Fully Homomorphic Encryption and the Dawn of a Truly Private Internet

https://bozmen.io/fhe

Operation Eastwood shutters 100+ servers used to DDoS websites supporting Ukraine https://go.theregister.com/feed/www.theregister.com/2025/07/16/russian_hacktivist_bust/ #cybersecurity #infosec

#Meta and #Yandex break security to save their business model

https://privacyinternational.org/long-read/5621/meta-and-yandex-break-security-save-their-business-model

Missed one of my past conference talks? Let’s fix that.

I’m sharing my favorites—packed with real-world advice, lessons, and a few laughs.

“DIY Azure Security Assessment" - with Teri Radichel
https://twp.ai/4iodU5

North Korean hackers blamed for record spike in crypto thefts in 2025 https://www.byteseu.com/1204146/ #Chainalysis #Conflicts #Crypto #cyberattacks #cybersecurity #NorthKorea

Kriminelle stehlen Kryptowährung im Wert von 27 Millionen Dollar von Kryptobörse

Krypto-Diebstähle sind 2025 auf Rekordkurs. Jetzt stehlen Hacker digitale Währungen im zweistelligen Millionenwert. Die Kryptobörse übernimmt die Verluste.

https://www.heise.de/news/Kriminelle-stehlen-Kryptowaehrung-im-Wert-von-27-Millionen-Dollar-von-Kryptoboerse-10491985.html?wt_mc=sm.red.ho.mastodon.mastodon.md_beitraege.md_beitraege&utm_source=mastodon

Ukrainian hackers claim to have destroyed major Russian drone maker's entire network https://go.theregister.com/feed/www.theregister.com/2025/07/16/ukrainian_drone_attack/ #cybersecurity #infosec

Digital occupation: Pro-Russian bot networks target Ukraine’s occupied territories on Telegram https://dfrlab.org/2025/07/16/report-russian-bot-networks-occupied-ukraine/ #cybersecurity #infosec

EU and Moldova expand digital pact to counter cyber and hybrid threats https://www.byteseu.com/1203571/ #communication #CyberAgreement #CyberSolidarityAct #cybersecurity #CybersecurityIncident #DanishPresidency #EUCybersecurityReserveForMoldova #EuropeanCommission #Misinformation #Moldova

Streaming I got new a couple new toys | DEFCON Countdown| Warframe | Tech & Chill: OSS, Gaming on Linux, Radio, Cybersecurity now on Twitch. Let's go: https://twitch.tv/chiefgyk3d #LinuxGaming #Infosec #Cybersecurity #Tech #Twitch

New Release! Cybersecurity Interview Questions & Answers: Master Real Interview Questions from Top Tech Companies like Amazon, Google, Facebook, and Microsoft by Bolakale Aremu #books #ebooks #career #cybersecurity

Short on time before your cybersecurity interview? Don’t panic—this practical guide is built to help you prepare fast, think smart, and answer like a pro.

Find it on Leanpub!

Link: https://leanpub.com/cybersecurity-interview-questions-answers

Ok, we might be a day late for #AIAppreciationDay — but it's never too late to talk about AI development... especially when #Graylog's Jim Nitterauer is quoted on the topic, in AI Business! In fact, several industry luminaries weighed in on the conversation, in this article by Berenice Baker.

See what these experts (in addition to our own Jim Nitterauer) have to say about AI development, breakthroughs in generative models, agentic AI, ethical AI frameworks, human-machine collaboration, and more:
Charles Herring, CEO and co-founder, WitFoo
Ariful Huq, co-founder and head of product, Exaforce Inc.
Ian Cameron, vice president, product management, March Networks
Shai Gabay – co-founder and CEO, Trustmi
Evan Reiss, vice president, head of marketing, Foxit
Mike Kiersey, global vice president of solution consulting, Workato
Ezzeldin Hussein, senior director, solutions engineering at SentinelOne
Mehdi Goodarzi, global head – generative AI consulting, Hexaware Technologies
Vivek Behl, VP Strategy, WalkMe™
Spencer Kimball, CEO and co-founder, Cockroach Labs
Rosaria Silipo, head of data science evangelism, KNIME
Justin Silver, principal AI strategist, PROS

As Jim says, "AI isn't just transforming workflows. It is redefining the boundaries of trust, privacy and accountability." And we're excited to see where it goes from here!

https://aibusiness.com/generative-ai/ai-appreciation-day-industry-weighs-in-on-celebration#close-modal #artificialintelligence #AIsecurity #cybersecurity

Dennