of%20your%20cyber%20cat%20%28or%20other%20non-feline%20friend%=
|
|
29%2C%20their%20name%2C%20and%20also%20your%20name%20and/or%20Twitter%20ha=
|
|
ndle%20if%20you%20want%20credit.) (or a non-feline friend). Drop me an ema=
|
|
il at any time with their name and a photo=2C and they'll be featured in a=
|
|
n upcoming newsletter!
|
|
~ ~
|
|
|
|
|
|
** SUGGESTION BOX
|
|
------------------------------------------------------------
|
|
Thanks for reading this edition! I'll be back as usual with the roundup ne=
|
|
xt Sunday. I'm sure it'll be a busy one. For all those who are leaving the=
|
|
federal government on Monday=2C especially those who worked in cyber=2C t=
|
|
hank you for your service.
|
|
|
|
As always=2C if you have any feedback you want to share my way=2C please d=
|
|
rop me an email (mailto:this@weekinsecurity.com) =E2=80=94 or anything els=
|
|
e for the newsletter. Cyber cat or friend? Send 'em along!
|
|
|
|
All my best=2C
|
|
@zackwhittaker (http://mastodon.social/@zackwhittaker)
|
|
|
|
=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=
|
|
=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=
|
|
=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D
|
|
You are receiving this email because you opted in.
|
|
|
|
~this week in security~ doesn't track email opens or clicks.
|
|
($) indicate sites with paywalls or logins. Please support journalism!
|
|
|
|
Our mailing address is: ~this week in security~
|
|
Zack Whittaker
|
|
PO Box 415
|
|
Jersey City=2C NJ 07303-0415
|
|
USA
|
|
You can ** update your preferences (https://social.us18.list-manage.com/pr=
|
|
ofile?u=3De1ad6038c994abec17dafb116&id=3Da2457dc8ad&e=3D9d10de3b61&c=3D7689a=
|
|
fb4b2)
|
|
or ** unsubscribe from this list (https://social.us18.list-manage.com/unsu=
|
|
bscribe?u=3De1ad6038c994abec17dafb116&id=3Da2457dc8ad&t=3Db&e=3D9d10de3b61&c=
|
|
=3D7689afb4b2)
|
|
=2E
|
|
--_----------=_MCPart_1880723574
|
|
Content-Type: text/html; charset="utf-8"
|
|
Content-Transfer-Encoding: quoted-printable
|
|
|
|
<!doctype html>
|
|
<html xmlns=3D"http://www.w3.org/1999/xhtml" xmlns:v=3D"urn:schemas-micros=
|
|
oft-com:vml" xmlns:o=3D"urn:schemas-microsoft-com:office:office">
|
|
<head><meta name=3D"twitter:image:src" content=3D"https://gallery.mail=
|
|
chimp.com/e1ad6038c994abec17dafb116/images/dfcfdb2e-8ab2-450c-a830-1461d1a=
|
|
efb25.png"><meta name=3D"twitter:description" content=3D"Plus: Biden's fin=
|
|
al cyber order=2C Patch Tuesday=2C how Barcelona became a spyware hub; vic=
|
|
tims rebuff Clop mass-hack=2C and more."><meta name=3D"twitter:title" cont=
|
|
ent=3D"~this week in security~ january 19 edition"><meta name=3D"twitter:c=
|
|
ard" content=3D"summary_large_image"><meta property=3D"og:type" content=3D=
|
|
"article"><meta property=3D"og:description" content=3D"Plus: Biden's final=
|
|
cyber order=2C Patch Tuesday=2C how Barcelona became a spyware hub; victi=
|
|
ms rebuff Clop mass-hack=2C and more."><meta property=3D"og:image" content=
|
|
=3D"https://gallery.mailchimp.com/e1ad6038c994abec17dafb116/images/dfcfdb2=
|
|
e-8ab2-450c-a830-1461d1aefb25.png"><meta property=3D"og:title" content=3D"=
|
|
~this week in security~ january 19 edition"><meta property=3D"og:url" cont=
|
|
ent=3D"http://eepurl.com/i77iSI">
|
|
<!-- NAME: 1 COLUMN -->
|
|
<!--[if gte mso 15]>
|
|
<xml>
|
|
<o:OfficeDocumentSettings>
|
|
<o:AllowPNG/>
|
|
<o:PixelsPerInch>96</o:PixelsPerInch>
|
|
</o:OfficeDocumentSettings>
|
|
</xml>
|
|
<![endif]-->
|
|
<meta charset=3D"UTF-8">
|
|
<meta http-equiv=3D"X-UA-Compatible" content=3D"IE=3Dedge">
|
|
<meta name=3D"viewport" content=3D"width=3Ddevice-width=2C initial=
|
|
-scale=3D1">
|
|
<title>this week in security =E2=80=94 january 19 edition</title>
|
|
|
|
<style type=3D"text/css">
|
|
=09=09p{
|
|
=09=09=09margin:10px 0;
|
|
=09=09=09padding:0;
|
|
=09=09}
|
|
=09=09table{
|
|
=09=09=09border-collapse:collapse;
|
|
=09=09}
|
|
=09=09h1=2Ch2=2Ch3=2Ch4=2Ch5=2Ch6{
|
|
=09=09=09display:block;
|
|
=09=09=09margin:0;
|
|
=09=09=09padding:0;
|
|
=09=09}
|
|
=09=09img=2Ca img{
|
|
=09=09=09border:0;
|
|
=09=09=09height:auto;
|
|
=09=09=09outline:none;
|
|
=09=09=09text-decoration:none;
|
|
=09=09}
|
|
=09=09body=2C#bodyTable=2C#bodyCell{
|
|
=09=09=09height:100%;
|
|
=09=09=09margin:0;
|
|
=09=09=09padding:0;
|
|
=09=09=09width:100%;
|
|
=09=09}
|
|
=09=09.mcnPreviewText{
|
|
=09=09=09display:none !important;
|
|
=09=09}
|
|
=09=09#outlook a{
|
|
=09=09=09padding:0;
|
|
=09=09}
|
|
=09=09img{
|
|
=09=09=09-ms-interpolation-mode:bicubic;
|
|
=09=09}
|
|
=09=09table{
|
|
=09=09=09mso-table-lspace:0pt;
|
|
=09=09=09mso-table-rspace:0pt;
|
|
=09=09}
|
|
=09=09.ReadMsgBody{
|
|
=09=09=09width:100%;
|
|
=09=09}
|
|
=09=09.ExternalClass{
|
|
=09=09=09width:100%;
|
|
=09=09}
|
|
=09=09p=2Ca=2Cli=2Ctd=2Cblockquote{
|
|
=09=09=09mso-line-height-rule:exactly;
|
|
=09=09}
|
|
=09=09a[href^=3Dtel]=2Ca[href^=3Dsms]{
|
|
=09=09=09color:inherit;
|
|
=09=09=09cursor:default;
|
|
=09=09=09text-decoration:none;
|
|
=09=09}
|
|
=09=09p=2Ca=2Cli=2Ctd=2Cbody=2Ctable=2Cblockquote{
|
|
=09=09=09-ms-text-size-adjust:100%;
|
|
=09=09=09-webkit-text-size-adjust:100%;
|
|
=09=09}
|
|
=09=09.ExternalClass=2C.ExternalClass p=2C.ExternalClass td=2C.ExternalCla=
|
|
ss div=2C.ExternalClass span=2C.ExternalClass font{
|
|
=09=09=09line-height:100%;
|
|
=09=09}
|
|
=09=09a[x-apple-data-detectors]{
|
|
=09=09=09color:inherit !important;
|
|
=09=09=09text-decoration:none !important;
|
|
=09=09=09font-size:inherit !important;
|
|
=09=09=09font-family:inherit !important;
|
|
=09=09=09font-weight:inherit !important;
|
|
=09=09=09line-height:inherit !important;
|
|
=09=09}
|
|
=09=09table[align=3Dleft]{
|
|
=09=09=09float:left;
|
|
=09=09}
|
|
=09=09table[align=3Dright]{
|
|
=09=09=09float:right;
|
|
=09=09}
|
|
=09=09#bodyCell{
|
|
=09=09=09padding:10px;
|
|
=09=09}
|
|
=09=09.templateContainer{
|
|
=09=09=09max-width:600px !important;
|
|
=09=09}
|
|
=09=09a.mcnButton{
|
|
=09=09=09display:block;
|
|
=09=09}
|
|
=09=09.mcnImage=2C.mcnRetinaImage{
|
|
=09=09=09vertical-align:bottom;
|
|
=09=09}
|
|
=09=09.mcnTextContent{
|
|
=09=09=09word-break:break-word;
|
|
=09=09}
|
|
=09=09.mcnTextContent img{
|
|
=09=09=09height:auto !important;
|
|
=09=09}
|
|
=09=09.mcnDividerBlock{
|
|
=09=09=09table-layout:fixed !important;
|
|
=09=09}
|
|
=09=09body=2C#bodyTable{
|
|
=09=09=09background-color:#ffffff;
|
|
=09=09}
|
|
=09=09#bodyCell{
|
|
=09=09=09border-top:0;
|
|
=09=09}
|
|
=09=09.templateContainer{
|
|
=09=09=09border:0;
|
|
=09=09}
|
|
=09=09h1{
|
|
=09=09=09color:#202020;
|
|
=09=09=09font-family:Helvetica;
|
|
=09=09=09font-size:26px;
|
|
=09=09=09font-style:normal;
|
|
=09=09=09font-weight:bold;
|
|
=09=09=09line-height:125%;
|
|
=09=09=09letter-spacing:normal;
|
|
=09=09=09text-align:left;
|
|
=09=09}
|
|
=09=09h2{
|
|
=09=09=09color:#202020;
|
|
=09=09=09font-family:Helvetica;
|
|
=09=09=09font-size:22px;
|
|
=09=09=09font-style:normal;
|
|
=09=09=09font-weight:bold;
|
|
=09=09=09line-height:125%;
|
|
=09=09=09letter-spacing:normal;
|
|
=09=09=09text-align:left;
|
|
=09=09}
|
|
=09=09h3{
|
|
=09=09=09color:#202020;
|
|
=09=09=09font-family:Helvetica;
|
|
=09=09=09font-size:20px;
|
|
=09=09=09font-style:normal;
|
|
=09=09=09font-weight:bold;
|
|
=09=09=09line-height:125%;
|
|
=09=09=09letter-spacing:normal;
|
|
=09=09=09text-align:left;
|
|
=09=09}
|
|
=09=09h4{
|
|
=09=09=09color:#202020;
|
|
=09=09=09font-family:Helvetica;
|
|
=09=09=09font-size:18px;
|
|
=09=09=09font-style:normal;
|
|
=09=09=09font-weight:bold;
|
|
=09=09=09line-height:125%;
|
|
=09=09=09letter-spacing:normal;
|
|
=09=09=09text-align:left;
|
|
=09=09}
|
|
=09=09#templatePreheader{
|
|
=09=09=09background-color:#ffffff;
|
|
=09=09=09background-image:none;
|
|
=09=09=09background-repeat:no-repeat;
|
|
=09=09=09background-position:center;
|
|
=09=09=09background-size:cover;
|
|
=09=09=09border-top:0;
|
|
=09=09=09border-bottom:0;
|
|
=09=09=09padding-top:9px;
|
|
=09=09=09padding-bottom:9px;
|
|
=09=09}
|
|
=09=09#templatePreheader .mcnTextContent=2C#templatePreheader .mcnTextCont=
|
|
ent p{
|
|
=09=09=09color:#656565;
|
|
=09=09=09font-family:Helvetica;
|
|
=09=09=09font-size:12px;
|
|
=09=09=09line-height:150%;
|
|
=09=09=09text-align:left;
|
|
=09=09}
|
|
=09=09#templatePreheader .mcnTextContent a=2C#templatePreheader .mcnTextCo=
|
|
ntent p a{
|
|
=09=09=09color:#656565;
|
|
=09=09=09font-weight:normal;
|
|
=09=09=09text-decoration:underline;
|
|
=09=09}
|
|
=09=09#templateHeader{
|
|
=09=09=09background-color:#ffffff;
|
|
=09=09=09background-image:none;
|
|
=09=09=09background-repeat:no-repeat;
|
|
=09=09=09background-position:center;
|
|
=09=09=09background-size:cover;
|
|
=09=09=09border-top:0;
|
|
=09=09=09border-bottom:0;
|
|
=09=09=09padding-top:9px;
|
|
=09=09=09padding-bottom:0;
|
|
=09=09}
|
|
=09=09#templateHeader .mcnTextContent=2C#templateHeader .mcnTextContent p{
|
|
=09=09=09color:#202020;
|
|
=09=09=09font-family:Helvetica;
|
|
=09=09=09font-size:16px;
|
|
=09=09=09line-height:150%;
|
|
=09=09=09text-align:left;
|
|
=09=09}
|
|
=09=09#templateHeader .mcnTextContent a=2C#templateHeader .mcnTextContent=
|
|
p a{
|
|
=09=09=09color:#007C89;
|
|
=09=09=09font-weight:normal;
|
|
=09=09=09text-decoration:none;
|
|
=09=09}
|
|
=09=09#templateBody{
|
|
=09=09=09background-color:#ffffff;
|
|
=09=09=09background-image:none;
|
|
=09=09=09background-repeat:no-repeat;
|
|
=09=09=09background-position:center;
|
|
=09=09=09background-size:cover;
|
|
=09=09=09border-top:0;
|
|
=09=09=09border-bottom:2px solid #EAEAEA;
|
|
=09=09=09padding-top:0;
|
|
=09=09=09padding-bottom:9px;
|
|
=09=09}
|
|
=09=09#templateBody .mcnTextContent=2C#templateBody .mcnTextContent p{
|
|
=09=09=09color:#202020;
|
|
=09=09=09font-family:Helvetica;
|
|
=09=09=09font-size:16px;
|
|
=09=09=09line-height:125%;
|
|
=09=09=09text-align:left;
|
|
=09=09}
|
|
=09=09#templateBody .mcnTextContent a=2C#templateBody .mcnTextContent p a{
|
|
=09=09=09color:#007C89;
|
|
=09=09=09font-weight:normal;
|
|
=09=09=09text-decoration:underline;
|
|
=09=09}
|
|
=09=09#templateFooter{
|
|
=09=09=09background-color:#transparent;
|
|
=09=09=09background-image:none;
|
|
=09=09=09background-repeat:no-repeat;
|
|
=09=09=09background-position:center;
|
|
=09=09=09background-size:cover;
|
|
=09=09=09border-top:0;
|
|
=09=09=09border-bottom:0;
|
|
=09=09=09padding-top:9px;
|
|
=09=09=09padding-bottom:9px;
|
|
=09=09}
|
|
=09=09#templateFooter .mcnTextContent=2C#templateFooter .mcnTextContent p{
|
|
=09=09=09color:#656565;
|
|
=09=09=09font-family:Helvetica;
|
|
=09=09=09font-size:12px;
|
|
=09=09=09line-height:150%;
|
|
=09=09=09text-align:center;
|
|
=09=09}
|
|
=09=09#templateFooter .mcnTextContent a=2C#templateFooter .mcnTextContent=
|
|
p a{
|
|
=09=09=09color:#656565;
|
|
=09=09=09font-weight:normal;
|
|
=09=09=09text-decoration:underline;
|
|
=09=09}
|
|
=09@media only screen and (min-width:768px){
|
|
=09=09.templateContainer{
|
|
=09=09=09width:600px !important;
|
|
=09=09}
|
|
|
|
}=09@media only screen and (max-width: 480px){
|
|
=09=09body=2Ctable=2Ctd=2Cp=2Ca=2Cli=2Cblockquote{
|
|
=09=09=09-webkit-text-size-adjust:none !important;
|
|
=09=09}
|
|
|
|
}=09@media only screen and (max-width: 480px){
|
|
=09=09body{
|
|
=09=09=09width:100% !important;
|
|
=09=09=09min-width:100% !important;
|
|
=09=09}
|
|
|
|
}=09@media only screen and (max-width: 480px){
|
|
=09=09.mcnRetinaImage{
|
|
=09=09=09max-width:100% !important;
|
|
=09=09}
|
|
|
|
}=09@media only screen and (max-width: 480px){
|
|
=09=09.mcnImage{
|
|
=09=09=09width:100% !important;
|
|
=09=09}
|
|
|
|
}=09@media only screen and (max-width: 480px){
|
|
=09=09.mcnCartContainer=2C.mcnCaptionTopContent=2C.mcnRecContentContainer=
|
|
=2C.mcnCaptionBottomContent=2C.mcnTextContentContainer=2C.mcnBoxedTextCont=
|
|
entContainer=2C.mcnImageGroupContentContainer=2C.mcnCaptionLeftTextContent=
|
|
Container=2C.mcnCaptionRightTextContentContainer=2C.mcnCaptionLeftImageCon=
|
|
tentContainer=2C.mcnCaptionRightImageContentContainer=2C.mcnImageCardLeftT=
|
|
extContentContainer=2C.mcnImageCardRightTextContentContainer=2C.mcnImageCa=
|
|
rdLeftImageContentContainer=2C.mcnImageCardRightImageContentContainer{
|
|
=09=09=09max-width:100% !important;
|
|
=09=09=09width:100% !important;
|
|
=09=09}
|
|
|
|
}=09@media only screen and (max-width: 480px){
|
|
=09=09.mcnBoxedTextContentContainer{
|
|
=09=09=09min-width:100% !important;
|
|
=09=09}
|
|
|
|
}=09@media only screen and (max-width: 480px){
|
|
=09=09.mcnImageGroupContent{
|
|
=09=09=09padding:9px !important;
|
|
=09=09}
|
|
|
|
}=09@media only screen and (max-width: 480px){
|
|
=09=09.mcnCaptionLeftContentOuter .mcnTextContent=2C.mcnCaptionRightConten=
|
|
tOuter .mcnTextContent{
|
|
=09=09=09padding-top:9px !important;
|
|
=09=09}
|
|
|
|
}=09@media only screen and (max-width: 480px){
|
|
=09=09.mcnImageCardTopImageContent=2C.mcnCaptionBottomContent:last-child .=
|
|
mcnCaptionBottomImageContent=2C.mcnCaptionBlockInner .mcnCaptionTopContent=
|
|
:last-child .mcnTextContent{
|
|
=09=09=09padding-top:18px !important;
|
|
=09=09}
|
|
|
|
}=09@media only screen and (max-width: 480px){
|
|
=09=09.mcnImageCardBottomImageContent{
|
|
=09=09=09padding-bottom:9px !important;
|
|
=09=09}
|
|
|
|
}=09@media only screen and (max-width: 480px){
|
|
=09=09.mcnImageGroupBlockInner{
|
|
=09=09=09padding-top:0 !important;
|
|
=09=09=09padding-bottom:0 !important;
|
|
=09=09}
|
|
|
|
}=09@media only screen and (max-width: 480px){
|
|
=09=09.mcnImageGroupBlockOuter{
|
|
=09=09=09padding-top:9px !important;
|
|
=09=09=09padding-bottom:9px !important;
|
|
=09=09}
|
|
|
|
}=09@media only screen and (max-width: 480px){
|
|
=09=09.mcnTextContent=2C.mcnBoxedTextContentColumn{
|
|
=09=09=09padding-right:18px !important;
|
|
=09=09=09padding-left:18px !important;
|
|
=09=09}
|
|
|
|
}=09@media only screen and (max-width: 480px){
|
|
=09=09.mcnImageCardLeftImageContent=2C.mcnImageCardRightImageContent{
|
|
=09=09=09padding-right:18px !important;
|
|
=09=09=09padding-bottom:0 !important;
|
|
=09=09=09padding-left:18px !important;
|
|
=09=09}
|
|
|
|
}=09@media only screen and (max-width: 480px){
|
|
=09=09.mcpreview-image-uploader{
|
|
=09=09=09display:none !important;
|
|
=09=09=09width:100% !important;
|
|
=09=09}
|
|
|
|
}=09@media only screen and (max-width: 480px){
|
|
=09=09h1{
|
|
=09=09=09font-size:22px !important;
|
|
=09=09=09line-height:125% !important;
|
|
=09=09}
|
|
|
|
}=09@media only screen and (max-width: 480px){
|
|
=09=09h2{
|
|
=09=09=09font-size:20px !important;
|
|
=09=09=09line-height:125% !important;
|
|
=09=09}
|
|
|
|
}=09@media only screen and (max-width: 480px){
|
|
=09=09h3{
|
|
=09=09=09font-size:18px !important;
|
|
=09=09=09line-height:125% !important;
|
|
=09=09}
|
|
|
|
}=09@media only screen and (max-width: 480px){
|
|
=09=09h4{
|
|
=09=09=09font-size:16px !important;
|
|
=09=09=09line-height:150% !important;
|
|
=09=09}
|
|
|
|
}=09@media only screen and (max-width: 480px){
|
|
=09=09.mcnBoxedTextContentContainer .mcnTextContent=2C.mcnBoxedTextContent=
|
|
Container .mcnTextContent p{
|
|
=09=09=09font-size:14px !important;
|
|
=09=09=09line-height:150% !important;
|
|
=09=09}
|
|
|
|
}=09@media only screen and (max-width: 480px){
|
|
=09=09#templatePreheader{
|
|
=09=09=09display:block !important;
|
|
=09=09}
|
|
|
|
}=09@media only screen and (max-width: 480px){
|
|
=09=09#templatePreheader .mcnTextContent=2C#templatePreheader .mcnTextCont=
|
|
ent p{
|
|
=09=09=09font-size:14px !important;
|
|
=09=09=09line-height:150% !important;
|
|
=09=09}
|
|
|
|
}=09@media only screen and (max-width: 480px){
|
|
=09=09#templateHeader .mcnTextContent=2C#templateHeader .mcnTextContent p{
|
|
=09=09=09font-size:16px !important;
|
|
=09=09=09line-height:150% !important;
|
|
=09=09}
|
|
|
|
}=09@media only screen and (max-width: 480px){
|
|
=09=09#templateBody .mcnTextContent=2C#templateBody .mcnTextContent p{
|
|
=09=09=09font-size:16px !important;
|
|
=09=09=09line-height:150% !important;
|
|
=09=09}
|
|
|
|
}=09@media only screen and (max-width: 480px){
|
|
=09=09#templateFooter .mcnTextContent=2C#templateFooter .mcnTextContent p{
|
|
=09=09=09font-size:14px !important;
|
|
=09=09=09line-height:150% !important;
|
|
=09=09}
|
|
|
|
}</style></head>
|
|
<body style=3D"height: 100%;margin: 0;padding: 0;width: 100%;-ms-text-=
|
|
size-adjust: 100%;-webkit-text-size-adjust: 100%;background-color: #ffffff=
|
|
;"><div itemscope=3D"" itemtype=3D"http://schema.org/EmailMessage"><div it=
|
|
emprop=3D"publisher" itemscope=3D"" itemtype=3D"http://schema.org/Organiza=
|
|
tion"><meta itemprop=3D"name" content=3D"~this week in security~"><link it=
|
|
emprop=3D"url" content=3D"https://mastodon.social/@zackwhittaker"></div><d=
|
|
iv itemprop=3D"about" itemscope=3D"" itemtype=3D"http://schema.org/Offer">=
|
|
<link itemprop=3D"image" href=3D"https://gallery.mailchimp.com/e1ad6038c99=
|
|
4abec17dafb116/images/dfcfdb2e-8ab2-450c-a830-1461d1aefb25.png"></div></di=
|
|
v>
|
|
<!--
|
|
-->
|
|
<!--[if !gte mso 9]><!----><span class=3D"mcnPreviewText" style=
|
|
=3D"display:none; font-size:0px; line-height:0px; max-height:0px; max-widt=
|
|
h:0px; opacity:0; overflow:hidden; visibility:hidden; mso-hide:all;">Power=
|
|
School breach may hit millions=2C Salt Typhoon sanctioned=2C Fortinet fire=
|
|
walls under attack=2C and more.</span><!--<![endif]-->
|
|
<!--
|
|
-->
|
|
<center>
|
|
<table align=3D"center" border=3D"0" cellpadding=3D"0" cellspa=
|
|
cing=3D"0" height=3D"100%" width=3D"100%" id=3D"bodyTable" style=3D"border=
|
|
-collapse: collapse;mso-table-lspace: 0pt;mso-table-rspace: 0pt;-ms-text-s=
|
|
ize-adjust: 100%;-webkit-text-size-adjust: 100%;height: 100%;margin: 0;pad=
|
|
ding: 0;width: 100%;background-color: #ffffff;">
|
|
<tr>
|
|
<td align=3D"center" valign=3D"top" id=3D"bodyCell" st=
|
|
yle=3D"mso-line-height-rule: exactly;-ms-text-size-adjust: 100%;-webkit-te=
|
|
xt-size-adjust: 100%;height: 100%;margin: 0;padding: 10px;width: 100%;bord=
|
|
er-top: 0;">
|
|
<!-- BEGIN TEMPLATE // -->
|
|
<!--[if (gte mso 9)|(IE)]>
|
|
<table align=3D"center" border=3D"0" cellspacing=
|
|
=3D"0" cellpadding=3D"0" width=3D"600" style=3D"width:600px;">
|
|
<tr>
|
|
<td align=3D"center" valign=3D"top" width=3D"600"=
|
|
style=3D"width:600px;">
|
|
<![endif]-->
|
|
<table border=3D"0" cellpadding=3D"0" cellspacing=
|
|
=3D"0" width=3D"100%" class=3D"templateContainer" style=3D"border-collapse=
|
|
: collapse;mso-table-lspace: 0pt;mso-table-rspace: 0pt;-ms-text-size-adjus=
|
|
t: 100%;-webkit-text-size-adjust: 100%;border: 0;max-width: 600px !importa=
|
|
nt;">
|
|
<tr>
|
|
<td valign=3D"top" id=3D"templatePreheader=
|
|
" style=3D"background:#ffffff none no-repeat center/cover;mso-line-height-=
|
|
rule: exactly;-ms-text-size-adjust: 100%;-webkit-text-size-adjust: 100%;ba=
|
|
ckground-color: #ffffff;background-image: none;background-repeat: no-repea=
|
|
t;background-position: center;background-size: cover;border-top: 0;border-=
|
|
bottom: 0;padding-top: 9px;padding-bottom: 9px;"><table border=3D"0" cellp=
|
|
adding=3D"0" cellspacing=3D"0" width=3D"100%" class=3D"mcnTextBlock" style=
|
|
=3D"min-width: 100%;border-collapse: collapse;mso-table-lspace: 0pt;mso-ta=
|
|
ble-rspace: 0pt;-ms-text-size-adjust: 100%;-webkit-text-size-adjust: 100%;=
|
|
">
|
|
<tbody class=3D"mcnTextBlockOuter">
|
|
<tr>
|
|
<td valign=3D"top" class=3D"mcnTextBlockInner" style=3D"paddin=
|
|
g-top: 9px;mso-line-height-rule: exactly;-ms-text-size-adjust: 100%;-webki=
|
|
t-text-size-adjust: 100%;">
|
|
=09<!--[if mso]>
|
|
=09=09=09=09<table align=3D"left" border=3D"0" cellspacing=3D"0" cellpaddi=
|
|
ng=3D"0" width=3D"100%" style=3D"width:100%;">
|
|
=09=09=09=09<tr>
|
|
=09=09=09=09<![endif]-->
|
|
=09=09=09
|
|
=09=09=09=09<!--[if mso]>
|
|
=09=09=09=09<td valign=3D"top" width=3D"600" style=3D"width:600px;">
|
|
=09=09=09=09<![endif]-->
|
|
<table align=3D"left" border=3D"0" cellpadding=3D"0" cells=
|
|
pacing=3D"0" style=3D"max-width: 100%;min-width: 100%;border-collapse: col=
|
|
lapse;mso-table-lspace: 0pt;mso-table-rspace: 0pt;-ms-text-size-adjust: 10=
|
|
0%;-webkit-text-size-adjust: 100%;float: left;" width=3D"100%" class=3D"mc=
|
|
nTextContentContainer">
|
|
<tbody><tr>
|
|
|
|
<td valign=3D"top" class=3D"mcnTextContent" style=
|
|
=3D"padding: 0px 18px 9px;font-family: Arial=2C "Helvetica Neue"=
|
|
=2C Helvetica=2C sans-serif;font-size: 14px;line-height: 150%;mso-line-hei=
|
|
ght-rule: exactly;-ms-text-size-adjust: 100%;-webkit-text-size-adjust: 100=
|
|
%;word-break: break-word;color: #656565;text-align: left;">
|
|
|
|
<h1 class=3D"null" style=3D"text-align: center=
|
|
;display: block;margin: 0;padding: 0;color: #202020;font-family: Helvetica=
|
|
;font-size: 26px;font-style: normal;font-weight: bold;line-height: 125%;le=
|
|
tter-spacing: normal;"><span style=3D"font-size:27px"><span style=3D"color=
|
|
:#000000"><strong>~this week in security~</strong></span></span></h1>
|
|
|
|
<div style=3D"text-align: center;">a cybersecurity newsletter by <a href=
|
|
=3D"https://mastodon.social/@zackwhittaker" target=3D"_blank" style=3D"mso=
|
|
-line-height-rule: exactly;-ms-text-size-adjust: 100%;-webkit-text-size-ad=
|
|
just: 100%;color: #656565;font-weight: normal;text-decoration: underline;"=
|
|
>@zackwhittaker</a><br>
|
|
<br>
|
|
<span style=3D"font-size:14px"><strong><span style=3D"text-align:center">v=
|
|
olume 8=2C issue 3</span></strong></span><br>
|
|
<span style=3D"font-size:12px"><a href=3D"https://mailchi.mp/weekinsecurit=
|
|
y/this-week-in-security-january-19-2025-edition?e=3D9d10de3b61" target=3D"_b=
|
|
lank" style=3D"mso-line-height-rule: exactly;-ms-text-size-adjust: 100%;-w=
|
|
ebkit-text-size-adjust: 100%;color: #656565;font-weight: normal;text-decor=
|
|
ation: underline;">View this email in your browser</a> | <a href=3D"https:=
|
|
//us18.campaign-archive.com/feed?u=3De1ad6038c994abec17dafb116&id=3Da2457d=
|
|
c8ad" style=3D"mso-line-height-rule: exactly;-ms-text-size-adjust: 100%;-w=
|
|
ebkit-text-size-adjust: 100%;color: #656565;font-weight: normal;text-decor=
|
|
ation: underline;">RSS</a></span><br>
|
|
<br>
|
|
~ ~</div>
|
|
|
|
</td>
|
|
</tr>
|
|
</tbody></table>
|
|
=09=09=09=09<!--[if mso]>
|
|
=09=09=09=09</td>
|
|
=09=09=09=09<![endif]-->
|
|
|
|
=09=09=09=09<!--[if mso]>
|
|
=09=09=09=09</tr>
|
|
=09=09=09=09</table>
|
|
=09=09=09=09<![endif]-->
|
|
</td>
|
|
</tr>
|
|
</tbody>
|
|
</table></td>
|
|
</tr>
|
|
<tr>
|
|
<td valign=3D"top" id=3D"templateHeader" s=
|
|
tyle=3D"background:#ffffff none no-repeat center/cover;mso-line-height-rul=
|
|
e: exactly;-ms-text-size-adjust: 100%;-webkit-text-size-adjust: 100%;backg=
|
|
round-color: #ffffff;background-image: none;background-repeat: no-repeat;b=
|
|
ackground-position: center;background-size: cover;border-top: 0;border-bot=
|
|
tom: 0;padding-top: 9px;padding-bottom: 0;"><table border=3D"0" cellpaddin=
|
|
g=3D"0" cellspacing=3D"0" width=3D"100%" class=3D"mcnTextBlock" style=3D"m=
|
|
in-width: 100%;border-collapse: collapse;mso-table-lspace: 0pt;mso-table-r=
|
|
space: 0pt;-ms-text-size-adjust: 100%;-webkit-text-size-adjust: 100%;">
|
|
<tbody class=3D"mcnTextBlockOuter">
|
|
<tr>
|
|
<td valign=3D"top" class=3D"mcnTextBlockInner" style=3D"paddin=
|
|
g-top: 9px;mso-line-height-rule: exactly;-ms-text-size-adjust: 100%;-webki=
|
|
t-text-size-adjust: 100%;">
|
|
=09<!--[if mso]>
|
|
=09=09=09=09<table align=3D"left" border=3D"0" cellspacing=3D"0" cellpaddi=
|
|
ng=3D"0" width=3D"100%" style=3D"width:100%;">
|
|
=09=09=09=09<tr>
|
|
=09=09=09=09<![endif]-->
|
|
=09=09=09
|
|
=09=09=09=09<!--[if mso]>
|
|
=09=09=09=09<td valign=3D"top" width=3D"600" style=3D"width:600px;">
|
|
=09=09=09=09<![endif]-->
|
|
<table align=3D"left" border=3D"0" cellpadding=3D"0" cells=
|
|
pacing=3D"0" style=3D"max-width: 100%;min-width: 100%;border-collapse: col=
|
|
lapse;mso-table-lspace: 0pt;mso-table-rspace: 0pt;-ms-text-size-adjust: 10=
|
|
0%;-webkit-text-size-adjust: 100%;float: left;" width=3D"100%" class=3D"mc=
|
|
nTextContentContainer">
|
|
<tbody><tr>
|
|
|
|
<td valign=3D"top" class=3D"mcnTextContent" style=
|
|
=3D"padding: 0px 18px 9px;font-family: Arial=2C "Helvetica Neue"=
|
|
=2C Helvetica=2C sans-serif;font-size: 14px;line-height: 150%;mso-line-hei=
|
|
ght-rule: exactly;-ms-text-size-adjust: 100%;-webkit-text-size-adjust: 100=
|
|
%;word-break: break-word;color: #202020;text-align: left;">
|
|
|
|
<h3 style=3D"display: block;margin: 0;padding:=
|
|
0;color: #202020;font-family: Helvetica;font-size: 20px;font-style: norma=
|
|
l;font-weight: bold;line-height: 125%;letter-spacing: normal;text-align: l=
|
|
eft;"><span style=3D"font-size:19px"><span style=3D"font-weight:bolder">TH=
|
|
IS WEEK=2C TL;DR</span></span><span style=3D"font-size:16px"><span style=
|
|
=3D"font-weight:bolder"> </span></span></h3>
|
|
|
|
</td>
|
|
</tr>
|
|
</tbody></table>
|
|
=09=09=09=09<!--[if mso]>
|
|
=09=09=09=09</td>
|
|
=09=09=09=09<![endif]-->
|
|
|
|
=09=09=09=09<!--[if mso]>
|
|
=09=09=09=09</tr>
|
|
=09=09=09=09</table>
|
|
=09=09=09=09<![endif]-->
|
|
</td>
|
|
</tr>
|
|
</tbody>
|
|
</table></td>
|
|
</tr>
|
|
<tr>
|
|
<td valign=3D"top" id=3D"templateBody" sty=
|
|
le=3D"background:#ffffff none no-repeat center/cover;mso-line-height-rule:=
|
|
exactly;-ms-text-size-adjust: 100%;-webkit-text-size-adjust: 100%;backgro=
|
|
und-color: #ffffff;background-image: none;background-repeat: no-repeat;bac=
|
|
kground-position: center;background-size: cover;border-top: 0;border-botto=
|
|
m: 2px solid #EAEAEA;padding-top: 0;padding-bottom: 9px;"><table border=3D=
|
|
"0" cellpadding=3D"0" cellspacing=3D"0" width=3D"100%" class=3D"mcnTextBlo=
|
|
ck" style=3D"min-width: 100%;border-collapse: collapse;mso-table-lspace: 0=
|
|
pt;mso-table-rspace: 0pt;-ms-text-size-adjust: 100%;-webkit-text-size-adju=
|
|
st: 100%;">
|
|
<tbody class=3D"mcnTextBlockOuter">
|
|
<tr>
|
|
<td valign=3D"top" class=3D"mcnTextBlockInner" style=3D"paddin=
|
|
g-top: 9px;mso-line-height-rule: exactly;-ms-text-size-adjust: 100%;-webki=
|
|
t-text-size-adjust: 100%;">
|
|
=09<!--[if mso]>
|
|
=09=09=09=09<table align=3D"left" border=3D"0" cellspacing=3D"0" cellpaddi=
|
|
ng=3D"0" width=3D"100%" style=3D"width:100%;">
|
|
=09=09=09=09<tr>
|
|
=09=09=09=09<![endif]-->
|
|
=09=09=09
|
|
=09=09=09=09<!--[if mso]>
|
|
=09=09=09=09<td valign=3D"top" width=3D"600" style=3D"width:600px;">
|
|
=09=09=09=09<![endif]-->
|
|
<table align=3D"left" border=3D"0" cellpadding=3D"0" cells=
|
|
pacing=3D"0" style=3D"max-width: 100%;min-width: 100%;border-collapse: col=
|
|
lapse;mso-table-lspace: 0pt;mso-table-rspace: 0pt;-ms-text-size-adjust: 10=
|
|
0%;-webkit-text-size-adjust: 100%;float: left;" width=3D"100%" class=3D"mc=
|
|
nTextContentContainer">
|
|
<tbody><tr>
|
|
|
|
<td valign=3D"top" class=3D"mcnTextContent" style=
|
|
=3D"padding: 0px 18px 9px;font-family: Arial=2C "Helvetica Neue"=
|
|
=2C Helvetica=2C sans-serif;font-size: 14px;line-height: 150%;mso-line-hei=
|
|
ght-rule: exactly;-ms-text-size-adjust: 100%;-webkit-text-size-adjust: 100=
|
|
%;word-break: break-word;color: #202020;text-align: left;">
|
|
|
|
<span style=3D"font-size:15px"><span style=3D"=
|
|
font-family:arial=2Chelvetica neue=2Chelvetica=2Csans-serif"><strong><a hr=
|
|
ef=3D"https://techcrunch.com/2025/01/15/powerschool-data-breach-victims-sa=
|
|
y-hackers-stole-all-historical-student-and-teacher-data/" style=3D"mso-lin=
|
|
e-height-rule: exactly;-ms-text-size-adjust: 100%;-webkit-text-size-adjust=
|
|
: 100%;color: #007C89;font-weight: normal;text-decoration: underline;">Pow=
|
|
erSchool breach may affect millions of students; no MFA on hacked account<=
|
|
/a></strong><br>
|
|
<strong>TechCrunch: </strong>Bear with me=2C there's a lot this week. Let'=
|
|
s start with one of the biggest hacks of the year (already=2C I know): Pow=
|
|
erSchool=2C used by 18=2C000 schools and 60+ million students=2C was breac=
|
|
hed. In absence of information from the company=2C affected school distric=
|
|
ts <a href=3D"https://techcrunch.com/2025/01/18/how-victims-of-powerschool=
|
|
s-data-breach-helped-each-other-investigate-massive-hack/" style=3D"mso-li=
|
|
ne-height-rule: exactly;-ms-text-size-adjust: 100%;-webkit-text-size-adjus=
|
|
t: 100%;color: #007C89;font-weight: normal;text-decoration: underline;">he=
|
|
lped each other</a> to investigate=2C while some districts say <a href=3D"=
|
|
https://techcrunch.com/2025/01/15/powerschool-data-breach-victims-say-hack=
|
|
ers-stole-all-historical-student-and-teacher-data/" style=3D"mso-line-heig=
|
|
ht-rule: exactly;-ms-text-size-adjust: 100%;-webkit-text-size-adjust: 100%=
|
|
;color: #007C89;font-weight: normal;text-decoration: underline;">"all" his=
|
|
torical staff and student</a> data was stolen. Turns out PowerSchool <a hr=
|
|
ef=3D"https://techcrunch.com/2025/01/17/malware-stole-internal-powerschool=
|
|
-passwords-from-engineers-hacked-computer/" style=3D"mso-line-height-rule:=
|
|
exactly;-ms-text-size-adjust: 100%;-webkit-text-size-adjust: 100%;color:=
|
|
#007C89;font-weight: normal;text-decoration: underline;">wasn't using MFA=
|
|
</a> on one of its support accounts=2C which granted the hackers access to=
|
|
steal gobs of data. A lot of highly sensitive student data was taken; inc=
|
|
luding grades=2C medical data=2C SSNs=2C and more. Many schools have alrea=
|
|
dy notified their students of the breach=2C so stay on alert for more. My=
|
|
team at TechCrunch did incredible reporting on this story this week (<em>=
|
|
disclosure: obvious bias alert!</em>). Keep a close eye on this!<br>
|
|
<strong>More:</strong> <a href=3D"https://www.powerschool.com/security/sis=
|
|
-incident/" style=3D"mso-line-height-rule: exactly;-ms-text-size-adjust: 1=
|
|
00%;-webkit-text-size-adjust: 100%;color: #007C89;font-weight: normal;text=
|
|
-decoration: underline;">PowerSchool</a> | <a href=3D"https://techcrunch.c=
|
|
om/2025/01/17/malware-stole-internal-powerschool-passwords-from-engineers-=
|
|
hacked-computer/" style=3D"mso-line-height-rule: exactly;-ms-text-size-adj=
|
|
ust: 100%;-webkit-text-size-adjust: 100%;color: #007C89;font-weight: norma=
|
|
l;text-decoration: underline;">TechCrunch</a> | <a href=3D"https://k12tech=
|
|
pro.com/one-week-later-and-we-still-have-questions-about-the-powerschool-b=
|
|
reach/" style=3D"mso-line-height-rule: exactly;-ms-text-size-adjust: 100%;=
|
|
-webkit-text-size-adjust: 100%;color: #007C89;font-weight: normal;text-dec=
|
|
oration: underline;">K12TechPro</a> | <a href=3D"https://www.usatoday.com/=
|
|
story/news/education/2025/01/13/powerschool-data-breach-what-to-know-stude=
|
|
nts/77667159007/" style=3D"mso-line-height-rule: exactly;-ms-text-size-adj=
|
|
ust: 100%;-webkit-text-size-adjust: 100%;color: #007C89;font-weight: norma=
|
|
l;text-decoration: underline;">USA Today</a> | <a href=3D"https://infosec.=
|
|
exchange/@malwarejake/113845139843736751" style=3D"mso-line-height-rule: e=
|
|
xactly;-ms-text-size-adjust: 100%;-webkit-text-size-adjust: 100%;color: #0=
|
|
07C89;font-weight: normal;text-decoration: underline;">@malwarejake</a></s=
|
|
pan></span>
|
|
</td>
|
|
</tr>
|
|
</tbody></table>
|
|
=09=09=09=09<!--[if mso]>
|
|
=09=09=09=09</td>
|
|
=09=09=09=09<![endif]-->
|
|
|
|
=09=09=09=09<!--[if mso]>
|
|
=09=09=09=09</tr>
|
|
=09=09=09=09</table>
|
|
=09=09=09=09<![endif]-->
|
|
</td>
|
|
</tr>
|
|
</tbody>
|
|
</table><table border=3D"0" cellpadding=3D"0" cellspacing=3D"0" width=3D"1=
|
|
00%" class=3D"mcnImageBlock" style=3D"min-width: 100%;border-collapse: col=
|
|
lapse;mso-table-lspace: 0pt;mso-table-rspace: 0pt;-ms-text-size-adjust: 10=
|
|
0%;-webkit-text-size-adjust: 100%;">
|
|
<tbody class=3D"mcnImageBlockOuter">
|
|
<tr>
|
|
<td valign=3D"top" style=3D"padding: 9px;mso-line-height-r=
|
|
ule: exactly;-ms-text-size-adjust: 100%;-webkit-text-size-adjust: 100%;" c=
|
|
lass=3D"mcnImageBlockInner">
|
|
<table align=3D"left" width=3D"100%" border=3D"0" cell=
|
|
padding=3D"0" cellspacing=3D"0" class=3D"mcnImageContentContainer" style=
|
|
=3D"min-width: 100%;border-collapse: collapse;mso-table-lspace: 0pt;mso-ta=
|
|
ble-rspace: 0pt;-ms-text-size-adjust: 100%;-webkit-text-size-adjust: 100%;=
|
|
float: left;">
|
|
<tbody><tr>
|
|
<td class=3D"mcnImageContent" valign=3D"top" s=
|
|
tyle=3D"padding-right: 9px;padding-left: 9px;padding-top: 0;padding-bottom=
|
|
: 0;text-align: center;mso-line-height-rule: exactly;-ms-text-size-adjust:=
|
|
100%;-webkit-text-size-adjust: 100%;">
|
|
|
|
<a href=3D"https://infosec.exchange/@m=
|
|
alwarejake/113845139843736751" title=3D"" class=3D"" target=3D"_blank" sty=
|
|
le=3D"mso-line-height-rule: exactly;-ms-text-size-adjust: 100%;-webkit-tex=
|
|
t-size-adjust: 100%;">
|
|
<img align=3D"middle" alt=3D"Jake=
|
|
Williams toot: "The data you don't retain can't be stolen when your=
|
|
systems get compromised. Stop hoarding data you'll never use."" src=
|
|
=3D"https://mcusercontent.com/e1ad6038c994abec17dafb116/images/89c8cc4e-a2=
|
|
16-483e-fbc0-94959f18f380.jpeg" width=3D"564" style=3D"max-width: 1000px;p=
|
|
adding-bottom: 0;display: inline !important;vertical-align: bottom;border:=
|
|
0;height: auto;outline: none;text-decoration: none;-ms-interpolation-mode=
|
|
: bicubic;" class=3D"mcnImage">
|
|
</a>
|
|
|
|
</td>
|
|
</tr>
|
|
</tbody></table>
|
|
</td>
|
|
</tr>
|
|
</tbody>
|
|
</table><table border=3D"0" cellpadding=3D"0" cellspacing=3D"0" width=3D"1=
|
|
00%" class=3D"mcnTextBlock" style=3D"min-width: 100%;border-collapse: coll=
|
|
apse;mso-table-lspace: 0pt;mso-table-rspace: 0pt;-ms-text-size-adjust: 100=
|
|
%;-webkit-text-size-adjust: 100%;">
|
|
<tbody class=3D"mcnTextBlockOuter">
|
|
<tr>
|
|
<td valign=3D"top" class=3D"mcnTextBlockInner" style=3D"paddin=
|
|
g-top: 9px;mso-line-height-rule: exactly;-ms-text-size-adjust: 100%;-webki=
|
|
t-text-size-adjust: 100%;">
|
|
=09<!--[if mso]>
|
|
=09=09=09=09<table align=3D"left" border=3D"0" cellspacing=3D"0" cellpaddi=
|
|
ng=3D"0" width=3D"100%" style=3D"width:100%;">
|
|
=09=09=09=09<tr>
|
|
=09=09=09=09<![endif]-->
|
|
=09=09=09
|
|
=09=09=09=09<!--[if mso]>
|
|
=09=09=09=09<td valign=3D"top" width=3D"600" style=3D"width:600px;">
|
|
=09=09=09=09<![endif]-->
|
|
<table align=3D"left" border=3D"0" cellpadding=3D"0" cells=
|
|
pacing=3D"0" style=3D"max-width: 100%;min-width: 100%;border-collapse: col=
|
|
lapse;mso-table-lspace: 0pt;mso-table-rspace: 0pt;-ms-text-size-adjust: 10=
|
|
0%;-webkit-text-size-adjust: 100%;float: left;" width=3D"100%" class=3D"mc=
|
|
nTextContentContainer">
|
|
<tbody><tr>
|
|
|
|
<td valign=3D"top" class=3D"mcnTextContent" style=
|
|
=3D"padding: 0px 18px 9px;font-family: Arial=2C "Helvetica Neue"=
|
|
=2C Helvetica=2C sans-serif;font-size: 14px;line-height: 150%;mso-line-hei=
|
|
ght-rule: exactly;-ms-text-size-adjust: 100%;-webkit-text-size-adjust: 100=
|
|
%;word-break: break-word;color: #202020;text-align: left;">
|
|
|
|
<span style=3D"font-size:15px"><span style=3D"=
|
|
font-family:arial=2Chelvetica neue=2Chelvetica=2Csans-serif"><strong><a hr=
|
|
ef=3D"https://home.treasury.gov/news/press-releases/jy2792" style=3D"mso-l=
|
|
ine-height-rule: exactly;-ms-text-size-adjust: 100%;-webkit-text-size-adju=
|
|
st: 100%;color: #007C89;font-weight: normal;text-decoration: underline;">T=
|
|
reasury names and sanctions Salt Typhoon=2C and the hacker targeting Treas=
|
|
ury</a></strong><br>
|
|
<strong>U.S. Treasury: </strong>In its final days=2C the Biden administrat=
|
|
ion's cyber team has named=2C shamed=2C and <em>sanctioned</em> the group=
|
|
known as Salt Typhoon=2C the China-backed hackers behind the biggest brea=
|
|
ch of U.S. phone and internet giants; as well as the hacker behind the rec=
|
|
ent Treasury hacks. Look at that; things <em>can</em> happen at speed when=
|
|
they want to get done... Per the Treasury=2C Salt Typhoon is linked to a=
|
|
Sichuan-based cybersecurity company called Sichuan Juxinhe=2C and has "di=
|
|
rect involvement" with the hacking group. Meanwhile=2C the U.S. Treasury i=
|
|
s sanctioning Yin Kecheng=2C a Shanghai-based cyber actor affiliated with=
|
|
the Chinese MSS=2C the ministry for foreign intelligence=2C with the hack=
|
|
of the Treasury itself. <a href=3D"https://www.bloomberg.com/news/article=
|
|
s/2025-01-16/treasury-hackers-focused-on-sanctions-intelligence-report-say=
|
|
s" style=3D"mso-line-height-rule: exactly;-ms-text-size-adjust: 100%;-webk=
|
|
it-text-size-adjust: 100%;color: #007C89;font-weight: normal;text-decorati=
|
|
on: underline;">Bloomberg ($)</a> revealed that the scope of the Treasury=
|
|
hack includes the breach of 400+ computers and the theft of more than 3=
|
|
=2C000 files from the department. All this comes in the same week that the=
|
|
<a href=3D"https://arstechnica.com/tech-policy/2025/01/fbi-forces-chinese=
|
|
-malware-to-delete-itself-from-thousands-of-us-computers/" style=3D"mso-li=
|
|
ne-height-rule: exactly;-ms-text-size-adjust: 100%;-webkit-text-size-adjus=
|
|
t: 100%;color: #007C89;font-weight: normal;text-decoration: underline;">fe=
|
|
ds unsealed action</a> they took to force-remove the China-linked PluxX ma=
|
|
lware from thousands of U.S. computers. Departing CISA chief Jen Easterly=
|
|
posted <a href=3D"https://www.cisa.gov/news-events/news/strengthening-ame=
|
|
ricas-resilience-against-prc-cyber-threats" style=3D"mso-line-height-rule:=
|
|
exactly;-ms-text-size-adjust: 100%;-webkit-text-size-adjust: 100%;color:=
|
|
#007C89;font-weight: normal;text-decoration: underline;">some words</a> o=
|
|
n the threat from China; and the <a href=3D"https://bsky.app/profile/kimze=
|
|
tter.bsky.social/post/3lfmznfaj2k2u" style=3D"mso-line-height-rule: exactl=
|
|
y;-ms-text-size-adjust: 100%;-webkit-text-size-adjust: 100%;color: #007C89=
|
|
;font-weight: normal;text-decoration: underline;">outgoing FBI director</a=
|
|
> also shared his views.<br>
|
|
<strong>More:</strong> <a href=3D"https://www.washingtonpost.com/national-=
|
|
security/2025/01/13/salt-typhoon-china-sanctions-biden/" style=3D"mso-line=
|
|
-height-rule: exactly;-ms-text-size-adjust: 100%;-webkit-text-size-adjust:=
|
|
100%;color: #007C89;font-weight: normal;text-decoration: underline;">Wash=
|
|
ington Post ($)</a> | <a href=3D"https://www.cbsnews.com/news/fbi-director=
|
|
-christopher-wray-on-threats-america-faces-decision-to-step-down-60-minute=
|
|
s-transcript/" style=3D"mso-line-height-rule: exactly;-ms-text-size-adjust=
|
|
: 100%;-webkit-text-size-adjust: 100%;color: #007C89;font-weight: normal;t=
|
|
ext-decoration: underline;">CBS News</a> | <a href=3D"https://arstechnica.=
|
|
com/tech-policy/2025/01/fbi-forces-chinese-malware-to-delete-itself-from-t=
|
|
housands-of-us-computers/" style=3D"mso-line-height-rule: exactly;-ms-text=
|
|
-size-adjust: 100%;-webkit-text-size-adjust: 100%;color: #007C89;font-weig=
|
|
ht: normal;text-decoration: underline;">Ars Technica</a> | <a href=3D"http=
|
|
s://x.com/argvee/status/1879926597815504948" style=3D"mso-line-height-rule=
|
|
: exactly;-ms-text-size-adjust: 100%;-webkit-text-size-adjust: 100%;color:=
|
|
#007C89;font-weight: normal;text-decoration: underline;">@argvee</a> | <a=
|
|
href=3D"https://x.com/dnvolz/status/1878822293817971074" style=3D"mso-lin=
|
|
e-height-rule: exactly;-ms-text-size-adjust: 100%;-webkit-text-size-adjust=
|
|
: 100%;color: #007C89;font-weight: normal;text-decoration: underline;">@dn=
|
|
volz</a><br>
|
|
<br>
|
|
<strong><a href=3D"https://www.csoonline.com/article/3802476/biden-white-h=
|
|
ouse-to-go-all-out-in-final-sweeping-cybersecurity-order.html" style=3D"ms=
|
|
o-line-height-rule: exactly;-ms-text-size-adjust: 100%;-webkit-text-size-a=
|
|
djust: 100%;color: #007C89;font-weight: normal;text-decoration: underline;=
|
|
">Biden admin goes all out on final cyber executive order</a></strong><br>
|
|
<strong>CSO Online: </strong>Relatedly... it's the Biden cyber team's swan=
|
|
song with their final executive order. Rushed out in the last days of the=
|
|
administration=2C outgoing top cyber official Anne Neuberger set out the=
|
|
order as setting up the next administration on the best possible footing.=
|
|
But as it was her last briefing=2C Neuberger said it wasn't clear to her=
|
|
who was doing what in cyber under Trump =E2=80=94 since she won't be arou=
|
|
nd to see it. Much of the order was patching issues the government had wor=
|
|
ked on over the past few years. It's unclear if the Trump admin will accep=
|
|
t or rescind the order=2C details of which you can read <a href=3D"https:/=
|
|
/www.whitehouse.gov/briefing-room/presidential-actions/2025/01/16/executiv=
|
|
e-order-on-strengthening-and-promoting-innovation-in-the-nations-cybersecu=
|
|
rity/" style=3D"mso-line-height-rule: exactly;-ms-text-size-adjust: 100%;-=
|
|
webkit-text-size-adjust: 100%;color: #007C89;font-weight: normal;text-deco=
|
|
ration: underline;">here</a> and <a href=3D"https://www.wired.com/story/bi=
|
|
den-executive-order-cybersecurity-ai-and-more/" style=3D"mso-line-height-r=
|
|
ule: exactly;-ms-text-size-adjust: 100%;-webkit-text-size-adjust: 100%;col=
|
|
or: #007C89;font-weight: normal;text-decoration: underline;">Wired ($)</a>=
|
|
has a breakdown=2C too. Much of the Trump admin's public rhetoric has bee=
|
|
n on cyber-offense=2C which only really seems like a smart idea if you've=
|
|
got an incredibly strong defense base at home =E2=80=94 which... we don't=
|
|
=2E<br>
|
|
<strong>More:</strong> <a href=3D"https://www.whitehouse.gov/briefing-room=
|
|
/presidential-actions/2025/01/16/executive-order-on-strengthening-and-prom=
|
|
oting-innovation-in-the-nations-cybersecurity/" style=3D"mso-line-height-r=
|
|
ule: exactly;-ms-text-size-adjust: 100%;-webkit-text-size-adjust: 100%;col=
|
|
or: #007C89;font-weight: normal;text-decoration: underline;">White House</=
|
|
a> | <a href=3D"https://cyberscoop.com/aggressive-cyber-offense-trump-admi=
|
|
nistration-us-strategy-debate/" style=3D"mso-line-height-rule: exactly;-ms=
|
|
-text-size-adjust: 100%;-webkit-text-size-adjust: 100%;color: #007C89;font=
|
|
-weight: normal;text-decoration: underline;">Cyberscoop</a> | <a href=3D"h=
|
|
ttps://www.cnbc.com/2025/01/16/biden-administration-launches-cybersecurity=
|
|
-executive-order.html" style=3D"mso-line-height-rule: exactly;-ms-text-siz=
|
|
e-adjust: 100%;-webkit-text-size-adjust: 100%;color: #007C89;font-weight:=
|
|
normal;text-decoration: underline;">CNBC</a> | <a href=3D"https://www.axi=
|
|
os.com/2025/01/16/biden-executive-order-ai-cyber-security-trump" style=3D"=
|
|
mso-line-height-rule: exactly;-ms-text-size-adjust: 100%;-webkit-text-size=
|
|
-adjust: 100%;color: #007C89;font-weight: normal;text-decoration: underlin=
|
|
e;">Axios</a><br>
|
|
<br>
|
|
<strong><a href=3D"https://www.bleepingcomputer.com/news/security/fortinet=
|
|
-warns-of-auth-bypass-zero-day-exploited-to-hijack-firewalls/" style=3D"ms=
|
|
o-line-height-rule: exactly;-ms-text-size-adjust: 100%;-webkit-text-size-a=
|
|
djust: 100%;color: #007C89;font-weight: normal;text-decoration: underline;=
|
|
">Fortinet warns of auth. bypass zero-day under attack to hijack firewalls=
|
|
</a></strong><br>
|
|
<strong>Bleeping Computer: </strong>It's a day ending in "y=2C" so of <em>=
|
|
course</em> there's yet another major bug in a widely used enterprise secu=
|
|
rity edge device that allows hackers to break into the network ostensibly=
|
|
protected by the product. This week it's Fortinet=2C whose firewalls are=
|
|
vulnerable to <a href=3D"https://www.fortiguard.com/psirt/FG-IR-24-535" s=
|
|
tyle=3D"mso-line-height-rule: exactly;-ms-text-size-adjust: 100%;-webkit-t=
|
|
ext-size-adjust: 100%;color: #007C89;font-weight: normal;text-decoration:=
|
|
underline;">CVE-2024-55591</a>=2C which Fortinet says is under active exp=
|
|
loitation in the wild. <a href=3D"https://arcticwolf.com/resources/blog/co=
|
|
nsole-chaos-targets-fortinet-fortigate-firewalls/" style=3D"mso-line-heigh=
|
|
t-rule: exactly;-ms-text-size-adjust: 100%;-webkit-text-size-adjust: 100%;=
|
|
color: #007C89;font-weight: normal;text-decoration: underline;">Arctic Wol=
|
|
f</a> says the bug was first exploited back in November=2C so... that's pr=
|
|
obably a fair number of organizations pwned so far. This lands in the same=
|
|
week that a hacking group released config files and VPN credentials on ov=
|
|
er 15=2C000 Fortinet devices=2C which <a href=3D"https://doublepulsar.com/=
|
|
2022-zero-day-was-used-to-raid-fortigate-firewall-configs-somebody-just-re=
|
|
leased-them-a7a74e0b0c7f?gi=3D06d38535bbd7" style=3D"mso-line-height-rule:=
|
|
exactly;-ms-text-size-adjust: 100%;-webkit-text-size-adjust: 100%;color:=
|
|
#007C89;font-weight: normal;text-decoration: underline;">@GossiTheDog</a>=
|
|
has a good blog post with more details.<br>
|
|
<strong>More:</strong> <a href=3D"https://www.fortiguard.com/psirt/FG-IR-2=
|
|
4-535" style=3D"mso-line-height-rule: exactly;-ms-text-size-adjust: 100%;-=
|
|
webkit-text-size-adjust: 100%;color: #007C89;font-weight: normal;text-deco=
|
|
ration: underline;">Fortinet</a> | <a href=3D"https://techcrunch.com/2025/=
|
|
01/14/hackers-are-exploiting-a-new-fortinet-firewall-bug-to-breach-company=
|
|
-networks/" style=3D"mso-line-height-rule: exactly;-ms-text-size-adjust: 1=
|
|
00%;-webkit-text-size-adjust: 100%;color: #007C89;font-weight: normal;text=
|
|
-decoration: underline;">TechCrunch</a> | <a href=3D"https://www.theregist=
|
|
er.com/2025/01/14/miscreants_mass_exploited_fortinet_firewalls/" style=3D"=
|
|
mso-line-height-rule: exactly;-ms-text-size-adjust: 100%;-webkit-text-size=
|
|
-adjust: 100%;color: #007C89;font-weight: normal;text-decoration: underlin=
|
|
e;">The Register</a><br>
|
|
<br>
|
|
<strong><a href=3D"https://krebsonsecurity.com/2025/01/microsoft-happy-202=
|
|
5-heres-161-security-updates/" style=3D"mso-line-height-rule: exactly;-ms-=
|
|
text-size-adjust: 100%;-webkit-text-size-adjust: 100%;color: #007C89;font-=
|
|
weight: normal;text-decoration: underline;">Microsoft's first Patch Tuesda=
|
|
y of 2025 patches 161 bugs</a></strong><br>
|
|
<strong>Krebs on Security: </strong>Speaking of bugs=2C get your fill of f=
|
|
laws in this month's Patch Tuesday. Krebs has your run-down of the 161 upd=
|
|
ates from Microsoft=2C including three privilege escalation zero-days in H=
|
|
yper-V=2C but little is known about the bugs under attack in the wild just=
|
|
yet. The monthly bug patch includes six kernel address leak fixes=2C all=
|
|
submitted by <a href=3D"https://x.com/yarden_shafir/status/18793408526545=
|
|
51053" style=3D"mso-line-height-rule: exactly;-ms-text-size-adjust: 100%;-=
|
|
webkit-text-size-adjust: 100%;color: #007C89;font-weight: normal;text-deco=
|
|
ration: underline;">@yarden_shafir</a>. That's incredible work! And thanks=
|
|
as always to Krebs for pulling these reports together!<br>
|
|
<strong>More:</strong> <a href=3D"https://www.crowdstrike.com/en-us/blog/p=
|
|
atch-tuesday-analysis-january-2025/" style=3D"mso-line-height-rule: exactl=
|
|
y;-ms-text-size-adjust: 100%;-webkit-text-size-adjust: 100%;color: #007C89=
|
|
;font-weight: normal;text-decoration: underline;">CrowdStrike</a> | <a hre=
|
|
f=3D"https://cyberscoop.com/microsoft-patch-tuesday-january-2025/" style=
|
|
=3D"mso-line-height-rule: exactly;-ms-text-size-adjust: 100%;-webkit-text-=
|
|
size-adjust: 100%;color: #007C89;font-weight: normal;text-decoration: unde=
|
|
rline;">Cyberscoop</a> | <a href=3D"https://infosec.exchange/@screaminggoa=
|
|
t/113826625290043358" style=3D"mso-line-height-rule: exactly;-ms-text-size=
|
|
-adjust: 100%;-webkit-text-size-adjust: 100%;color: #007C89;font-weight: n=
|
|
ormal;text-decoration: underline;">@screaminggoat</a></span></span>
|
|
</td>
|
|
</tr>
|
|
</tbody></table>
|
|
=09=09=09=09<!--[if mso]>
|
|
=09=09=09=09</td>
|
|
=09=09=09=09<![endif]-->
|
|
|
|
=09=09=09=09<!--[if mso]>
|
|
=09=09=09=09</tr>
|
|
=09=09=09=09</table>
|
|
=09=09=09=09<![endif]-->
|
|
</td>
|
|
</tr>
|
|
</tbody>
|
|
</table><table border=3D"0" cellpadding=3D"0" cellspacing=3D"0" width=3D"1=
|
|
00%" class=3D"mcnImageBlock" style=3D"min-width: 100%;border-collapse: col=
|
|
lapse;mso-table-lspace: 0pt;mso-table-rspace: 0pt;-ms-text-size-adjust: 10=
|
|
0%;-webkit-text-size-adjust: 100%;">
|
|
<tbody class=3D"mcnImageBlockOuter">
|
|
<tr>
|
|
<td valign=3D"top" style=3D"padding: 9px;mso-line-height-r=
|
|
ule: exactly;-ms-text-size-adjust: 100%;-webkit-text-size-adjust: 100%;" c=
|
|
lass=3D"mcnImageBlockInner">
|
|
<table align=3D"left" width=3D"100%" border=3D"0" cell=
|
|
padding=3D"0" cellspacing=3D"0" class=3D"mcnImageContentContainer" style=
|
|
=3D"min-width: 100%;border-collapse: collapse;mso-table-lspace: 0pt;mso-ta=
|
|
ble-rspace: 0pt;-ms-text-size-adjust: 100%;-webkit-text-size-adjust: 100%;=
|
|
float: left;">
|
|
<tbody><tr>
|
|
<td class=3D"mcnImageContent" valign=3D"top" s=
|
|
tyle=3D"padding-right: 9px;padding-left: 9px;padding-top: 0;padding-bottom=
|
|
: 0;text-align: center;mso-line-height-rule: exactly;-ms-text-size-adjust:=
|
|
100%;-webkit-text-size-adjust: 100%;">
|
|
|
|
<a href=3D"https://x.com/yarden_shafir=
|
|
/status/1879340852654551053" title=3D"" class=3D"" target=3D"_blank" style=
|
|
=3D"mso-line-height-rule: exactly;-ms-text-size-adjust: 100%;-webkit-text-=
|
|
size-adjust: 100%;">
|
|
<img align=3D"middle" alt=3D"Yarde=
|
|
n Shafir tweet: "Today Microsoft fixed 6 kernel address leaks that I=
|
|
reported: CVE-2025-21316 through CVE-2025-21321."" src=3D"https://mc=
|
|
usercontent.com/e1ad6038c994abec17dafb116/images/3df58f98-7c1b-8426-447b-1=
|
|
48c9a68a112.jpeg" width=3D"564" style=3D"max-width: 1000px;padding-bottom:=
|
|
0;display: inline !important;vertical-align: bottom;border: 0;height: aut=
|
|
o;outline: none;text-decoration: none;-ms-interpolation-mode: bicubic;" cl=
|
|
ass=3D"mcnImage">
|
|
</a>
|
|
|
|
</td>
|
|
</tr>
|
|
</tbody></table>
|
|
</td>
|
|
</tr>
|
|
</tbody>
|
|
</table><table border=3D"0" cellpadding=3D"0" cellspacing=3D"0" width=3D"1=
|
|
00%" class=3D"mcnTextBlock" style=3D"min-width: 100%;border-collapse: coll=
|
|
apse;mso-table-lspace: 0pt;mso-table-rspace: 0pt;-ms-text-size-adjust: 100=
|
|
%;-webkit-text-size-adjust: 100%;">
|
|
<tbody class=3D"mcnTextBlockOuter">
|
|
<tr>
|
|
<td valign=3D"top" class=3D"mcnTextBlockInner" style=3D"paddin=
|
|
g-top: 9px;mso-line-height-rule: exactly;-ms-text-size-adjust: 100%;-webki=
|
|
t-text-size-adjust: 100%;">
|
|
=09<!--[if mso]>
|
|
=09=09=09=09<table align=3D"left" border=3D"0" cellspacing=3D"0" cellpaddi=
|
|
ng=3D"0" width=3D"100%" style=3D"width:100%;">
|
|
=09=09=09=09<tr>
|
|
=09=09=09=09<![endif]-->
|
|
=09=09=09
|
|
=09=09=09=09<!--[if mso]>
|
|
=09=09=09=09<td valign=3D"top" width=3D"600" style=3D"width:600px;">
|
|
=09=09=09=09<![endif]-->
|
|
<table align=3D"left" border=3D"0" cellpadding=3D"0" cells=
|
|
pacing=3D"0" style=3D"max-width: 100%;min-width: 100%;border-collapse: col=
|
|
lapse;mso-table-lspace: 0pt;mso-table-rspace: 0pt;-ms-text-size-adjust: 10=
|
|
0%;-webkit-text-size-adjust: 100%;float: left;" width=3D"100%" class=3D"mc=
|
|
nTextContentContainer">
|
|
<tbody><tr>
|
|
|
|
<td valign=3D"top" class=3D"mcnTextContent" style=
|
|
=3D"padding: 0px 18px 9px;font-family: Arial=2C "Helvetica Neue"=
|
|
=2C Helvetica=2C sans-serif;font-size: 14px;line-height: 150%;mso-line-hei=
|
|
ght-rule: exactly;-ms-text-size-adjust: 100%;-webkit-text-size-adjust: 100=
|
|
%;word-break: break-word;color: #202020;text-align: left;">
|
|
|
|
<div style=3D"text-align: center;">~ ~</div>
|
|
|
|
</td>
|
|
</tr>
|
|
</tbody></table>
|
|
=09=09=09=09<!--[if mso]>
|
|
=09=09=09=09</td>
|
|
=09=09=09=09<![endif]-->
|
|
|
|
=09=09=09=09<!--[if mso]>
|
|
=09=09=09=09</tr>
|
|
=09=09=09=09</table>
|
|
=09=09=09=09<![endif]-->
|
|
</td>
|
|
</tr>
|
|
</tbody>
|
|
</table><table border=3D"0" cellpadding=3D"0" cellspacing=3D"0" width=3D"1=
|
|
00%" class=3D"mcnTextBlock" style=3D"min-width: 100%;border-collapse: coll=
|
|
apse;mso-table-lspace: 0pt;mso-table-rspace: 0pt;-ms-text-size-adjust: 100=
|
|
%;-webkit-text-size-adjust: 100%;">
|
|
<tbody class=3D"mcnTextBlockOuter">
|
|
<tr>
|
|
<td valign=3D"top" class=3D"mcnTextBlockInner" style=3D"paddin=
|
|
g-top: 9px;mso-line-height-rule: exactly;-ms-text-size-adjust: 100%;-webki=
|
|
t-text-size-adjust: 100%;">
|
|
=09<!--[if mso]>
|
|
=09=09=09=09<table align=3D"left" border=3D"0" cellspacing=3D"0" cellpaddi=
|
|
ng=3D"0" width=3D"100%" style=3D"width:100%;">
|
|
=09=09=09=09<tr>
|
|
=09=09=09=09<![endif]-->
|
|
=09=09=09
|
|
=09=09=09=09<!--[if mso]>
|
|
=09=09=09=09<td valign=3D"top" width=3D"600" style=3D"width:600px;">
|
|
=09=09=09=09<![endif]-->
|
|
<table align=3D"left" border=3D"0" cellpadding=3D"0" cells=
|
|
pacing=3D"0" style=3D"max-width: 100%;min-width: 100%;border-collapse: col=
|
|
lapse;mso-table-lspace: 0pt;mso-table-rspace: 0pt;-ms-text-size-adjust: 10=
|
|
0%;-webkit-text-size-adjust: 100%;float: left;" width=3D"100%" class=3D"mc=
|
|
nTextContentContainer">
|
|
<tbody><tr>
|
|
|
|
<td valign=3D"top" class=3D"mcnTextContent" style=
|
|
=3D"padding: 0px 18px 9px;font-family: Arial=2C "Helvetica Neue"=
|
|
=2C Helvetica=2C sans-serif;font-size: 14px;line-height: 150%;mso-line-hei=
|
|
ght-rule: exactly;-ms-text-size-adjust: 100%;-webkit-text-size-adjust: 100=
|
|
%;word-break: break-word;color: #202020;text-align: left;">
|
|
|
|
<h3 style=3D"display: block;margin: 0;padding:=
|
|
0;color: #202020;font-family: Helvetica;font-size: 20px;font-style: norma=
|
|
l;font-weight: bold;line-height: 125%;letter-spacing: normal;text-align: l=
|
|
eft;"><span style=3D"font-size:19px"><span style=3D"font-weight:bolder">TH=
|
|
E STUFF YOU MIGHT'VE MISSED</span></span></h3>
|
|
|
|
</td>
|
|
</tr>
|
|
</tbody></table>
|
|
=09=09=09=09<!--[if mso]>
|
|
=09=09=09=09</td>
|
|
=09=09=09=09<![endif]-->
|
|
|
|
=09=09=09=09<!--[if mso]>
|
|
=09=09=09=09</tr>
|
|
=09=09=09=09</table>
|
|
=09=09=09=09<![endif]-->
|
|
</td>
|
|
</tr>
|
|
</tbody>
|
|
</table><table border=3D"0" cellpadding=3D"0" cellspacing=3D"0" width=3D"1=
|
|
00%" class=3D"mcnTextBlock" style=3D"min-width: 100%;border-collapse: coll=
|
|
apse;mso-table-lspace: 0pt;mso-table-rspace: 0pt;-ms-text-size-adjust: 100=
|
|
%;-webkit-text-size-adjust: 100%;">
|
|
<tbody class=3D"mcnTextBlockOuter">
|
|
<tr>
|
|
<td valign=3D"top" class=3D"mcnTextBlockInner" style=3D"paddin=
|
|
g-top: 9px;mso-line-height-rule: exactly;-ms-text-size-adjust: 100%;-webki=
|
|
t-text-size-adjust: 100%;">
|
|
=09<!--[if mso]>
|
|
=09=09=09=09<table align=3D"left" border=3D"0" cellspacing=3D"0" cellpaddi=
|
|
ng=3D"0" width=3D"100%" style=3D"width:100%;">
|
|
=09=09=09=09<tr>
|
|
=09=09=09=09<![endif]-->
|
|
=09=09=09
|
|
=09=09=09=09<!--[if mso]>
|
|
=09=09=09=09<td valign=3D"top" width=3D"600" style=3D"width:600px;">
|
|
=09=09=09=09<![endif]-->
|
|
<table align=3D"left" border=3D"0" cellpadding=3D"0" cells=
|
|
pacing=3D"0" style=3D"max-width: 100%;min-width: 100%;border-collapse: col=
|
|
lapse;mso-table-lspace: 0pt;mso-table-rspace: 0pt;-ms-text-size-adjust: 10=
|
|
0%;-webkit-text-size-adjust: 100%;float: left;" width=3D"100%" class=3D"mc=
|
|
nTextContentContainer">
|
|
<tbody><tr>
|
|
|
|
<td valign=3D"top" class=3D"mcnTextContent" style=
|
|
=3D"padding: 0px 18px 9px;font-family: Arial=2C "Helvetica Neue"=
|
|
=2C Helvetica=2C sans-serif;font-size: 14px;line-height: 150%;mso-line-hei=
|
|
ght-rule: exactly;-ms-text-size-adjust: 100%;-webkit-text-size-adjust: 100=
|
|
%;word-break: break-word;color: #202020;text-align: left;">
|
|
|
|
<span style=3D"font-size:15px"><span style=3D"=
|
|
font-family:arial=2Chelvetica neue=2Chelvetica=2Csans-serif"><strong><a hr=
|
|
ef=3D"https://therecord.media/texas-sues-allstate-data-privacy-cars" style=
|
|
=3D"mso-line-height-rule: exactly;-ms-text-size-adjust: 100%;-webkit-text-=
|
|
size-adjust: 100%;color: #007C89;font-weight: normal;text-decoration: unde=
|
|
rline;">Texas sues Allstate for violating privacy rights of 45 million Ame=
|
|
ricans</a></strong><br>
|
|
<strong>The Record: </strong> Texas' attorney general is suing Allstate an=
|
|
d its subsidiary Arity for allegedly collecting=2C using and selling cellp=
|
|
hone location data and customers' movements of more than 45 million Americ=
|
|
ans without their knowledge=2C per <a href=3D"https://www.texasattorneygen=
|
|
eral.gov/news/releases/attorney-general-ken-paxton-sues-allstate-and-arity=
|
|
-unlawfully-collecting-using-and-selling-over-45" style=3D"mso-line-height=
|
|
-rule: exactly;-ms-text-size-adjust: 100%;-webkit-text-size-adjust: 100%;c=
|
|
olor: #007C89;font-weight: normal;text-decoration: underline;">a presser</=
|
|
a>. (<a href=3D"https://arstechnica.com/gadgets/2025/01/allstate-sued-for-=
|
|
allegedly-tracking-drivers-behavior-through-third-party-apps/" style=3D"ms=
|
|
o-line-height-rule: exactly;-ms-text-size-adjust: 100%;-webkit-text-size-a=
|
|
djust: 100%;color: #007C89;font-weight: normal;text-decoration: underline;=
|
|
">Ars Technica</a> has some good yarn=2C too.) Allstate and other insurers=
|
|
would "use that consumer=E2=80=99s data to justify increasing their car i=
|
|
nsurance premium." Yuck=2C gross. Damn=2C if only they'd do something abou=
|
|
t <em>this</em> kind of invasive data collection and not say=2C <em>oh I d=
|
|
on't know</em>=2C not focus on some nebulous threat from TikTok?<br>
|
|
<br>
|
|
<strong><a href=3D"https://www.washingtonpost.com/business/interactive/202=
|
|
5/police-artificial-intelligence-facial-recognition/" style=3D"mso-line-he=
|
|
ight-rule: exactly;-ms-text-size-adjust: 100%;-webkit-text-size-adjust: 10=
|
|
0%;color: #007C89;font-weight: normal;text-decoration: underline;">At leas=
|
|
t 8 Americans wrongly arrested after AI face matches</a></strong><br>
|
|
<strong>Washington Post ($): </strong> Get yourself a pot of coffee and ri=
|
|
led up for this weekend long-read. This infuriating story (the piece itsel=
|
|
f is very well done) looks at deficiencies in policing standards across th=
|
|
e U.S. resulting in overconfidence by police that AI and facial recognitio=
|
|
n was working =E2=80=94 when it absolutely wasn't. The effect that these a=
|
|
rrests had on their lives can't be understated.<br>
|
|
<br>
|
|
<strong><a href=3D"https://techcrunch.com/2025/01/13/how-barcelona-became-=
|
|
an-unlikely-hub-for-spyware-startups/" style=3D"mso-line-height-rule: exac=
|
|
tly;-ms-text-size-adjust: 100%;-webkit-text-size-adjust: 100%;color: #007C=
|
|
89;font-weight: normal;text-decoration: underline;">How Barcelona became a=
|
|
n unlikely hub for spyware makers</a></strong><br>
|
|
<strong>TechCrunch: </strong> Sun=2C seafood=2C beautiful beaches... and s=
|
|
pyware? That's Barcelona=2C Europe's newest spyware hub=2C according to mu=
|
|
ltiple people involved in the spyware and exploit making business=2C who s=
|
|
poke with <a href=3D"https://bsky.app/profile/lorenzofb.bsky.social/post/3=
|
|
lfpkfzkucc2r" style=3D"mso-line-height-rule: exactly;-ms-text-size-adjust:=
|
|
100%;-webkit-text-size-adjust: 100%;color: #007C89;font-weight: normal;te=
|
|
xt-decoration: underline;">@lorenzofb</a>. The piece follows a would-be hi=
|
|
re at a shadowy=2C secretive spyware maker starting out in Barcelona. Sure=
|
|
=2C Barcelona sounds fun and the city clearly has incentives to move there=
|
|
=2C but it's actually easier for spyware makers to export their products t=
|
|
o Europe <em>from</em> Europe than it is from Israel=2C where many of thes=
|
|
e companies started out. At least for one person=2C moving to Spain was be=
|
|
cause of "expulsion" over emigration. This story got an important shoutout=
|
|
by Citizen Lab's <a href=3D"https://bsky.app/profile/jsrailton.bsky.socia=
|
|
l" style=3D"mso-line-height-rule: exactly;-ms-text-size-adjust: 100%;-webk=
|
|
it-text-size-adjust: 100%;color: #007C89;font-weight: normal;text-decorati=
|
|
on: underline;">@jsrailton</a> at the U.N. Security Council=2C which saw g=
|
|
overnments this week <a href=3D"https://techcrunch.com/2025/01/15/governme=
|
|
nts-call-for-spyware-regulations-in-un-security-council-meeting/" style=3D=
|
|
"mso-line-height-rule: exactly;-ms-text-size-adjust: 100%;-webkit-text-siz=
|
|
e-adjust: 100%;color: #007C89;font-weight: normal;text-decoration: underli=
|
|
ne;">call for regulations</a> on the use of spyware.<br>
|
|
<br>
|
|
<strong><a href=3D"https://trufflesecurity.com/blog/millions-at-risk-due-t=
|
|
o-google-s-oauth-flaw" style=3D"mso-line-height-rule: exactly;-ms-text-siz=
|
|
e-adjust: 100%;-webkit-text-size-adjust: 100%;color: #007C89;font-weight:=
|
|
normal;text-decoration: underline;">Millions of 'failed' accounts vulnera=
|
|
ble due to Google's OAuth Flaw</a></strong><br>
|
|
<strong>Truffle Security: </strong> OAuth=2C the login feature that lets y=
|
|
ou sign in with an online account (think the "sign in with Google" login o=
|
|
ption) can have its benefits=2C but you're putting your account access in=
|
|
the hands of someone else; in this case=2C Google. If you lose access to=
|
|
your account (or Google bans you)=2C you're stuffed. This same issue happ=
|
|
ens with expired or lost domains=2C such as when a startup collapses; you=
|
|
can re-access any account that's connected to the newly revived domain (l=
|
|
ike Zoom=2C HR systems=2C and more). Truffle Security has a good post on w=
|
|
hat happens if you buy these expired domains and what access you can get t=
|
|
o defunct Google accounts. The research was presented at ShmooCon; you can=
|
|
watch the talk from the blog.</span></span>
|
|
</td>
|
|
</tr>
|
|
</tbody></table>
|
|
=09=09=09=09<!--[if mso]>
|
|
=09=09=09=09</td>
|
|
=09=09=09=09<![endif]-->
|
|
|
|
=09=09=09=09<!--[if mso]>
|
|
=09=09=09=09</tr>
|
|
=09=09=09=09</table>
|
|
=09=09=09=09<![endif]-->
|
|
</td>
|
|
</tr>
|
|
</tbody>
|
|
</table><table border=3D"0" cellpadding=3D"0" cellspacing=3D"0" width=3D"1=
|
|
00%" class=3D"mcnImageBlock" style=3D"min-width: 100%;border-collapse: col=
|
|
lapse;mso-table-lspace: 0pt;mso-table-rspace: 0pt;-ms-text-size-adjust: 10=
|
|
0%;-webkit-text-size-adjust: 100%;">
|
|
<tbody class=3D"mcnImageBlockOuter">
|
|
<tr>
|
|
<td valign=3D"top" style=3D"padding: 9px;mso-line-height-r=
|
|
ule: exactly;-ms-text-size-adjust: 100%;-webkit-text-size-adjust: 100%;" c=
|
|
lass=3D"mcnImageBlockInner">
|
|
<table align=3D"left" width=3D"100%" border=3D"0" cell=
|
|
padding=3D"0" cellspacing=3D"0" class=3D"mcnImageContentContainer" style=
|
|
=3D"min-width: 100%;border-collapse: collapse;mso-table-lspace: 0pt;mso-ta=
|
|
ble-rspace: 0pt;-ms-text-size-adjust: 100%;-webkit-text-size-adjust: 100%;=
|
|
float: left;">
|
|
<tbody><tr>
|
|
<td class=3D"mcnImageContent" valign=3D"top" s=
|
|
tyle=3D"padding-right: 9px;padding-left: 9px;padding-top: 0;padding-bottom=
|
|
: 0;text-align: center;mso-line-height-rule: exactly;-ms-text-size-adjust:=
|
|
100%;-webkit-text-size-adjust: 100%;">
|
|
|
|
<a href=3D"https://trufflesecurity.com=
|
|
/blog/millions-at-risk-due-to-google-s-oauth-flaw" title=3D"" class=3D"" t=
|
|
arget=3D"_blank" style=3D"mso-line-height-rule: exactly;-ms-text-size-adju=
|
|
st: 100%;-webkit-text-size-adjust: 100%;">
|
|
<img align=3D"middle" alt=3D"A scr=
|
|
eenshot showing access to a defunct startup's Zoom account after re-regist=
|
|
ering an expired domain." src=3D"https://mcusercontent.com/e1ad6038c994abe=
|
|
c17dafb116/images/9b870037-e7be-bf57-5a5c-2ec3d4d97c3f.jpeg" width=3D"564"=
|
|
style=3D"max-width: 1000px;padding-bottom: 0;display: inline !important;v=
|
|
ertical-align: bottom;border: 0;height: auto;outline: none;text-decoration=
|
|
: none;-ms-interpolation-mode: bicubic;" class=3D"mcnImage">
|
|
</a>
|
|
|
|
</td>
|
|
</tr>
|
|
</tbody></table>
|
|
</td>
|
|
</tr>
|
|
</tbody>
|
|
</table><table border=3D"0" cellpadding=3D"0" cellspacing=3D"0" width=3D"1=
|
|
00%" class=3D"mcnTextBlock" style=3D"min-width: 100%;border-collapse: coll=
|
|
apse;mso-table-lspace: 0pt;mso-table-rspace: 0pt;-ms-text-size-adjust: 100=
|
|
%;-webkit-text-size-adjust: 100%;">
|
|
<tbody class=3D"mcnTextBlockOuter">
|
|
<tr>
|
|
<td valign=3D"top" class=3D"mcnTextBlockInner" style=3D"paddin=
|
|
g-top: 9px;mso-line-height-rule: exactly;-ms-text-size-adjust: 100%;-webki=
|
|
t-text-size-adjust: 100%;">
|
|
=09<!--[if mso]>
|
|
=09=09=09=09<table align=3D"left" border=3D"0" cellspacing=3D"0" cellpaddi=
|
|
ng=3D"0" width=3D"100%" style=3D"width:100%;">
|
|
=09=09=09=09<tr>
|
|
=09=09=09=09<![endif]-->
|
|
=09=09=09
|
|
=09=09=09=09<!--[if mso]>
|
|
=09=09=09=09<td valign=3D"top" width=3D"600" style=3D"width:600px;">
|
|
=09=09=09=09<![endif]-->
|
|
<table align=3D"left" border=3D"0" cellpadding=3D"0" cells=
|
|
pacing=3D"0" style=3D"max-width: 100%;min-width: 100%;border-collapse: col=
|
|
lapse;mso-table-lspace: 0pt;mso-table-rspace: 0pt;-ms-text-size-adjust: 10=
|
|
0%;-webkit-text-size-adjust: 100%;float: left;" width=3D"100%" class=3D"mc=
|
|
nTextContentContainer">
|
|
<tbody><tr>
|
|
|
|
<td valign=3D"top" class=3D"mcnTextContent" style=
|
|
=3D"padding: 0px 18px 9px;font-family: Arial=2C "Helvetica Neue"=
|
|
=2C Helvetica=2C sans-serif;font-size: 14px;line-height: 150%;mso-line-hei=
|
|
ght-rule: exactly;-ms-text-size-adjust: 100%;-webkit-text-size-adjust: 100=
|
|
%;word-break: break-word;color: #202020;text-align: left;">
|
|
|
|
<span style=3D"font-size:15px"><span style=3D"=
|
|
font-family:arial=2Chelvetica neue=2Chelvetica=2Csans-serif"><strong><a hr=
|
|
ef=3D"https://www.microsoft.com/en-us/security/blog/2025/01/16/new-star-bl=
|
|
izzard-spear-phishing-campaign-targets-whatsapp-accounts/" style=3D"mso-li=
|
|
ne-height-rule: exactly;-ms-text-size-adjust: 100%;-webkit-text-size-adjus=
|
|
t: 100%;color: #007C89;font-weight: normal;text-decoration: underline;">Ru=
|
|
ssian FSB campaign aims to exploit WhatsApp accounts</a></strong><br>
|
|
<strong>Microsoft: </strong> Hackers believed to be associated with Russia=
|
|
's FSB are behind a new campaign targeting access to WhatsApp users. Micro=
|
|
soft's new research <a href=3D"https://www.microsoft.com/en-us/security/bl=
|
|
og/2025/01/16/new-star-blizzard-spear-phishing-campaign-targets-whatsapp-a=
|
|
ccounts/" style=3D"mso-line-height-rule: exactly;-ms-text-size-adjust: 100=
|
|
%;-webkit-text-size-adjust: 100%;color: #007C89;font-weight: normal;text-d=
|
|
ecoration: underline;">shows</a> the hackers are using fake QR codes to ga=
|
|
in access to WhatsApp accounts =E2=80=94 which=2C let's not forget=2C are=
|
|
widely used across governments (and <a href=3D"https://www.politico.eu/ar=
|
|
ticle/the-british-governments-disappearing-whatsapps/" style=3D"mso-line-h=
|
|
eight-rule: exactly;-ms-text-size-adjust: 100%;-webkit-text-size-adjust: 1=
|
|
00%;color: #007C89;font-weight: normal;text-decoration: underline;">in the=
|
|
U.K.</a>). <a href=3D"https://www.theguardian.com/technology/2025/jan/17/=
|
|
russian-hackers-star-blizzard-whatsapp-accounts-ministers-officials" style=
|
|
=3D"mso-line-height-rule: exactly;-ms-text-size-adjust: 100%;-webkit-text-=
|
|
size-adjust: 100%;color: #007C89;font-weight: normal;text-decoration: unde=
|
|
rline;">The Guardian</a> has a good tl;dr.</span></span>
|
|
</td>
|
|
</tr>
|
|
</tbody></table>
|
|
=09=09=09=09<!--[if mso]>
|
|
=09=09=09=09</td>
|
|
=09=09=09=09<![endif]-->
|
|
|
|
=09=09=09=09<!--[if mso]>
|
|
=09=09=09=09</tr>
|
|
=09=09=09=09</table>
|
|
=09=09=09=09<![endif]-->
|
|
</td>
|
|
</tr>
|
|
</tbody>
|
|
</table><table border=3D"0" cellpadding=3D"0" cellspacing=3D"0" width=3D"1=
|
|
00%" class=3D"mcnTextBlock" style=3D"min-width: 100%;border-collapse: coll=
|
|
apse;mso-table-lspace: 0pt;mso-table-rspace: 0pt;-ms-text-size-adjust: 100=
|
|
%;-webkit-text-size-adjust: 100%;">
|
|
<tbody class=3D"mcnTextBlockOuter">
|
|
<tr>
|
|
<td valign=3D"top" class=3D"mcnTextBlockInner" style=3D"paddin=
|
|
g-top: 9px;mso-line-height-rule: exactly;-ms-text-size-adjust: 100%;-webki=
|
|
t-text-size-adjust: 100%;">
|
|
=09<!--[if mso]>
|
|
=09=09=09=09<table align=3D"left" border=3D"0" cellspacing=3D"0" cellpaddi=
|
|
ng=3D"0" width=3D"100%" style=3D"width:100%;">
|
|
=09=09=09=09<tr>
|
|
=09=09=09=09<![endif]-->
|
|
=09=09=09
|
|
=09=09=09=09<!--[if mso]>
|
|
=09=09=09=09<td valign=3D"top" width=3D"600" style=3D"width:600px;">
|
|
=09=09=09=09<![endif]-->
|
|
<table align=3D"left" border=3D"0" cellpadding=3D"0" cells=
|
|
pacing=3D"0" style=3D"max-width: 100%;min-width: 100%;border-collapse: col=
|
|
lapse;mso-table-lspace: 0pt;mso-table-rspace: 0pt;-ms-text-size-adjust: 10=
|
|
0%;-webkit-text-size-adjust: 100%;float: left;" width=3D"100%" class=3D"mc=
|
|
nTextContentContainer">
|
|
<tbody><tr>
|
|
|
|
<td valign=3D"top" class=3D"mcnTextContent" style=
|
|
=3D"padding: 0px 18px 9px;font-family: Arial=2C "Helvetica Neue"=
|
|
=2C Helvetica=2C sans-serif;font-size: 14px;line-height: 150%;mso-line-hei=
|
|
ght-rule: exactly;-ms-text-size-adjust: 100%;-webkit-text-size-adjust: 100=
|
|
%;word-break: break-word;color: #202020;text-align: left;">
|
|
|
|
<div style=3D"text-align: center;">~ ~</div>
|
|
|
|
</td>
|
|
</tr>
|
|
</tbody></table>
|
|
=09=09=09=09<!--[if mso]>
|
|
=09=09=09=09</td>
|
|
=09=09=09=09<![endif]-->
|
|
|
|
=09=09=09=09<!--[if mso]>
|
|
=09=09=09=09</tr>
|
|
=09=09=09=09</table>
|
|
=09=09=09=09<![endif]-->
|
|
</td>
|
|
</tr>
|
|
</tbody>
|
|
</table><table border=3D"0" cellpadding=3D"0" cellspacing=3D"0" width=3D"1=
|
|
00%" class=3D"mcnBoxedTextBlock" style=3D"min-width: 100%;border-collapse:=
|
|
collapse;mso-table-lspace: 0pt;mso-table-rspace: 0pt;-ms-text-size-adjust=
|
|
: 100%;-webkit-text-size-adjust: 100%;">
|
|
<!--[if gte mso 9]>
|
|
=09<table align=3D"center" border=3D"0" cellspacing=3D"0" cellpadding=3D"0=
|
|
" width=3D"100%">
|
|
=09<![endif]-->
|
|
=09<tbody class=3D"mcnBoxedTextBlockOuter">
|
|
<tr>
|
|
<td valign=3D"top" class=3D"mcnBoxedTextBlockInner" style=3D"m=
|
|
so-line-height-rule: exactly;-ms-text-size-adjust: 100%;-webkit-text-size-=
|
|
adjust: 100%;">
|
|
|
|
=09=09=09=09<!--[if gte mso 9]>
|
|
=09=09=09=09<td align=3D"center" valign=3D"top" ">
|
|
=09=09=09=09<![endif]-->
|
|
<table align=3D"left" border=3D"0" cellpadding=3D"0" cells=
|
|
pacing=3D"0" width=3D"100%" style=3D"min-width: 100%;border-collapse: coll=
|
|
apse;mso-table-lspace: 0pt;mso-table-rspace: 0pt;-ms-text-size-adjust: 100=
|
|
%;-webkit-text-size-adjust: 100%;float: left;" class=3D"mcnBoxedTextConten=
|
|
tContainer">
|
|
<tbody><tr>
|
|
|
|
<td style=3D"padding-top: 9px;padding-left: 18px;p=
|
|
adding-bottom: 9px;padding-right: 18px;mso-line-height-rule: exactly;-ms-t=
|
|
ext-size-adjust: 100%;-webkit-text-size-adjust: 100%;">
|
|
|
|
<table border=3D"0" cellspacing=3D"0" class=3D=
|
|
"mcnTextContentContainer" width=3D"100%" style=3D"min-width: 100% !importa=
|
|
nt;background-color: #F5F5F5;border: 3px dotted #54B2AA;border-collapse: c=
|
|
ollapse;mso-table-lspace: 0pt;mso-table-rspace: 0pt;-ms-text-size-adjust:=
|
|
100%;-webkit-text-size-adjust: 100%;">
|
|
<tbody><tr>
|
|
<td valign=3D"top" class=3D"mcnTextCon=
|
|
tent" style=3D"padding: 18px;color: #222222;font-family: Helvetica;font-si=
|
|
ze: 14px;font-weight: normal;line-height: 150%;text-align: center;mso-line=
|
|
-height-rule: exactly;-ms-text-size-adjust: 100%;-webkit-text-size-adjust:=
|
|
100%;word-break: break-word;">
|
|
<div style=3D"text-align: center;"=
|
|
><span style=3D"font-family:arial=2Chelvetica neue=2Chelvetica=2Csans-seri=
|
|
f"><span style=3D"font-size:19px"><span style=3D"font-weight:bolder">THANK=
|
|
S FOR READING!</span></span></span></div>
|
|
|
|
|
|
<div style=3D"text-align: left;"><span style=3D"font-size:15px"><span styl=
|
|
e=3D"font-family:arial=2Chelvetica neue=2Chelvetica=2Csans-serif"><strong>=
|
|
~this week in security~</strong> is my free weekly cybersecurity newslette=
|
|
r supported entirely by donations from readers like you. As a <a href=3D"h=
|
|
ttps://techcrunch.com/author/zack-whittaker/" style=3D"mso-line-height-rul=
|
|
e: exactly;-ms-text-size-adjust: 100%;-webkit-text-size-adjust: 100%;color=
|
|
: #007C89;font-weight: normal;text-decoration: underline;">working journal=
|
|
ist</a>=2C I don't run ads or accept sponsors for this newsletter. Donatio=
|
|
ns help reduce the costs of sending this newsletter while keeping it free=
|
|
=2C weekly=2C and without tracking.<br>
|
|
<br>
|
|
<strong>To support this newsletter</strong>=2C <a href=3D"https://ko-fi.co=
|
|
m/thisweekinsecurity" target=3D"_blank" style=3D"mso-line-height-rule: exa=
|
|
ctly;-ms-text-size-adjust: 100%;-webkit-text-size-adjust: 100%;color: #007=
|
|
C89;font-weight: normal;text-decoration: underline;"><strong>check out my=
|
|
Ko-fi</strong></a> to drop a one-time donation=2C or sign up from $10/mon=
|
|
thly to get <a href=3D"https://ko-fi.com/thisweekinsecurity/tiers" target=
|
|
=3D"_blank" style=3D"mso-line-height-rule: exactly;-ms-text-size-adjust: 1=
|
|
00%;-webkit-text-size-adjust: 100%;color: #007C89;font-weight: normal;text=
|
|
-decoration: underline;">cool swag</a> shipped worldwide.</span></span></d=
|
|
iv>
|
|
|
|
</td>
|
|
</tr>
|
|
</tbody></table>
|
|
</td>
|
|
</tr>
|
|
</tbody></table>
|
|
=09=09=09=09<!--[if gte mso 9]>
|
|
=09=09=09=09</td>
|
|
=09=09=09=09<![endif]-->
|
|
|
|
=09=09=09=09<!--[if gte mso 9]>
|
|
</tr>
|
|
</table>
|
|
=09=09=09=09<![endif]-->
|
|
</td>
|
|
</tr>
|
|
</tbody>
|
|
</table><table border=3D"0" cellpadding=3D"0" cellspacing=3D"0" width=3D"1=
|
|
00%" class=3D"mcnTextBlock" style=3D"min-width: 100%;border-collapse: coll=
|
|
apse;mso-table-lspace: 0pt;mso-table-rspace: 0pt;-ms-text-size-adjust: 100=
|
|
%;-webkit-text-size-adjust: 100%;">
|
|
<tbody class=3D"mcnTextBlockOuter">
|
|
<tr>
|
|
<td valign=3D"top" class=3D"mcnTextBlockInner" style=3D"paddin=
|
|
g-top: 9px;mso-line-height-rule: exactly;-ms-text-size-adjust: 100%;-webki=
|
|
t-text-size-adjust: 100%;">
|
|
=09<!--[if mso]>
|
|
=09=09=09=09<table align=3D"left" border=3D"0" cellspacing=3D"0" cellpaddi=
|
|
ng=3D"0" width=3D"100%" style=3D"width:100%;">
|
|
=09=09=09=09<tr>
|
|
=09=09=09=09<![endif]-->
|
|
=09=09=09
|
|
=09=09=09=09<!--[if mso]>
|
|
=09=09=09=09<td valign=3D"top" width=3D"600" style=3D"width:600px;">
|
|
=09=09=09=09<![endif]-->
|
|
<table align=3D"left" border=3D"0" cellpadding=3D"0" cells=
|
|
pacing=3D"0" style=3D"max-width: 100%;min-width: 100%;border-collapse: col=
|
|
lapse;mso-table-lspace: 0pt;mso-table-rspace: 0pt;-ms-text-size-adjust: 10=
|
|
0%;-webkit-text-size-adjust: 100%;float: left;" width=3D"100%" class=3D"mc=
|
|
nTextContentContainer">
|
|
<tbody><tr>
|
|
|
|
<td valign=3D"top" class=3D"mcnTextContent" style=
|
|
=3D"padding: 0px 18px 9px;font-family: Arial=2C "Helvetica Neue"=
|
|
=2C Helvetica=2C sans-serif;font-size: 14px;line-height: 150%;mso-line-hei=
|
|
ght-rule: exactly;-ms-text-size-adjust: 100%;-webkit-text-size-adjust: 100=
|
|
%;word-break: break-word;color: #202020;text-align: left;">
|
|
|
|
<div style=3D"text-align: center;">~ ~</div>
|
|
|
|
</td>
|
|
</tr>
|
|
</tbody></table>
|
|
=09=09=09=09<!--[if mso]>
|
|
=09=09=09=09</td>
|
|
=09=09=09=09<![endif]-->
|
|
|
|
=09=09=09=09<!--[if mso]>
|
|
=09=09=09=09</tr>
|
|
=09=09=09=09</table>
|
|
=09=09=09=09<![endif]-->
|
|
</td>
|
|
</tr>
|
|
</tbody>
|
|
</table><table border=3D"0" cellpadding=3D"0" cellspacing=3D"0" width=3D"1=
|
|
00%" class=3D"mcnTextBlock" style=3D"min-width: 100%;border-collapse: coll=
|
|
apse;mso-table-lspace: 0pt;mso-table-rspace: 0pt;-ms-text-size-adjust: 100=
|
|
%;-webkit-text-size-adjust: 100%;">
|
|
<tbody class=3D"mcnTextBlockOuter">
|
|
<tr>
|
|
<td valign=3D"top" class=3D"mcnTextBlockInner" style=3D"paddin=
|
|
g-top: 9px;mso-line-height-rule: exactly;-ms-text-size-adjust: 100%;-webki=
|
|
t-text-size-adjust: 100%;">
|
|
=09<!--[if mso]>
|
|
=09=09=09=09<table align=3D"left" border=3D"0" cellspacing=3D"0" cellpaddi=
|
|
ng=3D"0" width=3D"100%" style=3D"width:100%;">
|
|
=09=09=09=09<tr>
|
|
=09=09=09=09<![endif]-->
|
|
=09=09=09
|
|
=09=09=09=09<!--[if mso]>
|
|
=09=09=09=09<td valign=3D"top" width=3D"600" style=3D"width:600px;">
|
|
=09=09=09=09<![endif]-->
|
|
<table align=3D"left" border=3D"0" cellpadding=3D"0" cells=
|
|
pacing=3D"0" style=3D"max-width: 100%;min-width: 100%;border-collapse: col=
|
|
lapse;mso-table-lspace: 0pt;mso-table-rspace: 0pt;-ms-text-size-adjust: 10=
|
|
0%;-webkit-text-size-adjust: 100%;float: left;" width=3D"100%" class=3D"mc=
|
|
nTextContentContainer">
|
|
<tbody><tr>
|
|
|
|
<td valign=3D"top" class=3D"mcnTextContent" style=
|
|
=3D"padding: 0px 18px 9px;font-family: Arial=2C "Helvetica Neue"=
|
|
=2C Helvetica=2C sans-serif;font-size: 14px;line-height: 150%;mso-line-hei=
|
|
ght-rule: exactly;-ms-text-size-adjust: 100%;-webkit-text-size-adjust: 100=
|
|
%;word-break: break-word;color: #202020;text-align: left;">
|
|
|
|
<h3 style=3D"display: block;margin: 0;padding:=
|
|
0;color: #202020;font-family: Helvetica;font-size: 20px;font-style: norma=
|
|
l;font-weight: bold;line-height: 125%;letter-spacing: normal;text-align: l=
|
|
eft;"><span style=3D"font-size:19px"><span style=3D"font-weight:bolder">OT=
|
|
HER NEWSY NUGGETS</span></span></h3>
|
|
|
|
</td>
|
|
</tr>
|
|
</tbody></table>
|
|
=09=09=09=09<!--[if mso]>
|
|
=09=09=09=09</td>
|
|
=09=09=09=09<![endif]-->
|
|
|
|
=09=09=09=09<!--[if mso]>
|
|
=09=09=09=09</tr>
|
|
=09=09=09=09</table>
|
|
=09=09=09=09<![endif]-->
|
|
</td>
|
|
</tr>
|
|
</tbody>
|
|
</table><table border=3D"0" cellpadding=3D"0" cellspacing=3D"0" width=3D"1=
|
|
00%" class=3D"mcnTextBlock" style=3D"min-width: 100%;border-collapse: coll=
|
|
apse;mso-table-lspace: 0pt;mso-table-rspace: 0pt;-ms-text-size-adjust: 100=
|
|
%;-webkit-text-size-adjust: 100%;">
|
|
<tbody class=3D"mcnTextBlockOuter">
|
|
<tr>
|
|
<td valign=3D"top" class=3D"mcnTextBlockInner" style=3D"paddin=
|
|
g-top: 9px;mso-line-height-rule: exactly;-ms-text-size-adjust: 100%;-webki=
|
|
t-text-size-adjust: 100%;">
|
|
=09<!--[if mso]>
|
|
=09=09=09=09<table align=3D"left" border=3D"0" cellspacing=3D"0" cellpaddi=
|
|
ng=3D"0" width=3D"100%" style=3D"width:100%;">
|
|
=09=09=09=09<tr>
|
|
=09=09=09=09<![endif]-->
|
|
=09=09=09
|
|
=09=09=09=09<!--[if mso]>
|
|
=09=09=09=09<td valign=3D"top" width=3D"600" style=3D"width:600px;">
|
|
=09=09=09=09<![endif]-->
|
|
<table align=3D"left" border=3D"0" cellpadding=3D"0" cells=
|
|
pacing=3D"0" style=3D"max-width: 100%;min-width: 100%;border-collapse: col=
|
|
lapse;mso-table-lspace: 0pt;mso-table-rspace: 0pt;-ms-text-size-adjust: 10=
|
|
0%;-webkit-text-size-adjust: 100%;float: left;" width=3D"100%" class=3D"mc=
|
|
nTextContentContainer">
|
|
<tbody><tr>
|
|
|
|
<td valign=3D"top" class=3D"mcnTextContent" style=
|
|
=3D"padding: 0px 18px 9px;font-family: Arial=2C "Helvetica Neue"=
|
|
=2C Helvetica=2C sans-serif;font-size: 14px;line-height: 150%;mso-line-hei=
|
|
ght-rule: exactly;-ms-text-size-adjust: 100%;-webkit-text-size-adjust: 100=
|
|
%;word-break: break-word;color: #202020;text-align: left;">
|
|
|
|
<span style=3D"font-size:15px"><span style=3D"=
|
|
font-family:arial=2Chelvetica neue=2Chelvetica=2Csans-serif"><strong>Clop=
|
|
claims hacked Cleo customers: </strong> The Clop ransomware gang's latest=
|
|
mass-hack campaign targeting customers of Cleo Software seemed to return=
|
|
little=2C if anything=2C on the ransom front and appears to have been a b=
|
|
ust. Clop named dozens of companies that it claimed to have hacked in rece=
|
|
nt weeks by way of exploiting a zero-day in the Cleo software used by its=
|
|
customers=2C but actually=2C many of the companies said they had <a href=
|
|
=3D"https://techcrunch.com/2025/01/16/clop-ransomware-gang-names-dozens-of=
|
|
-victims-hit-by-cleo-mass-hack-but-several-firms-dispute-breaches/" style=
|
|
=3D"mso-line-height-rule: exactly;-ms-text-size-adjust: 100%;-webkit-text-=
|
|
size-adjust: 100%;color: #007C89;font-weight: normal;text-decoration: unde=
|
|
rline;">no evidence they were hacked</a> (which of course doesn't mean the=
|
|
y weren't)=2C but several said they weren't even Cleo customers! (<em>via=
|
|
<a href=3D"https://techcrunch.com/2025/01/16/clop-ransomware-gang-names-d=
|
|
ozens-of-victims-hit-by-cleo-mass-hack-but-several-firms-dispute-breaches/=
|
|
" style=3D"mso-line-height-rule: exactly;-ms-text-size-adjust: 100%;-webki=
|
|
t-text-size-adjust: 100%;color: #007C89;font-weight: normal;text-decoratio=
|
|
n: underline;">TechCrunch</a></em>)<br>
|
|
<br>
|
|
<strong>Gov't websites awash with scams and porn: </strong> Reports this w=
|
|
eek show both <a href=3D"https://theintercept.com/2025/01/14/government-we=
|
|
bsites-porn-spam-hack/" style=3D"mso-line-height-rule: exactly;-ms-text-si=
|
|
ze-adjust: 100%;-webkit-text-size-adjust: 100%;color: #007C89;font-weight:=
|
|
normal;text-decoration: underline;">U.S. federal</a> and <a href=3D"https=
|
|
://techcrunch.com/2025/01/07/indian-government-websites-are-still-redirect=
|
|
ing-users-to-scam-sites/" style=3D"mso-line-height-rule: exactly;-ms-text-=
|
|
size-adjust: 100%;-webkit-text-size-adjust: 100%;color: #007C89;font-weigh=
|
|
t: normal;text-decoration: underline;">Indian government websites</a> are=
|
|
full of spam=2C scams=2C and sometimes porn=2C for reasons that aren't co=
|
|
mpletely clear=2C but somehow=2C <em>somewhere</em>=2C hackers are breakin=
|
|
g in and dropping pages and redirects to their own sites=2C which are gett=
|
|
ing cached in Google and other search engines. It's not a new issue by any=
|
|
means... and yet=2C nevertheless=2C it persists. (<em>via <a href=3D"http=
|
|
s://theintercept.com/2025/01/14/government-websites-porn-spam-hack/" style=
|
|
=3D"mso-line-height-rule: exactly;-ms-text-size-adjust: 100%;-webkit-text-=
|
|
size-adjust: 100%;color: #007C89;font-weight: normal;text-decoration: unde=
|
|
rline;">The Intercept ($)</a>=2C <a href=3D"https://bsky.app/profile/dell.=
|
|
bsky.social/post/3lfqntcqbis2v" style=3D"mso-line-height-rule: exactly;-ms=
|
|
-text-size-adjust: 100%;-webkit-text-size-adjust: 100%;color: #007C89;font=
|
|
-weight: normal;text-decoration: underline;">@dell</a></em>)</span></span>
|
|
</td>
|
|
</tr>
|
|
</tbody></table>
|
|
=09=09=09=09<!--[if mso]>
|
|
=09=09=09=09</td>
|
|
=09=09=09=09<![endif]-->
|
|
|
|
=09=09=09=09<!--[if mso]>
|
|
=09=09=09=09</tr>
|
|
=09=09=09=09</table>
|
|
=09=09=09=09<![endif]-->
|
|
</td>
|
|
</tr>
|
|
</tbody>
|
|
</table><table border=3D"0" cellpadding=3D"0" cellspacing=3D"0" width=3D"1=
|
|
00%" class=3D"mcnImageBlock" style=3D"min-width: 100%;border-collapse: col=
|
|
lapse;mso-table-lspace: 0pt;mso-table-rspace: 0pt;-ms-text-size-adjust: 10=
|
|
0%;-webkit-text-size-adjust: 100%;">
|
|
<tbody class=3D"mcnImageBlockOuter">
|
|
<tr>
|
|
<td valign=3D"top" style=3D"padding: 9px;mso-line-height-r=
|
|
ule: exactly;-ms-text-size-adjust: 100%;-webkit-text-size-adjust: 100%;" c=
|
|
lass=3D"mcnImageBlockInner">
|
|
<table align=3D"left" width=3D"100%" border=3D"0" cell=
|
|
padding=3D"0" cellspacing=3D"0" class=3D"mcnImageContentContainer" style=
|
|
=3D"min-width: 100%;border-collapse: collapse;mso-table-lspace: 0pt;mso-ta=
|
|
ble-rspace: 0pt;-ms-text-size-adjust: 100%;-webkit-text-size-adjust: 100%;=
|
|
float: left;">
|
|
<tbody><tr>
|
|
<td class=3D"mcnImageContent" valign=3D"top" s=
|
|
tyle=3D"padding-right: 9px;padding-left: 9px;padding-top: 0;padding-bottom=
|
|
: 0;text-align: center;mso-line-height-rule: exactly;-ms-text-size-adjust:=
|
|
100%;-webkit-text-size-adjust: 100%;">
|
|
|
|
<a href=3D"https://bsky.app/profile/de=
|
|
ll.bsky.social/post/3lfqntcqbis2v" title=3D"" class=3D"" target=3D"_blank"=
|
|
style=3D"mso-line-height-rule: exactly;-ms-text-size-adjust: 100%;-webkit=
|
|
-text-size-adjust: 100%;">
|
|
<img align=3D"middle" alt=3D"Dell=
|
|
Cameron post on Bsky: "I wrote this story twice and then gave up=2C&=
|
|
quot; followed by two screenshots of Gizmodo stories reporting on hacked g=
|
|
overnment websites redirecting visitors to porn websites." src=3D"https://=
|
|
mcusercontent.com/e1ad6038c994abec17dafb116/images/8c236631-ff47-cc7c-c478=
|
|
-5dcc8e2b86dd.jpeg" width=3D"564" style=3D"max-width: 1000px;padding-botto=
|
|
m: 0;display: inline !important;vertical-align: bottom;border: 0;height: a=
|
|
uto;outline: none;text-decoration: none;-ms-interpolation-mode: bicubic;"=
|
|
class=3D"mcnImage">
|
|
</a>
|
|
|
|
</td>
|
|
</tr>
|
|
</tbody></table>
|
|
</td>
|
|
</tr>
|
|
</tbody>
|
|
</table><table border=3D"0" cellpadding=3D"0" cellspacing=3D"0" width=3D"1=
|
|
00%" class=3D"mcnTextBlock" style=3D"min-width: 100%;border-collapse: coll=
|
|
apse;mso-table-lspace: 0pt;mso-table-rspace: 0pt;-ms-text-size-adjust: 100=
|
|
%;-webkit-text-size-adjust: 100%;">
|
|
<tbody class=3D"mcnTextBlockOuter">
|
|
<tr>
|
|
<td valign=3D"top" class=3D"mcnTextBlockInner" style=3D"paddin=
|
|
g-top: 9px;mso-line-height-rule: exactly;-ms-text-size-adjust: 100%;-webki=
|
|
t-text-size-adjust: 100%;">
|
|
=09<!--[if mso]>
|
|
=09=09=09=09<table align=3D"left" border=3D"0" cellspacing=3D"0" cellpaddi=
|
|
ng=3D"0" width=3D"100%" style=3D"width:100%;">
|
|
=09=09=09=09<tr>
|
|
=09=09=09=09<![endif]-->
|
|
=09=09=09
|
|
=09=09=09=09<!--[if mso]>
|
|
=09=09=09=09<td valign=3D"top" width=3D"600" style=3D"width:600px;">
|
|
=09=09=09=09<![endif]-->
|
|
<table align=3D"left" border=3D"0" cellpadding=3D"0" cells=
|
|
pacing=3D"0" style=3D"max-width: 100%;min-width: 100%;border-collapse: col=
|
|
lapse;mso-table-lspace: 0pt;mso-table-rspace: 0pt;-ms-text-size-adjust: 10=
|
|
0%;-webkit-text-size-adjust: 100%;float: left;" width=3D"100%" class=3D"mc=
|
|
nTextContentContainer">
|
|
<tbody><tr>
|
|
|
|
<td valign=3D"top" class=3D"mcnTextContent" style=
|
|
=3D"padding: 0px 18px 9px;font-family: Arial=2C "Helvetica Neue"=
|
|
=2C Helvetica=2C sans-serif;font-size: 14px;line-height: 150%;mso-line-hei=
|
|
ght-rule: exactly;-ms-text-size-adjust: 100%;-webkit-text-size-adjust: 100=
|
|
%;word-break: break-word;color: #202020;text-align: left;">
|
|
|
|
<span style=3D"font-size:15px"><span style=3D"=
|
|
font-family:arial=2Chelvetica neue=2Chelvetica=2Csans-serif"><strong>Briti=
|
|
sh ban busts bad bods' business: </strong> The U.K. government says it's g=
|
|
oing to =E2=80=94 probably=2C maybe=2C someday =E2=80=94 ban itself and ot=
|
|
her public sector organizations=2C including schools and local councils=2C=
|
|
from paying any hacker ransoms following a cyberattack. The U.K.'s securi=
|
|
ty minister says it's only a proposal for now (<a href=3D"https://www.gov.=
|
|
uk/government/news/world-leading-proposals-to-protect-businesses-from-cybe=
|
|
rcrime" style=3D"mso-line-height-rule: exactly;-ms-text-size-adjust: 100%;=
|
|
-webkit-text-size-adjust: 100%;color: #007C89;font-weight: normal;text-dec=
|
|
oration: underline;">details within</a>)=2C but comes after a series of ma=
|
|
jor hacks at NHS trusts across the U.K. over the past year=2C including th=
|
|
e Synnovis lab hack=2C which <a href=3D"https://www.bloomberg.com/news/art=
|
|
icles/2025-01-14/nhs-ransomware-hack-caused-patient-harm-in-uk-data-shows"=
|
|
style=3D"mso-line-height-rule: exactly;-ms-text-size-adjust: 100%;-webkit=
|
|
-text-size-adjust: 100%;color: #007C89;font-weight: normal;text-decoration=
|
|
: underline;">Bloomberg ($)</a> reports that a post-mortem of the incident=
|
|
shows it had real-world harm on patients. (<em>via <a href=3D"https://www=
|
|
=2Egov.uk/government/news/world-leading-proposals-to-protect-businesses-from=
|
|
-cybercrime" style=3D"mso-line-height-rule: exactly;-ms-text-size-adjust:=
|
|
100%;-webkit-text-size-adjust: 100%;color: #007C89;font-weight: normal;te=
|
|
xt-decoration: underline;">U.K. government</a>=2C <a href=3D"https://www.g=
|
|
ov.uk/government/consultations/ransomware-proposals-to-increase-incident-r=
|
|
eporting-and-reduce-payments-to-criminals" style=3D"mso-line-height-rule:=
|
|
exactly;-ms-text-size-adjust: 100%;-webkit-text-size-adjust: 100%;color:=
|
|
#007C89;font-weight: normal;text-decoration: underline;">Home Office</a><=
|
|
/em>)<br>
|
|
<br>
|
|
<strong>Otelier breach exposes millions of hotel goers: </strong> Well=2C=
|
|
<em>this ain't good</em>: Otelier=2C a hotel management platform=2C was h=
|
|
it by a data breach after threat actors broke into the company's AWS S3 cl=
|
|
oud storage and stole millions of guests' information and reservations fro=
|
|
m well-known hotel chains like Marriott=2C Hilton=2C and Hyatt. Otelier co=
|
|
nfirmed it was hacked=2C and apparently it was due to stolen credentials (=
|
|
through info-stealing malware=2C no less =E2=80=94 a common theme!). It's=
|
|
unclear if MFA was used; but either way=2C that's an eye-wateringly big b=
|
|
reach for such a simple=2C basic security issue. (<em>via <a href=3D"https=
|
|
://www.bleepingcomputer.com/news/security/otelier-data-breach-exposes-info=
|
|
-hotel-reservations-of-millions/" style=3D"mso-line-height-rule: exactly;-=
|
|
ms-text-size-adjust: 100%;-webkit-text-size-adjust: 100%;color: #007C89;fo=
|
|
nt-weight: normal;text-decoration: underline;">Bleeping Computer</a></em>)=
|
|
<br>
|
|
<br>
|
|
<strong>CISA to get new leadership: </strong> Politico reports that with l=
|
|
eadership at CISA (and the rest of the Biden administration's political ap=
|
|
pointments) leaving on January 20 ahead of the Trump admin's inauguration=
|
|
=2C the CISA top job may end up going to former Dept. of Energy and NSC st=
|
|
affer Sean Plankey. I guess we'll find out in=2C <em>*checks notes*</em>=
|
|
=2C a day or two or whenever. (<em>via <a href=3D"https://www.politico.com=
|
|
/live-updates/2025/01/15/congress/sean-plankey-likely-to-lead-u-s-cyber-ag=
|
|
ency-00198382" style=3D"mso-line-height-rule: exactly;-ms-text-size-adjust=
|
|
: 100%;-webkit-text-size-adjust: 100%;color: #007C89;font-weight: normal;t=
|
|
ext-decoration: underline;">Politico</a></em>)<br>
|
|
<br>
|
|
<strong>TikTok and others disappear after U.S. ban: </strong> We can't <em=
|
|
>not</em> talk about the TikTok ban that went into effect overnight. I hav=
|
|
e a lot of opinions on this=2C but suffice to say=2C it's clearly a <a hre=
|
|
f=3D"https://constitution.congress.gov/constitution/amendment-1/" style=3D=
|
|
"mso-line-height-rule: exactly;-ms-text-size-adjust: 100%;-webkit-text-siz=
|
|
e-adjust: 100%;color: #007C89;font-weight: normal;text-decoration: underli=
|
|
ne;">First Amendment issue</a> to ban an app (ie. Congress created a law t=
|
|
hat prohibits free expression)=2C and that the national security concerns=
|
|
aren't that much different from the U.S. tech giants that exploit their u=
|
|
sers <em>the same way</em>=2C just at home where that data=2C and algorith=
|
|
ms that handle that data=2C can also be used against them. If TikTok is a=
|
|
national security threat=2C so is Meta=2C so is X=2C and so are data brok=
|
|
ers that collect all of this data and share it with others. And please=2C=
|
|
don't try to use a shady VPN to get around the ban; not least=2C you can'=
|
|
t=2C but also it's just very=2C very bad for your security to hand your ne=
|
|
twork traffic to an entity you <em>cannot trust</em> any more than your IS=
|
|
P. (<em>via <a href=3D"https://www.bbc.com/news/articles/cz6p1g54q85o" sty=
|
|
le=3D"mso-line-height-rule: exactly;-ms-text-size-adjust: 100%;-webkit-tex=
|
|
t-size-adjust: 100%;color: #007C89;font-weight: normal;text-decoration: un=
|
|
derline;">BBC News</a>=2C <a href=3D"https://apnews.com/article/tiktok-ban=
|
|
-trump-biden-china-bdc79b7ce741a81761f67ea56d410103" style=3D"mso-line-hei=
|
|
ght-rule: exactly;-ms-text-size-adjust: 100%;-webkit-text-size-adjust: 100=
|
|
%;color: #007C89;font-weight: normal;text-decoration: underline;">Associat=
|
|
ed Press</a>=2C <a href=3D"https://www.wired.com/story/how-to-get-around-t=
|
|
he-us-tiktok-ban/" style=3D"mso-line-height-rule: exactly;-ms-text-size-ad=
|
|
just: 100%;-webkit-text-size-adjust: 100%;color: #007C89;font-weight: norm=
|
|
al;text-decoration: underline;">Wired ($)</a></em>)</span></span>
|
|
</td>
|
|
</tr>
|
|
</tbody></table>
|
|
=09=09=09=09<!--[if mso]>
|
|
=09=09=09=09</td>
|
|
=09=09=09=09<![endif]-->
|
|
|
|
=09=09=09=09<!--[if mso]>
|
|
=09=09=09=09</tr>
|
|
=09=09=09=09</table>
|
|
=09=09=09=09<![endif]-->
|
|
</td>
|
|
</tr>
|
|
</tbody>
|
|
</table><table border=3D"0" cellpadding=3D"0" cellspacing=3D"0" width=3D"1=
|
|
00%" class=3D"mcnImageBlock" style=3D"min-width: 100%;border-collapse: col=
|
|
lapse;mso-table-lspace: 0pt;mso-table-rspace: 0pt;-ms-text-size-adjust: 10=
|
|
0%;-webkit-text-size-adjust: 100%;">
|
|
<tbody class=3D"mcnImageBlockOuter">
|
|
<tr>
|
|
<td valign=3D"top" style=3D"padding: 9px;mso-line-height-r=
|
|
ule: exactly;-ms-text-size-adjust: 100%;-webkit-text-size-adjust: 100%;" c=
|
|
lass=3D"mcnImageBlockInner">
|
|
<table align=3D"left" width=3D"100%" border=3D"0" cell=
|
|
padding=3D"0" cellspacing=3D"0" class=3D"mcnImageContentContainer" style=
|
|
=3D"min-width: 100%;border-collapse: collapse;mso-table-lspace: 0pt;mso-ta=
|
|
ble-rspace: 0pt;-ms-text-size-adjust: 100%;-webkit-text-size-adjust: 100%;=
|
|
float: left;">
|
|
<tbody><tr>
|
|
<td class=3D"mcnImageContent" valign=3D"top" s=
|
|
tyle=3D"padding-right: 9px;padding-left: 9px;padding-top: 0;padding-bottom=
|
|
: 0;text-align: center;mso-line-height-rule: exactly;-ms-text-size-adjust:=
|
|
100%;-webkit-text-size-adjust: 100%;">
|
|
|
|
<a href=3D"https://x.com/ShyBucketGett=
|
|
er/status/1879400978946097448" title=3D"" class=3D"" target=3D"_blank" sty=
|
|
le=3D"mso-line-height-rule: exactly;-ms-text-size-adjust: 100%;-webkit-tex=
|
|
t-size-adjust: 100%;">
|
|
<img align=3D"middle" alt=3D"Shaun=
|
|
Johnson tweet: "I=E2=80=99d never want the Chinese to get my data. T=
|
|
hey=E2=80=99d use it to exploit me. That=E2=80=99s why I trust it only wit=
|
|
h the least exploitive people ever=2C the American billionaire class."=
|
|
;" src=3D"https://mcusercontent.com/e1ad6038c994abec17dafb116/images/4c973=
|
|
f9e-1cef-b405-4f04-74d8a66ea483.jpeg" width=3D"564" style=3D"max-width: 10=
|
|
00px;padding-bottom: 0;display: inline !important;vertical-align: bottom;b=
|
|
order: 0;height: auto;outline: none;text-decoration: none;-ms-interpolatio=
|
|
n-mode: bicubic;" class=3D"mcnImage">
|
|
</a>
|
|
|
|
</td>
|
|
</tr>
|
|
</tbody></table>
|
|
</td>
|
|
</tr>
|
|
</tbody>
|
|
</table><table border=3D"0" cellpadding=3D"0" cellspacing=3D"0" width=3D"1=
|
|
00%" class=3D"mcnTextBlock" style=3D"min-width: 100%;border-collapse: coll=
|
|
apse;mso-table-lspace: 0pt;mso-table-rspace: 0pt;-ms-text-size-adjust: 100=
|
|
%;-webkit-text-size-adjust: 100%;">
|
|
<tbody class=3D"mcnTextBlockOuter">
|
|
<tr>
|
|
<td valign=3D"top" class=3D"mcnTextBlockInner" style=3D"paddin=
|
|
g-top: 9px;mso-line-height-rule: exactly;-ms-text-size-adjust: 100%;-webki=
|
|
t-text-size-adjust: 100%;">
|
|
=09<!--[if mso]>
|
|
=09=09=09=09<table align=3D"left" border=3D"0" cellspacing=3D"0" cellpaddi=
|
|
ng=3D"0" width=3D"100%" style=3D"width:100%;">
|
|
=09=09=09=09<tr>
|
|
=09=09=09=09<![endif]-->
|
|
=09=09=09
|
|
=09=09=09=09<!--[if mso]>
|
|
=09=09=09=09<td valign=3D"top" width=3D"600" style=3D"width:600px;">
|
|
=09=09=09=09<![endif]-->
|
|
<table align=3D"left" border=3D"0" cellpadding=3D"0" cells=
|
|
pacing=3D"0" style=3D"max-width: 100%;min-width: 100%;border-collapse: col=
|
|
lapse;mso-table-lspace: 0pt;mso-table-rspace: 0pt;-ms-text-size-adjust: 10=
|
|
0%;-webkit-text-size-adjust: 100%;float: left;" width=3D"100%" class=3D"mc=
|
|
nTextContentContainer">
|
|
<tbody><tr>
|
|
|
|
<td valign=3D"top" class=3D"mcnTextContent" style=
|
|
=3D"padding: 0px 18px 9px;font-family: Arial=2C "Helvetica Neue"=
|
|
=2C Helvetica=2C sans-serif;font-size: 14px;line-height: 150%;mso-line-hei=
|
|
ght-rule: exactly;-ms-text-size-adjust: 100%;-webkit-text-size-adjust: 100=
|
|
%;word-break: break-word;color: #202020;text-align: left;">
|
|
|
|
<div style=3D"text-align: center;">~ ~</div>
|
|
|
|
</td>
|
|
</tr>
|
|
</tbody></table>
|
|
=09=09=09=09<!--[if mso]>
|
|
=09=09=09=09</td>
|
|
=09=09=09=09<![endif]-->
|
|
|
|
=09=09=09=09<!--[if mso]>
|
|
=09=09=09=09</tr>
|
|
=09=09=09=09</table>
|
|
=09=09=09=09<![endif]-->
|
|
</td>
|
|
</tr>
|
|
</tbody>
|
|
</table><table border=3D"0" cellpadding=3D"0" cellspacing=3D"0" width=3D"1=
|
|
00%" class=3D"mcnTextBlock" style=3D"min-width: 100%;border-collapse: coll=
|
|
apse;mso-table-lspace: 0pt;mso-table-rspace: 0pt;-ms-text-size-adjust: 100=
|
|
%;-webkit-text-size-adjust: 100%;">
|
|
<tbody class=3D"mcnTextBlockOuter">
|
|
<tr>
|
|
<td valign=3D"top" class=3D"mcnTextBlockInner" style=3D"paddin=
|
|
g-top: 9px;mso-line-height-rule: exactly;-ms-text-size-adjust: 100%;-webki=
|
|
t-text-size-adjust: 100%;">
|
|
=09<!--[if mso]>
|
|
=09=09=09=09<table align=3D"left" border=3D"0" cellspacing=3D"0" cellpaddi=
|
|
ng=3D"0" width=3D"100%" style=3D"width:100%;">
|
|
=09=09=09=09<tr>
|
|
=09=09=09=09<![endif]-->
|
|
=09=09=09
|
|
=09=09=09=09<!--[if mso]>
|
|
=09=09=09=09<td valign=3D"top" width=3D"600" style=3D"width:600px;">
|
|
=09=09=09=09<![endif]-->
|
|
<table align=3D"left" border=3D"0" cellpadding=3D"0" cells=
|
|
pacing=3D"0" style=3D"max-width: 100%;min-width: 100%;border-collapse: col=
|
|
lapse;mso-table-lspace: 0pt;mso-table-rspace: 0pt;-ms-text-size-adjust: 10=
|
|
0%;-webkit-text-size-adjust: 100%;float: left;" width=3D"100%" class=3D"mc=
|
|
nTextContentContainer">
|
|
<tbody><tr>
|
|
|
|
<td valign=3D"top" class=3D"mcnTextContent" style=
|
|
=3D"padding: 0px 18px 9px;font-family: Arial=2C "Helvetica Neue"=
|
|
=2C Helvetica=2C sans-serif;font-size: 14px;line-height: 150%;mso-line-hei=
|
|
ght-rule: exactly;-ms-text-size-adjust: 100%;-webkit-text-size-adjust: 100=
|
|
%;word-break: break-word;color: #202020;text-align: left;">
|
|
|
|
<h3 style=3D"display: block;margin: 0;padding:=
|
|
0;color: #202020;font-family: Helvetica;font-size: 20px;font-style: norma=
|
|
l;font-weight: bold;line-height: 125%;letter-spacing: normal;text-align: l=
|
|
eft;"><span style=3D"font-size:19px"><span style=3D"font-weight:bolder">TH=
|
|
E HAPPY CORNER</span></span></h3>
|
|
|
|
</td>
|
|
</tr>
|
|
</tbody></table>
|
|
=09=09=09=09<!--[if mso]>
|
|
=09=09=09=09</td>
|
|
=09=09=09=09<![endif]-->
|
|
|
|
=09=09=09=09<!--[if mso]>
|
|
=09=09=09=09</tr>
|
|
=09=09=09=09</table>
|
|
=09=09=09=09<![endif]-->
|
|
</td>
|
|
</tr>
|
|
</tbody>
|
|
</table><table border=3D"0" cellpadding=3D"0" cellspacing=3D"0" width=3D"1=
|
|
00%" class=3D"mcnTextBlock" style=3D"min-width: 100%;border-collapse: coll=
|
|
apse;mso-table-lspace: 0pt;mso-table-rspace: 0pt;-ms-text-size-adjust: 100=
|
|
%;-webkit-text-size-adjust: 100%;">
|
|
<tbody class=3D"mcnTextBlockOuter">
|
|
<tr>
|
|
<td valign=3D"top" class=3D"mcnTextBlockInner" style=3D"paddin=
|
|
g-top: 9px;mso-line-height-rule: exactly;-ms-text-size-adjust: 100%;-webki=
|
|
t-text-size-adjust: 100%;">
|
|
=09<!--[if mso]>
|
|
=09=09=09=09<table align=3D"left" border=3D"0" cellspacing=3D"0" cellpaddi=
|
|
ng=3D"0" width=3D"100%" style=3D"width:100%;">
|
|
=09=09=09=09<tr>
|
|
=09=09=09=09<![endif]-->
|
|
=09=09=09
|
|
=09=09=09=09<!--[if mso]>
|
|
=09=09=09=09<td valign=3D"top" width=3D"600" style=3D"width:600px;">
|
|
=09=09=09=09<![endif]-->
|
|
<table align=3D"left" border=3D"0" cellpadding=3D"0" cells=
|
|
pacing=3D"0" style=3D"max-width: 100%;min-width: 100%;border-collapse: col=
|
|
lapse;mso-table-lspace: 0pt;mso-table-rspace: 0pt;-ms-text-size-adjust: 10=
|
|
0%;-webkit-text-size-adjust: 100%;float: left;" width=3D"100%" class=3D"mc=
|
|
nTextContentContainer">
|
|
<tbody><tr>
|
|
|
|
<td valign=3D"top" class=3D"mcnTextContent" style=
|
|
=3D"padding: 0px 18px 9px;font-family: Arial=2C "Helvetica Neue"=
|
|
=2C Helvetica=2C sans-serif;font-size: 14px;line-height: 150%;mso-line-hei=
|
|
ght-rule: exactly;-ms-text-size-adjust: 100%;-webkit-text-size-adjust: 100=
|
|
%;word-break: break-word;color: #202020;text-align: left;">
|
|
|
|
<span style=3D"font-size:15px"><span style=3D"=
|
|
font-family:arial=2Chelvetica neue=2Chelvetica=2Csans-serif"><span style=
|
|
=3D"font-style:normal">There's no time to wait. Happy corner=2C <em>commen=
|
|
ce!</em></span><br>
|
|
<br>
|
|
<span style=3D"font-style:normal">Next time you hear that a large enterpri=
|
|
se or corporate giant was hit by a "sophisticated attacker=2C" remember th=
|
|
at it was <a href=3D"https://x.com/vxunderground/status/187818445634061545=
|
|
8" style=3D"mso-line-height-rule: exactly;-ms-text-size-adjust: 100%;-webk=
|
|
it-text-size-adjust: 100%;color: #007C89;font-weight: normal;text-decorati=
|
|
on: underline;">probably just a fat cat</a> and not the mountain lion you=
|
|
might be picturing. </span></span></span>
|
|
</td>
|
|
</tr>
|
|
</tbody></table>
|
|
=09=09=09=09<!--[if mso]>
|
|
=09=09=09=09</td>
|
|
=09=09=09=09<![endif]-->
|
|
|
|
=09=09=09=09<!--[if mso]>
|
|
=09=09=09=09</tr>
|
|
=09=09=09=09</table>
|
|
=09=09=09=09<![endif]-->
|
|
</td>
|
|
</tr>
|
|
</tbody>
|
|
</table><table border=3D"0" cellpadding=3D"0" cellspacing=3D"0" width=3D"1=
|
|
00%" class=3D"mcnImageBlock" style=3D"min-width: 100%;border-collapse: col=
|
|
lapse;mso-table-lspace: 0pt;mso-table-rspace: 0pt;-ms-text-size-adjust: 10=
|
|
0%;-webkit-text-size-adjust: 100%;">
|
|
<tbody class=3D"mcnImageBlockOuter">
|
|
<tr>
|
|
<td valign=3D"top" style=3D"padding: 9px;mso-line-height-r=
|
|
ule: exactly;-ms-text-size-adjust: 100%;-webkit-text-size-adjust: 100%;" c=
|
|
lass=3D"mcnImageBlockInner">
|
|
<table align=3D"left" width=3D"100%" border=3D"0" cell=
|
|
padding=3D"0" cellspacing=3D"0" class=3D"mcnImageContentContainer" style=
|
|
=3D"min-width: 100%;border-collapse: collapse;mso-table-lspace: 0pt;mso-ta=
|
|
ble-rspace: 0pt;-ms-text-size-adjust: 100%;-webkit-text-size-adjust: 100%;=
|
|
float: left;">
|
|
<tbody><tr>
|
|
<td class=3D"mcnImageContent" valign=3D"top" s=
|
|
tyle=3D"padding-right: 9px;padding-left: 9px;padding-top: 0;padding-bottom=
|
|
: 0;text-align: center;mso-line-height-rule: exactly;-ms-text-size-adjust:=
|
|
100%;-webkit-text-size-adjust: 100%;">
|
|
|
|
<a href=3D"https://x.com/vxunderground=
|
|
/status/1878184456340615458" title=3D"" class=3D"" target=3D"_blank" style=
|
|
=3D"mso-line-height-rule: exactly;-ms-text-size-adjust: 100%;-webkit-text-=
|
|
size-adjust: 100%;">
|
|
<img align=3D"middle" alt=3D"vx-un=
|
|
derground tweet: "This image is a perfectly analogy for most enterpri=
|
|
se compromises =E2=80=94 a "sophisticated attacker" was NOT a st=
|
|
ate-sponsored Threat Actor. It was just a fat cat=2C" followed by a f=
|
|
at ginger cat that was mistaken for a mountain lion." src=3D"https://mcuse=
|
|
rcontent.com/e1ad6038c994abec17dafb116/images/d30a9647-ab85-3b1f-836b-043b=
|
|
e9ea50c7.jpeg" width=3D"564" style=3D"max-width: 1000px;padding-bottom: 0;=
|
|
display: inline !important;vertical-align: bottom;border: 0;height: auto;o=
|
|
utline: none;text-decoration: none;-ms-interpolation-mode: bicubic;" class=
|
|
=3D"mcnImage">
|
|
</a>
|
|
|
|
</td>
|
|
</tr>
|
|
</tbody></table>
|
|
</td>
|
|
</tr>
|
|
</tbody>
|
|
</table><table border=3D"0" cellpadding=3D"0" cellspacing=3D"0" width=3D"1=
|
|
00%" class=3D"mcnTextBlock" style=3D"min-width: 100%;border-collapse: coll=
|
|
apse;mso-table-lspace: 0pt;mso-table-rspace: 0pt;-ms-text-size-adjust: 100=
|
|
%;-webkit-text-size-adjust: 100%;">
|
|
<tbody class=3D"mcnTextBlockOuter">
|
|
<tr>
|
|
<td valign=3D"top" class=3D"mcnTextBlockInner" style=3D"paddin=
|
|
g-top: 9px;mso-line-height-rule: exactly;-ms-text-size-adjust: 100%;-webki=
|
|
t-text-size-adjust: 100%;">
|
|
=09<!--[if mso]>
|
|
=09=09=09=09<table align=3D"left" border=3D"0" cellspacing=3D"0" cellpaddi=
|
|
ng=3D"0" width=3D"100%" style=3D"width:100%;">
|
|
=09=09=09=09<tr>
|
|
=09=09=09=09<![endif]-->
|
|
=09=09=09
|
|
=09=09=09=09<!--[if mso]>
|
|
=09=09=09=09<td valign=3D"top" width=3D"600" style=3D"width:600px;">
|
|
=09=09=09=09<![endif]-->
|
|
<table align=3D"left" border=3D"0" cellpadding=3D"0" cells=
|
|
pacing=3D"0" style=3D"max-width: 100%;min-width: 100%;border-collapse: col=
|
|
lapse;mso-table-lspace: 0pt;mso-table-rspace: 0pt;-ms-text-size-adjust: 10=
|
|
0%;-webkit-text-size-adjust: 100%;float: left;" width=3D"100%" class=3D"mc=
|
|
nTextContentContainer">
|
|
<tbody><tr>
|
|
|
|
<td valign=3D"top" class=3D"mcnTextContent" style=
|
|
=3D"padding: 0px 18px 9px;font-family: Arial=2C "Helvetica Neue"=
|
|
=2C Helvetica=2C sans-serif;font-size: 14px;line-height: 150%;mso-line-hei=
|
|
ght-rule: exactly;-ms-text-size-adjust: 100%;-webkit-text-size-adjust: 100=
|
|
%;word-break: break-word;color: #202020;text-align: left;">
|
|
|
|
<span style=3D"font-size:15px"><span style=3D"=
|
|
font-family:arial=2Chelvetica neue=2Chelvetica=2Csans-serif"><span style=
|
|
=3D"font-style:normal">Moving on. Not even Harry Potter can <a href=3D"htt=
|
|
ps://hachyderm.io/@forrestbrazeal/113829121978374399" style=3D"mso-line-he=
|
|
ight-rule: exactly;-ms-text-size-adjust: 100%;-webkit-text-size-adjust: 10=
|
|
0%;color: #007C89;font-weight: normal;text-decoration: underline;">escape=
|
|
the corporate phishing test</a>.</span></span></span>
|
|
</td>
|
|
</tr>
|
|
</tbody></table>
|
|
=09=09=09=09<!--[if mso]>
|
|
=09=09=09=09</td>
|
|
=09=09=09=09<![endif]-->
|
|
|
|
=09=09=09=09<!--[if mso]>
|
|
=09=09=09=09</tr>
|
|
=09=09=09=09</table>
|
|
=09=09=09=09<![endif]-->
|
|
</td>
|
|
</tr>
|
|
</tbody>
|
|
</table><table border=3D"0" cellpadding=3D"0" cellspacing=3D"0" width=3D"1=
|
|
00%" class=3D"mcnImageBlock" style=3D"min-width: 100%;border-collapse: col=
|
|
lapse;mso-table-lspace: 0pt;mso-table-rspace: 0pt;-ms-text-size-adjust: 10=
|
|
0%;-webkit-text-size-adjust: 100%;">
|
|
<tbody class=3D"mcnImageBlockOuter">
|
|
<tr>
|
|
<td valign=3D"top" style=3D"padding: 9px;mso-line-height-r=
|
|
ule: exactly;-ms-text-size-adjust: 100%;-webkit-text-size-adjust: 100%;" c=
|
|
lass=3D"mcnImageBlockInner">
|
|
<table align=3D"left" width=3D"100%" border=3D"0" cell=
|
|
padding=3D"0" cellspacing=3D"0" class=3D"mcnImageContentContainer" style=
|
|
=3D"min-width: 100%;border-collapse: collapse;mso-table-lspace: 0pt;mso-ta=
|
|
ble-rspace: 0pt;-ms-text-size-adjust: 100%;-webkit-text-size-adjust: 100%;=
|
|
float: left;">
|
|
<tbody><tr>
|
|
<td class=3D"mcnImageContent" valign=3D"top" s=
|
|
tyle=3D"padding-right: 9px;padding-left: 9px;padding-top: 0;padding-bottom=
|
|
: 0;text-align: center;mso-line-height-rule: exactly;-ms-text-size-adjust:=
|
|
100%;-webkit-text-size-adjust: 100%;">
|
|
|
|
<a href=3D"https://hachyderm.io/@forre=
|
|
stbrazeal/113829121978374399" title=3D"" class=3D"" target=3D"_blank" styl=
|
|
e=3D"mso-line-height-rule: exactly;-ms-text-size-adjust: 100%;-webkit-text=
|
|
-size-adjust: 100%;">
|
|
<img align=3D"middle" alt=3D"A fou=
|
|
r-panel comic=2C of an owl dropping off a letter to Harry Potter=2C and wh=
|
|
en opened=2C screams=2C "YOU HAVE FAILED A CORPORATE PHISHING TEST.&q=
|
|
uot;" src=3D"https://mcusercontent.com/e1ad6038c994abec17dafb116/images/62=
|
|
68d6b5-1f6e-e4bf-7084-5d2a76ac3e8f.jpeg" width=3D"564" style=3D"max-width:=
|
|
1000px;padding-bottom: 0;display: inline !important;vertical-align: botto=
|
|
m;border: 0;height: auto;outline: none;text-decoration: none;-ms-interpola=
|
|
tion-mode: bicubic;" class=3D"mcnImage">
|
|
</a>
|
|
|
|
</td>
|
|
</tr>
|
|
</tbody></table>
|
|
</td>
|
|
</tr>
|
|
</tbody>
|
|
</table><table border=3D"0" cellpadding=3D"0" cellspacing=3D"0" width=3D"1=
|
|
00%" class=3D"mcnTextBlock" style=3D"min-width: 100%;border-collapse: coll=
|
|
apse;mso-table-lspace: 0pt;mso-table-rspace: 0pt;-ms-text-size-adjust: 100=
|
|
%;-webkit-text-size-adjust: 100%;">
|
|
<tbody class=3D"mcnTextBlockOuter">
|
|
<tr>
|
|
<td valign=3D"top" class=3D"mcnTextBlockInner" style=3D"paddin=
|
|
g-top: 9px;mso-line-height-rule: exactly;-ms-text-size-adjust: 100%;-webki=
|
|
t-text-size-adjust: 100%;">
|
|
=09<!--[if mso]>
|
|
=09=09=09=09<table align=3D"left" border=3D"0" cellspacing=3D"0" cellpaddi=
|
|
ng=3D"0" width=3D"100%" style=3D"width:100%;">
|
|
=09=09=09=09<tr>
|
|
=09=09=09=09<![endif]-->
|
|
=09=09=09
|
|
=09=09=09=09<!--[if mso]>
|
|
=09=09=09=09<td valign=3D"top" width=3D"600" style=3D"width:600px;">
|
|
=09=09=09=09<![endif]-->
|
|
<table align=3D"left" border=3D"0" cellpadding=3D"0" cells=
|
|
pacing=3D"0" style=3D"max-width: 100%;min-width: 100%;border-collapse: col=
|
|
lapse;mso-table-lspace: 0pt;mso-table-rspace: 0pt;-ms-text-size-adjust: 10=
|
|
0%;-webkit-text-size-adjust: 100%;float: left;" width=3D"100%" class=3D"mc=
|
|
nTextContentContainer">
|
|
<tbody><tr>
|
|
|
|
<td valign=3D"top" class=3D"mcnTextContent" style=
|
|
=3D"padding: 0px 18px 9px;font-family: Arial=2C "Helvetica Neue"=
|
|
=2C Helvetica=2C sans-serif;font-size: 14px;line-height: 150%;mso-line-hei=
|
|
ght-rule: exactly;-ms-text-size-adjust: 100%;-webkit-text-size-adjust: 100=
|
|
%;word-break: break-word;color: #202020;text-align: left;">
|
|
|
|
<span style=3D"font-size:15px"><span style=3D"=
|
|
font-family:arial=2Chelvetica neue=2Chelvetica=2Csans-serif"><span style=
|
|
=3D"font-style:normal">Now=2C <a href=3D"https://www.bbc.com/news/videos/c=
|
|
ly9vl9jjkvo" target=3D"_blank" style=3D"mso-line-height-rule: exactly;-ms-=
|
|
text-size-adjust: 100%;-webkit-text-size-adjust: 100%;color: #007C89;font-=
|
|
weight: normal;text-decoration: underline;">in obscure science news</a>. I=
|
|
magine you're a piece of interstellar rock=2C hurtling through space at ab=
|
|
solutely ridiculous speeds. You're whizzing past asteroids=2C stars=2C and=
|
|
through the dust of the occasional comet trail. Then=2C out of nowhere=2C=
|
|
you see this bright=2C blue=2C beautiful planet in the distance... and as=
|
|
you get nearer=2C you see that it's this round=2C gorgeous oasis in=
|
|
space=2C and you can't wait to get even closer. As you approach=2C you fe=
|
|
el like you're speeding up=2C as you dodge your way through a cluster of o=
|
|
rbiting satellites... you're getting hotter and hotter=2C but closer and c=
|
|
loser... and you're nearly there and...</span></span></span>
|
|
</td>
|
|
</tr>
|
|
</tbody></table>
|
|
=09=09=09=09<!--[if mso]>
|
|
=09=09=09=09</td>
|
|
=09=09=09=09<![endif]-->
|
|
|
|
=09=09=09=09<!--[if mso]>
|
|
=09=09=09=09</tr>
|
|
=09=09=09=09</table>
|
|
=09=09=09=09<![endif]-->
|
|
</td>
|
|
</tr>
|
|
</tbody>
|
|
</table><table border=3D"0" cellpadding=3D"0" cellspacing=3D"0" width=3D"1=
|
|
00%" class=3D"mcnImageBlock" style=3D"min-width: 100%;border-collapse: col=
|
|
lapse;mso-table-lspace: 0pt;mso-table-rspace: 0pt;-ms-text-size-adjust: 10=
|
|
0%;-webkit-text-size-adjust: 100%;">
|
|
<tbody class=3D"mcnImageBlockOuter">
|
|
<tr>
|
|
<td valign=3D"top" style=3D"padding: 9px;mso-line-height-r=
|
|
ule: exactly;-ms-text-size-adjust: 100%;-webkit-text-size-adjust: 100%;" c=
|
|
lass=3D"mcnImageBlockInner">
|
|
<table align=3D"left" width=3D"100%" border=3D"0" cell=
|
|
padding=3D"0" cellspacing=3D"0" class=3D"mcnImageContentContainer" style=
|
|
=3D"min-width: 100%;border-collapse: collapse;mso-table-lspace: 0pt;mso-ta=
|
|
ble-rspace: 0pt;-ms-text-size-adjust: 100%;-webkit-text-size-adjust: 100%;=
|
|
float: left;">
|
|
<tbody><tr>
|
|
<td class=3D"mcnImageContent" valign=3D"top" s=
|
|
tyle=3D"padding-right: 9px;padding-left: 9px;padding-top: 0;padding-bottom=
|
|
: 0;text-align: center;mso-line-height-rule: exactly;-ms-text-size-adjust:=
|
|
100%;-webkit-text-size-adjust: 100%;">
|
|
|
|
<a href=3D"https://www.bbc.com/news/vi=
|
|
deos/cly9vl9jjkvo" title=3D"" class=3D"" target=3D"_blank" style=3D"mso-li=
|
|
ne-height-rule: exactly;-ms-text-size-adjust: 100%;-webkit-text-size-adjus=
|
|
t: 100%;">
|
|
<img align=3D"middle" alt=3D"an an=
|
|
imated GIF of a doorbell camera video showing a driveway at someone's hous=
|
|
e=2C then suddenly a meteorite smashing on the ground into a million tiny=
|
|
pieces." src=3D"https://mcusercontent.com/e1ad6038c994abec17dafb116/image=
|
|
s/df12093a-3df4-a66e-4654-9feb36b0e26c.gif" width=3D"564" style=3D"max-wid=
|
|
th: 800px;padding-bottom: 0;display: inline !important;vertical-align: bot=
|
|
tom;border: 0;height: auto;outline: none;text-decoration: none;-ms-interpo=
|
|
lation-mode: bicubic;" class=3D"mcnImage">
|
|
</a>
|
|
|
|
</td>
|
|
</tr>
|
|
</tbody></table>
|
|
</td>
|
|
</tr>
|
|
</tbody>
|
|
</table><table border=3D"0" cellpadding=3D"0" cellspacing=3D"0" width=3D"1=
|
|
00%" class=3D"mcnTextBlock" style=3D"min-width: 100%;border-collapse: coll=
|
|
apse;mso-table-lspace: 0pt;mso-table-rspace: 0pt;-ms-text-size-adjust: 100=
|
|
%;-webkit-text-size-adjust: 100%;">
|
|
<tbody class=3D"mcnTextBlockOuter">
|
|
<tr>
|
|
<td valign=3D"top" class=3D"mcnTextBlockInner" style=3D"paddin=
|
|
g-top: 9px;mso-line-height-rule: exactly;-ms-text-size-adjust: 100%;-webki=
|
|
t-text-size-adjust: 100%;">
|
|
=09<!--[if mso]>
|
|
=09=09=09=09<table align=3D"left" border=3D"0" cellspacing=3D"0" cellpaddi=
|
|
ng=3D"0" width=3D"100%" style=3D"width:100%;">
|
|
=09=09=09=09<tr>
|
|
=09=09=09=09<![endif]-->
|
|
=09=09=09
|
|
=09=09=09=09<!--[if mso]>
|
|
=09=09=09=09<td valign=3D"top" width=3D"600" style=3D"width:600px;">
|
|
=09=09=09=09<![endif]-->
|
|
<table align=3D"left" border=3D"0" cellpadding=3D"0" cells=
|
|
pacing=3D"0" style=3D"max-width: 100%;min-width: 100%;border-collapse: col=
|
|
lapse;mso-table-lspace: 0pt;mso-table-rspace: 0pt;-ms-text-size-adjust: 10=
|
|
0%;-webkit-text-size-adjust: 100%;float: left;" width=3D"100%" class=3D"mc=
|
|
nTextContentContainer">
|
|
<tbody><tr>
|
|
|
|
<td valign=3D"top" class=3D"mcnTextContent" style=
|
|
=3D"padding: 0px 18px 9px;font-family: Arial=2C "Helvetica Neue"=
|
|
=2C Helvetica=2C sans-serif;font-size: 14px;line-height: 150%;mso-line-hei=
|
|
ght-rule: exactly;-ms-text-size-adjust: 100%;-webkit-text-size-adjust: 100=
|
|
%;word-break: break-word;color: #202020;text-align: left;">
|
|
|
|
<span style=3D"font-size:15px"><span style=3D"=
|
|
font-family:arial=2Chelvetica neue=2Chelvetica=2Csans-serif"><span style=
|
|
=3D"font-style:normal">...<em>whoops</em>? Well=2C by catching this footag=
|
|
e <a href=3D"https://www.bbc.com/news/videos/cly9vl9jjkvo" style=3D"mso-li=
|
|
ne-height-rule: exactly;-ms-text-size-adjust: 100%;-webkit-text-size-adjus=
|
|
t: 100%;color: #007C89;font-weight: normal;text-decoration: underline;">on=
|
|
a doorbell camera</a>=2C it's a historic first since these </span>sorts o=
|
|
f events don't happen very often=2C <a href=3D"https://www.livescience.com=
|
|
/space/doorbell-camera-captures-1st-ever-video-of-the-sound-and-sight-of-a=
|
|
-meteorite-crash-landing" target=3D"_blank" style=3D"mso-line-height-rule:=
|
|
exactly;-ms-text-size-adjust: 100%;-webkit-text-size-adjust: 100%;color:=
|
|
#007C89;font-weight: normal;text-decoration: underline;">scientists say</=
|
|
a>.<br>
|
|
<br>
|
|
<span style=3D"font-style:normal">And before we go: <a href=3D"https://inf=
|
|
osec.exchange/@hal_pomeranz/113851892936658346" style=3D"mso-line-height-r=
|
|
ule: exactly;-ms-text-size-adjust: 100%;-webkit-text-size-adjust: 100%;col=
|
|
or: #007C89;font-weight: normal;text-decoration: underline;">bonus cyberca=
|
|
t</a>=2C because why not?</span></span></span>
|
|
</td>
|
|
</tr>
|
|
</tbody></table>
|
|
=09=09=09=09<!--[if mso]>
|
|
=09=09=09=09</td>
|
|
=09=09=09=09<![endif]-->
|
|
|
|
=09=09=09=09<!--[if mso]>
|
|
=09=09=09=09</tr>
|
|
=09=09=09=09</table>
|
|
=09=09=09=09<![endif]-->
|
|
</td>
|
|
</tr>
|
|
</tbody>
|
|
</table><table border=3D"0" cellpadding=3D"0" cellspacing=3D"0" width=3D"1=
|
|
00%" class=3D"mcnTextBlock" style=3D"min-width: 100%;border-collapse: coll=
|
|
apse;mso-table-lspace: 0pt;mso-table-rspace: 0pt;-ms-text-size-adjust: 100=
|
|
%;-webkit-text-size-adjust: 100%;">
|
|
<tbody class=3D"mcnTextBlockOuter">
|
|
<tr>
|
|
<td valign=3D"top" class=3D"mcnTextBlockInner" style=3D"paddin=
|
|
g-top: 9px;mso-line-height-rule: exactly;-ms-text-size-adjust: 100%;-webki=
|
|
t-text-size-adjust: 100%;">
|
|
=09<!--[if mso]>
|
|
=09=09=09=09<table align=3D"left" border=3D"0" cellspacing=3D"0" cellpaddi=
|
|
ng=3D"0" width=3D"100%" style=3D"width:100%;">
|
|
=09=09=09=09<tr>
|
|
=09=09=09=09<![endif]-->
|
|
=09=09=09
|
|
=09=09=09=09<!--[if mso]>
|
|
=09=09=09=09<td valign=3D"top" width=3D"600" style=3D"width:600px;">
|
|
=09=09=09=09<![endif]-->
|
|
<table align=3D"left" border=3D"0" cellpadding=3D"0" cells=
|
|
pacing=3D"0" style=3D"max-width: 100%;min-width: 100%;border-collapse: col=
|
|
lapse;mso-table-lspace: 0pt;mso-table-rspace: 0pt;-ms-text-size-adjust: 10=
|
|
0%;-webkit-text-size-adjust: 100%;float: left;" width=3D"100%" class=3D"mc=
|
|
nTextContentContainer">
|
|
<tbody><tr>
|
|
|
|
<td valign=3D"top" class=3D"mcnTextContent" style=
|
|
=3D"padding: 0px 18px 9px;font-family: Arial=2C "Helvetica Neue"=
|
|
=2C Helvetica=2C sans-serif;font-size: 14px;line-height: 150%;mso-line-hei=
|
|
ght-rule: exactly;-ms-text-size-adjust: 100%;-webkit-text-size-adjust: 100=
|
|
%;word-break: break-word;color: #202020;text-align: left;">
|
|
|
|
<span style=3D"font-size:15px"><span style=3D"=
|
|
font-family:arial=2Chelvetica neue=2Chelvetica=2Csans-serif">If you have g=
|
|
ood news you want to share=2C get in touch at: <a href=3D"mailto:this@week=
|
|
insecurity.com?subject=3DGood%20news%20for%20your%20newsletter" target=3D"=
|
|
_blank" style=3D"mso-line-height-rule: exactly;-ms-text-size-adjust: 100%;=
|
|
-webkit-text-size-adjust: 100%;color: #007C89;font-weight: normal;text-dec=
|
|
oration: underline;">this@weekinsecurity.com</a>.</span></span>
|
|
</td>
|
|
</tr>
|
|
</tbody></table>
|
|
=09=09=09=09<!--[if mso]>
|
|
=09=09=09=09</td>
|
|
=09=09=09=09<![endif]-->
|
|
|
|
=09=09=09=09<!--[if mso]>
|
|
=09=09=09=09</tr>
|
|
=09=09=09=09</table>
|
|
=09=09=09=09<![endif]-->
|
|
</td>
|
|
</tr>
|
|
</tbody>
|
|
</table><table border=3D"0" cellpadding=3D"0" cellspacing=3D"0" width=3D"1=
|
|
00%" class=3D"mcnTextBlock" style=3D"min-width: 100%;border-collapse: coll=
|
|
apse;mso-table-lspace: 0pt;mso-table-rspace: 0pt;-ms-text-size-adjust: 100=
|
|
%;-webkit-text-size-adjust: 100%;">
|
|
<tbody class=3D"mcnTextBlockOuter">
|
|
<tr>
|
|
<td valign=3D"top" class=3D"mcnTextBlockInner" style=3D"paddin=
|
|
g-top: 9px;mso-line-height-rule: exactly;-ms-text-size-adjust: 100%;-webki=
|
|
t-text-size-adjust: 100%;">
|
|
=09<!--[if mso]>
|
|
=09=09=09=09<table align=3D"left" border=3D"0" cellspacing=3D"0" cellpaddi=
|
|
ng=3D"0" width=3D"100%" style=3D"width:100%;">
|
|
=09=09=09=09<tr>
|
|
=09=09=09=09<![endif]-->
|
|
=09=09=09
|
|
=09=09=09=09<!--[if mso]>
|
|
=09=09=09=09<td valign=3D"top" width=3D"600" style=3D"width:600px;">
|
|
=09=09=09=09<![endif]-->
|
|
<table align=3D"left" border=3D"0" cellpadding=3D"0" cells=
|
|
pacing=3D"0" style=3D"max-width: 100%;min-width: 100%;border-collapse: col=
|
|
lapse;mso-table-lspace: 0pt;mso-table-rspace: 0pt;-ms-text-size-adjust: 10=
|
|
0%;-webkit-text-size-adjust: 100%;float: left;" width=3D"100%" class=3D"mc=
|
|
nTextContentContainer">
|
|
<tbody><tr>
|
|
|
|
<td valign=3D"top" class=3D"mcnTextContent" style=
|
|
=3D"padding: 0px 18px 9px;font-family: Arial=2C "Helvetica Neue"=
|
|
=2C Helvetica=2C sans-serif;font-size: 14px;line-height: 150%;mso-line-hei=
|
|
ght-rule: exactly;-ms-text-size-adjust: 100%;-webkit-text-size-adjust: 100=
|
|
%;word-break: break-word;color: #202020;text-align: left;">
|
|
|
|
<div style=3D"text-align: center;">~ ~</div>
|
|
|
|
</td>
|
|
</tr>
|
|
</tbody></table>
|
|
=09=09=09=09<!--[if mso]>
|
|
=09=09=09=09</td>
|
|
=09=09=09=09<![endif]-->
|
|
|
|
=09=09=09=09<!--[if mso]>
|
|
=09=09=09=09</tr>
|
|
=09=09=09=09</table>
|
|
=09=09=09=09<![endif]-->
|
|
</td>
|
|
</tr>
|
|
</tbody>
|
|
</table><table border=3D"0" cellpadding=3D"0" cellspacing=3D"0" width=3D"1=
|
|
00%" class=3D"mcnTextBlock" style=3D"min-width: 100%;border-collapse: coll=
|
|
apse;mso-table-lspace: 0pt;mso-table-rspace: 0pt;-ms-text-size-adjust: 100=
|
|
%;-webkit-text-size-adjust: 100%;">
|
|
<tbody class=3D"mcnTextBlockOuter">
|
|
<tr>
|
|
<td valign=3D"top" class=3D"mcnTextBlockInner" style=3D"paddin=
|
|
g-top: 9px;mso-line-height-rule: exactly;-ms-text-size-adjust: 100%;-webki=
|
|
t-text-size-adjust: 100%;">
|
|
=09<!--[if mso]>
|
|
=09=09=09=09<table align=3D"left" border=3D"0" cellspacing=3D"0" cellpaddi=
|
|
ng=3D"0" width=3D"100%" style=3D"width:100%;">
|
|
=09=09=09=09<tr>
|
|
=09=09=09=09<![endif]-->
|
|
=09=09=09
|
|
=09=09=09=09<!--[if mso]>
|
|
=09=09=09=09<td valign=3D"top" width=3D"600" style=3D"width:600px;">
|
|
=09=09=09=09<![endif]-->
|
|
<table align=3D"left" border=3D"0" cellpadding=3D"0" cells=
|
|
pacing=3D"0" style=3D"max-width: 100%;min-width: 100%;border-collapse: col=
|
|
lapse;mso-table-lspace: 0pt;mso-table-rspace: 0pt;-ms-text-size-adjust: 10=
|
|
0%;-webkit-text-size-adjust: 100%;float: left;" width=3D"100%" class=3D"mc=
|
|
nTextContentContainer">
|
|
<tbody><tr>
|
|
|
|
<td valign=3D"top" class=3D"mcnTextContent" style=
|
|
=3D"padding: 0px 18px 9px;font-family: Arial=2C "Helvetica Neue"=
|
|
=2C Helvetica=2C sans-serif;font-size: 14px;line-height: 150%;mso-line-hei=
|
|
ght-rule: exactly;-ms-text-size-adjust: 100%;-webkit-text-size-adjust: 100=
|
|
%;word-break: break-word;color: #202020;text-align: left;">
|
|
|
|
<h3 style=3D"display: block;margin: 0;padding:=
|
|
0;color: #202020;font-family: Helvetica;font-size: 20px;font-style: norma=
|
|
l;font-weight: bold;line-height: 125%;letter-spacing: normal;text-align: l=
|
|
eft;"><span style=3D"font-size:19px"><span style=3D"font-weight:bolder">CY=
|
|
BER CATS & FRIENDS</span></span></h3>
|
|
|
|
</td>
|
|
</tr>
|
|
</tbody></table>
|
|
=09=09=09=09<!--[if mso]>
|
|
=09=09=09=09</td>
|
|
=09=09=09=09<![endif]-->
|
|
|
|
=09=09=09=09<!--[if mso]>
|
|
=09=09=09=09</tr>
|
|
=09=09=09=09</table>
|
|
=09=09=09=09<![endif]-->
|
|
</td>
|
|
</tr>
|
|
</tbody>
|
|
</table><table border=3D"0" cellpadding=3D"0" cellspacing=3D"0" width=3D"1=
|
|
00%" class=3D"mcnTextBlock" style=3D"min-width: 100%;border-collapse: coll=
|
|
apse;mso-table-lspace: 0pt;mso-table-rspace: 0pt;-ms-text-size-adjust: 100=
|
|
%;-webkit-text-size-adjust: 100%;">
|
|
<tbody class=3D"mcnTextBlockOuter">
|
|
<tr>
|
|
<td valign=3D"top" class=3D"mcnTextBlockInner" style=3D"paddin=
|
|
g-top: 9px;mso-line-height-rule: exactly;-ms-text-size-adjust: 100%;-webki=
|
|
t-text-size-adjust: 100%;">
|
|
=09<!--[if mso]>
|
|
=09=09=09=09<table align=3D"left" border=3D"0" cellspacing=3D"0" cellpaddi=
|
|
ng=3D"0" width=3D"100%" style=3D"width:100%;">
|
|
=09=09=09=09<tr>
|
|
=09=09=09=09<![endif]-->
|
|
=09=09=09
|
|
=09=09=09=09<!--[if mso]>
|
|
=09=09=09=09<td valign=3D"top" width=3D"600" style=3D"width:600px;">
|
|
=09=09=09=09<![endif]-->
|
|
<table align=3D"left" border=3D"0" cellpadding=3D"0" cells=
|
|
pacing=3D"0" style=3D"max-width: 100%;min-width: 100%;border-collapse: col=
|
|
lapse;mso-table-lspace: 0pt;mso-table-rspace: 0pt;-ms-text-size-adjust: 10=
|
|
0%;-webkit-text-size-adjust: 100%;float: left;" width=3D"100%" class=3D"mc=
|
|
nTextContentContainer">
|
|
<tbody><tr>
|
|
|
|
<td valign=3D"top" class=3D"mcnTextContent" style=
|
|
=3D"padding: 0px 18px 9px;font-family: Arial=2C "Helvetica Neue"=
|
|
=2C Helvetica=2C sans-serif;font-size: 14px;line-height: 150%;mso-line-hei=
|
|
ght-rule: exactly;-ms-text-size-adjust: 100%;-webkit-text-size-adjust: 100=
|
|
%;word-break: break-word;color: #202020;text-align: left;">
|
|
|
|
<span style=3D"font-size:15px"><span style=3D"=
|
|
font-family:arial=2Chelvetica neue=2Chelvetica=2Csans-serif">Meet Shane=2C=
|
|
this week's cyber cat. If you think companies take your security and priv=
|
|
acy seriously=2C you'd be right to be suspicious. Shane=2C on the other ha=
|
|
nd=2C really does want you to take your security and privacy seriously. Yo=
|
|
u're a great advo<em><u>cat</u></em>e=2C Shane! (ba-dum tssk.) Thanks so m=
|
|
uch to Rob S. for sending in!</span></span>
|
|
</td>
|
|
</tr>
|
|
</tbody></table>
|
|
=09=09=09=09<!--[if mso]>
|
|
=09=09=09=09</td>
|
|
=09=09=09=09<![endif]-->
|
|
|
|
=09=09=09=09<!--[if mso]>
|
|
=09=09=09=09</tr>
|
|
=09=09=09=09</table>
|
|
=09=09=09=09<![endif]-->
|
|
</td>
|
|
</tr>
|
|
</tbody>
|
|
</table><table border=3D"0" cellpadding=3D"0" cellspacing=3D"0" width=3D"1=
|
|
00%" class=3D"mcnImageBlock" style=3D"min-width: 100%;border-collapse: col=
|
|
lapse;mso-table-lspace: 0pt;mso-table-rspace: 0pt;-ms-text-size-adjust: 10=
|
|
0%;-webkit-text-size-adjust: 100%;">
|
|
<tbody class=3D"mcnImageBlockOuter">
|
|
<tr>
|
|
<td valign=3D"top" style=3D"padding: 9px;mso-line-height-r=
|
|
ule: exactly;-ms-text-size-adjust: 100%;-webkit-text-size-adjust: 100%;" c=
|
|
lass=3D"mcnImageBlockInner">
|
|
<table align=3D"left" width=3D"100%" border=3D"0" cell=
|
|
padding=3D"0" cellspacing=3D"0" class=3D"mcnImageContentContainer" style=
|
|
=3D"min-width: 100%;border-collapse: collapse;mso-table-lspace: 0pt;mso-ta=
|
|
ble-rspace: 0pt;-ms-text-size-adjust: 100%;-webkit-text-size-adjust: 100%;=
|
|
float: left;">
|
|
<tbody><tr>
|
|
<td class=3D"mcnImageContent" valign=3D"top" s=
|
|
tyle=3D"padding-right: 9px;padding-left: 9px;padding-top: 0;padding-bottom=
|
|
: 0;text-align: center;mso-line-height-rule: exactly;-ms-text-size-adjust:=
|
|
100%;-webkit-text-size-adjust: 100%;">
|
|
|
|
|
|
<img align=3D"middle" alt=3D"Shane=
|
|
is a very handsome=2C green-eyed tabby cat who's looking directly into th=
|
|
e camera with a serious (but cute!) expression on his face." src=3D"https:=
|
|
//mcusercontent.com/e1ad6038c994abec17dafb116/images/121ed1eb-9380-070c-7d=
|
|
cb-2c5acb0d646d.jpeg" width=3D"473.76" style=3D"max-width: 1000px;padding-=
|
|
bottom: 0;display: inline !important;vertical-align: bottom;border: 0;heig=
|
|
ht: auto;outline: none;text-decoration: none;-ms-interpolation-mode: bicub=
|
|
ic;" class=3D"mcnImage">
|
|
|
|
|
|
</td>
|
|
</tr>
|
|
</tbody></table>
|
|
</td>
|
|
</tr>
|
|
</tbody>
|
|
</table><table border=3D"0" cellpadding=3D"0" cellspacing=3D"0" width=3D"1=
|
|
00%" class=3D"mcnTextBlock" style=3D"min-width: 100%;border-collapse: coll=
|
|
apse;mso-table-lspace: 0pt;mso-table-rspace: 0pt;-ms-text-size-adjust: 100=
|
|
%;-webkit-text-size-adjust: 100%;">
|
|
<tbody class=3D"mcnTextBlockOuter">
|
|
<tr>
|
|
<td valign=3D"top" class=3D"mcnTextBlockInner" style=3D"paddin=
|
|
g-top: 9px;mso-line-height-rule: exactly;-ms-text-size-adjust: 100%;-webki=
|
|
t-text-size-adjust: 100%;">
|
|
=09<!--[if mso]>
|
|
=09=09=09=09<table align=3D"left" border=3D"0" cellspacing=3D"0" cellpaddi=
|
|
ng=3D"0" width=3D"100%" style=3D"width:100%;">
|
|
=09=09=09=09<tr>
|
|
=09=09=09=09<![endif]-->
|
|
=09=09=09
|
|
=09=09=09=09<!--[if mso]>
|
|
=09=09=09=09<td valign=3D"top" width=3D"600" style=3D"width:600px;">
|
|
=09=09=09=09<![endif]-->
|
|
<table align=3D"left" border=3D"0" cellpadding=3D"0" cells=
|
|
pacing=3D"0" style=3D"max-width: 100%;min-width: 100%;border-collapse: col=
|
|
lapse;mso-table-lspace: 0pt;mso-table-rspace: 0pt;-ms-text-size-adjust: 10=
|
|
0%;-webkit-text-size-adjust: 100%;float: left;" width=3D"100%" class=3D"mc=
|
|
nTextContentContainer">
|
|
<tbody><tr>
|
|
|
|
<td valign=3D"top" class=3D"mcnTextContent" style=
|
|
=3D"padding: 0px 18px 9px;font-family: Arial=2C "Helvetica Neue"=
|
|
=2C Helvetica=2C sans-serif;font-size: 14px;line-height: 150%;mso-line-hei=
|
|
ght-rule: exactly;-ms-text-size-adjust: 100%;-webkit-text-size-adjust: 100=
|
|
%;word-break: break-word;color: #202020;text-align: left;">
|
|
|
|
<span style=3D"font-size:15px"><span style=3D"=
|
|
font-family:arial=2Chelvetica neue=2Chelvetica=2Csans-serif"><a href=3D"ma=
|
|
ilto:this@weekinsecurity.com?Subject=3DCyber%20Cat%20%28%26%20Friends%29%2=
|
|
0submission&Body=3DPlease%20include%20a%20JPG%20of%20your%20cyber%20cat%20=
|
|
%28or%20other%20non-feline%20friend%29%2C%20their%20name%2C%20and%20also%2=
|
|
0your%20name%20and/or%20Twitter%20handle%20if%20you%20want%20credit." targ=
|
|
et=3D"_blank" style=3D"mso-line-height-rule: exactly;-ms-text-size-adjust:=
|
|
100%;-webkit-text-size-adjust: 100%;color: #007C89;font-weight: normal;te=
|
|
xt-decoration: underline;"><strong>Keep sending in your cyber cats!</stron=
|
|
g></a> (or a non-feline friend). Drop me an email at any time with their n=
|
|
ame and a photo=2C and they'll be featured in an upcoming newsletter!</spa=
|
|
n></span>
|
|
</td>
|
|
</tr>
|
|
</tbody></table>
|
|
=09=09=09=09<!--[if mso]>
|
|
=09=09=09=09</td>
|
|
=09=09=09=09<![endif]-->
|
|
|
|
=09=09=09=09<!--[if mso]>
|
|
=09=09=09=09</tr>
|
|
=09=09=09=09</table>
|
|
=09=09=09=09<![endif]-->
|
|
</td>
|
|
</tr>
|
|
</tbody>
|
|
</table><table border=3D"0" cellpadding=3D"0" cellspacing=3D"0" width=3D"1=
|
|
00%" class=3D"mcnTextBlock" style=3D"min-width: 100%;border-collapse: coll=
|
|
apse;mso-table-lspace: 0pt;mso-table-rspace: 0pt;-ms-text-size-adjust: 100=
|
|
%;-webkit-text-size-adjust: 100%;">
|
|
<tbody class=3D"mcnTextBlockOuter">
|
|
<tr>
|
|
<td valign=3D"top" class=3D"mcnTextBlockInner" style=3D"paddin=
|
|
g-top: 9px;mso-line-height-rule: exactly;-ms-text-size-adjust: 100%;-webki=
|
|
t-text-size-adjust: 100%;">
|
|
=09<!--[if mso]>
|
|
=09=09=09=09<table align=3D"left" border=3D"0" cellspacing=3D"0" cellpaddi=
|
|
ng=3D"0" width=3D"100%" style=3D"width:100%;">
|
|
=09=09=09=09<tr>
|
|
=09=09=09=09<![endif]-->
|
|
=09=09=09
|
|
=09=09=09=09<!--[if mso]>
|
|
=09=09=09=09<td valign=3D"top" width=3D"600" style=3D"width:600px;">
|
|
=09=09=09=09<![endif]-->
|
|
<table align=3D"left" border=3D"0" cellpadding=3D"0" cells=
|
|
pacing=3D"0" style=3D"max-width: 100%;min-width: 100%;border-collapse: col=
|
|
lapse;mso-table-lspace: 0pt;mso-table-rspace: 0pt;-ms-text-size-adjust: 10=
|
|
0%;-webkit-text-size-adjust: 100%;float: left;" width=3D"100%" class=3D"mc=
|
|
nTextContentContainer">
|
|
<tbody><tr>
|
|
|
|
<td valign=3D"top" class=3D"mcnTextContent" style=
|
|
=3D"padding: 0px 18px 9px;font-family: Arial=2C "Helvetica Neue"=
|
|
=2C Helvetica=2C sans-serif;font-size: 14px;line-height: 150%;mso-line-hei=
|
|
ght-rule: exactly;-ms-text-size-adjust: 100%;-webkit-text-size-adjust: 100=
|
|
%;word-break: break-word;color: #202020;text-align: left;">
|
|
|
|
<div style=3D"text-align: center;">~ ~</div>
|
|
|
|
</td>
|
|
</tr>
|
|
</tbody></table>
|
|
=09=09=09=09<!--[if mso]>
|
|
=09=09=09=09</td>
|
|
=09=09=09=09<![endif]-->
|
|
|
|
=09=09=09=09<!--[if mso]>
|
|
=09=09=09=09</tr>
|
|
=09=09=09=09</table>
|
|
=09=09=09=09<![endif]-->
|
|
</td>
|
|
</tr>
|
|
</tbody>
|
|
</table><table border=3D"0" cellpadding=3D"0" cellspacing=3D"0" width=3D"1=
|
|
00%" class=3D"mcnTextBlock" style=3D"min-width: 100%;border-collapse: coll=
|
|
apse;mso-table-lspace: 0pt;mso-table-rspace: 0pt;-ms-text-size-adjust: 100=
|
|
%;-webkit-text-size-adjust: 100%;">
|
|
<tbody class=3D"mcnTextBlockOuter">
|
|
<tr>
|
|
<td valign=3D"top" class=3D"mcnTextBlockInner" style=3D"paddin=
|
|
g-top: 9px;mso-line-height-rule: exactly;-ms-text-size-adjust: 100%;-webki=
|
|
t-text-size-adjust: 100%;">
|
|
=09<!--[if mso]>
|
|
=09=09=09=09<table align=3D"left" border=3D"0" cellspacing=3D"0" cellpaddi=
|
|
ng=3D"0" width=3D"100%" style=3D"width:100%;">
|
|
=09=09=09=09<tr>
|
|
=09=09=09=09<![endif]-->
|
|
=09=09=09
|
|
=09=09=09=09<!--[if mso]>
|
|
=09=09=09=09<td valign=3D"top" width=3D"600" style=3D"width:600px;">
|
|
=09=09=09=09<![endif]-->
|
|
<table align=3D"left" border=3D"0" cellpadding=3D"0" cells=
|
|
pacing=3D"0" style=3D"max-width: 100%;min-width: 100%;border-collapse: col=
|
|
lapse;mso-table-lspace: 0pt;mso-table-rspace: 0pt;-ms-text-size-adjust: 10=
|
|
0%;-webkit-text-size-adjust: 100%;float: left;" width=3D"100%" class=3D"mc=
|
|
nTextContentContainer">
|
|
<tbody><tr>
|
|
|
|
<td valign=3D"top" class=3D"mcnTextContent" style=
|
|
=3D"padding: 0px 18px 9px;font-family: Arial=2C "Helvetica Neue"=
|
|
=2C Helvetica=2C sans-serif;font-size: 14px;line-height: 150%;mso-line-hei=
|
|
ght-rule: exactly;-ms-text-size-adjust: 100%;-webkit-text-size-adjust: 100=
|
|
%;word-break: break-word;color: #202020;text-align: left;">
|
|
|
|
<h3 style=3D"display: block;margin: 0;padding:=
|
|
0;color: #202020;font-family: Helvetica;font-size: 20px;font-style: norma=
|
|
l;font-weight: bold;line-height: 125%;letter-spacing: normal;text-align: l=
|
|
eft;"><span style=3D"font-size:19px"><span style=3D"font-weight:bolder">SU=
|
|
GGESTION BOX</span></span></h3>
|
|
|
|
</td>
|
|
</tr>
|
|
</tbody></table>
|
|
=09=09=09=09<!--[if mso]>
|
|
=09=09=09=09</td>
|
|
=09=09=09=09<![endif]-->
|
|
|
|
=09=09=09=09<!--[if mso]>
|
|
=09=09=09=09</tr>
|
|
=09=09=09=09</table>
|
|
=09=09=09=09<![endif]-->
|
|
</td>
|
|
</tr>
|
|
</tbody>
|
|
</table><table border=3D"0" cellpadding=3D"0" cellspacing=3D"0" width=3D"1=
|
|
00%" class=3D"mcnTextBlock" style=3D"min-width: 100%;border-collapse: coll=
|
|
apse;mso-table-lspace: 0pt;mso-table-rspace: 0pt;-ms-text-size-adjust: 100=
|
|
%;-webkit-text-size-adjust: 100%;">
|
|
<tbody class=3D"mcnTextBlockOuter">
|
|
<tr>
|
|
<td valign=3D"top" class=3D"mcnTextBlockInner" style=3D"paddin=
|
|
g-top: 9px;mso-line-height-rule: exactly;-ms-text-size-adjust: 100%;-webki=
|
|
t-text-size-adjust: 100%;">
|
|
=09<!--[if mso]>
|
|
=09=09=09=09<table align=3D"left" border=3D"0" cellspacing=3D"0" cellpaddi=
|
|
ng=3D"0" width=3D"100%" style=3D"width:100%;">
|
|
=09=09=09=09<tr>
|
|
=09=09=09=09<![endif]-->
|
|
=09=09=09
|
|
=09=09=09=09<!--[if mso]>
|
|
=09=09=09=09<td valign=3D"top" width=3D"600" style=3D"width:600px;">
|
|
=09=09=09=09<![endif]-->
|
|
<table align=3D"left" border=3D"0" cellpadding=3D"0" cells=
|
|
pacing=3D"0" style=3D"max-width: 100%;min-width: 100%;border-collapse: col=
|
|
lapse;mso-table-lspace: 0pt;mso-table-rspace: 0pt;-ms-text-size-adjust: 10=
|
|
0%;-webkit-text-size-adjust: 100%;float: left;" width=3D"100%" class=3D"mc=
|
|
nTextContentContainer">
|
|
<tbody><tr>
|
|
|
|
<td valign=3D"top" class=3D"mcnTextContent" style=
|
|
=3D"padding: 0px 18px 9px;font-family: Arial=2C "Helvetica Neue"=
|
|
=2C Helvetica=2C sans-serif;font-size: 14px;line-height: 150%;mso-line-hei=
|
|
ght-rule: exactly;-ms-text-size-adjust: 100%;-webkit-text-size-adjust: 100=
|
|
%;word-break: break-word;color: #202020;text-align: left;">
|
|
|
|
<span style=3D"font-size:15px"><span style=3D"=
|
|
font-family:arial=2Chelvetica neue=2Chelvetica=2Csans-serif">Thanks for re=
|
|
ading this edition! I'll be back as usual with the roundup next Sunday. I'=
|
|
m sure it'll be a busy one. For all those who are leaving the federal gove=
|
|
rnment on Monday=2C especially those who worked in cyber=2C thank you for=
|
|
your service.<br>
|
|
<br>
|
|
As always=2C if you have any feedback you want to share my way=2C please <=
|
|
a href=3D"mailto:this@weekinsecurity.com" style=3D"mso-line-height-rule: e=
|
|
xactly;-ms-text-size-adjust: 100%;-webkit-text-size-adjust: 100%;color: #0=
|
|
07C89;font-weight: normal;text-decoration: underline;">drop me an email</a=
|
|
> =E2=80=94 or anything else for the newsletter. Cyber cat or friend? Send=
|
|
'em along!<br>
|
|
<br>
|
|
All my best=2C<br>
|
|
<a href=3D"http://mastodon.social/@zackwhittaker" target=3D"_blank" style=
|
|
=3D"mso-line-height-rule: exactly;-ms-text-size-adjust: 100%;-webkit-text-=
|
|
size-adjust: 100%;color: #007C89;font-weight: normal;text-decoration: unde=
|
|
rline;">@zackwhittaker</a></span></span>
|
|
</td>
|
|
</tr>
|
|
</tbody></table>
|
|
=09=09=09=09<!--[if mso]>
|
|
=09=09=09=09</td>
|
|
=09=09=09=09<![endif]-->
|
|
|
|
=09=09=09=09<!--[if mso]>
|
|
=09=09=09=09</tr>
|
|
=09=09=09=09</table>
|
|
=09=09=09=09<![endif]-->
|
|
</td>
|
|
</tr>
|
|
</tbody>
|
|
</table></td>
|
|
</tr>
|
|
<tr>
|
|
<td valign=3D"top" id=3D"templateFooter" s=
|
|
tyle=3D"background:#transparent none no-repeat center/cover;mso-line-heigh=
|
|
t-rule: exactly;-ms-text-size-adjust: 100%;-webkit-text-size-adjust: 100%;=
|
|
background-color: #transparent;background-image: none;background-repeat: n=
|
|
o-repeat;background-position: center;background-size: cover;border-top: 0;=
|
|
border-bottom: 0;padding-top: 9px;padding-bottom: 9px;"><table border=3D"0=
|
|
" cellpadding=3D"0" cellspacing=3D"0" width=3D"100%" class=3D"mcnTextBlock=
|
|
" style=3D"min-width: 100%;border-collapse: collapse;mso-table-lspace: 0pt=
|
|
;mso-table-rspace: 0pt;-ms-text-size-adjust: 100%;-webkit-text-size-adjust=
|
|
: 100%;">
|
|
<tbody class=3D"mcnTextBlockOuter">
|
|
<tr>
|
|
<td valign=3D"top" class=3D"mcnTextBlockInner" style=3D"paddin=
|
|
g-top: 9px;mso-line-height-rule: exactly;-ms-text-size-adjust: 100%;-webki=
|
|
t-text-size-adjust: 100%;">
|
|
=09<!--[if mso]>
|
|
=09=09=09=09<table align=3D"left" border=3D"0" cellspacing=3D"0" cellpaddi=
|
|
ng=3D"0" width=3D"100%" style=3D"width:100%;">
|
|
=09=09=09=09<tr>
|
|
=09=09=09=09<![endif]-->
|
|
=09=09=09
|
|
=09=09=09=09<!--[if mso]>
|
|
=09=09=09=09<td valign=3D"top" width=3D"600" style=3D"width:600px;">
|
|
=09=09=09=09<![endif]-->
|
|
<table align=3D"left" border=3D"0" cellpadding=3D"0" cells=
|
|
pacing=3D"0" style=3D"max-width: 100%;min-width: 100%;border-collapse: col=
|
|
lapse;mso-table-lspace: 0pt;mso-table-rspace: 0pt;-ms-text-size-adjust: 10=
|
|
0%;-webkit-text-size-adjust: 100%;float: left;" width=3D"100%" class=3D"mc=
|
|
nTextContentContainer">
|
|
<tbody><tr>
|
|
|
|
<td valign=3D"top" class=3D"mcnTextContent" style=
|
|
=3D"padding-top: 0;padding-right: 18px;padding-bottom: 9px;padding-left: 1=
|
|
8px;mso-line-height-rule: exactly;-ms-text-size-adjust: 100%;-webkit-text-=
|
|
size-adjust: 100%;word-break: break-word;color: #656565;font-family: Helve=
|
|
tica;font-size: 12px;line-height: 150%;text-align: center;">
|
|
|
|
<div style=3D"text-align: center;"><span style=
|
|
=3D"font-size:12px">
|
|
You are receiving this email because you opted in.<br>
|
|
<br>
|
|
~this week in security~ doesn't track email opens or clicks.<br>
|
|
($) indicate sites with paywalls or logins. Please support journalism!<br>
|
|
<br>
|
|
Our mailing address is: <div class=3D"vcard"><span class=3D"org fn">~=
|
|
this week in security~</span><div class=3D"adr"><div class=3D"street-addre=
|
|
ss">Zack Whittaker</div><div class=3D"extended-address">PO Box 415</div><s=
|
|
pan class=3D"locality">Jersey City</span>=2C <span class=3D"region">NJ</sp=
|
|
an> <span class=3D"postal-code">07303-0415</span></div><br><a href=3D"http=
|
|
s://social.us18.list-manage.com/vcard?u=3De1ad6038c994abec17dafb116&id=3Da=
|
|
2457dc8ad" class=3D"hcard-download">Add us to your address book</a></div>
|
|
<br>
|
|
You can <a href=3D"https://social.us18.list-manage.com/profile?u=3De1ad603=
|
|
8c994abec17dafb116&id=3Da2457dc8ad&e=3D9d10de3b61&c=3D7689afb4b2" style=3D"m=
|
|
so-line-height-rule: exactly;-ms-text-size-adjust: 100%;-webkit-text-size-=
|
|
adjust: 100%;color: #656565;font-weight: normal;text-decoration: underline=
|
|
;">update your preferences</a> or <a href=3D"https://social.us18.list-mana=
|
|
ge.com/unsubscribe?u=3De1ad6038c994abec17dafb116&id=3Da2457dc8ad&t=3Db&e=
|
|
=3D9d10de3b61&c=3D7689afb4b2" style=3D"mso-line-height-rule: exactly;-ms-tex=
|
|
t-size-adjust: 100%;-webkit-text-size-adjust: 100%;color: #656565;font-wei=
|
|
ght: normal;text-decoration: underline;">unsubscribe from this list</a>.</=
|
|
span></div>
|
|
|
|
</td>
|
|
</tr>
|
|
</tbody></table>
|
|
=09=09=09=09<!--[if mso]>
|
|
=09=09=09=09</td>
|
|
=09=09=09=09<![endif]-->
|
|
|
|
=09=09=09=09<!--[if mso]>
|
|
=09=09=09=09</tr>
|
|
=09=09=09=09</table>
|
|
=09=09=09=09<![endif]-->
|
|
</td>
|
|
</tr>
|
|
</tbody>
|
|
</table></td>
|
|
</tr>
|
|
</table>
|
|
<!--[if (gte mso 9)|(IE)]>
|
|
</td>
|
|
</tr>
|
|
</table>
|
|
<![endif]-->
|
|
<!-- // END TEMPLATE -->
|
|
</td>
|
|
</tr>
|
|
</table>
|
|
</center>
|
|
</body>
|
|
</html>
|
|
--_----------=_MCPart_1880723574--
|
.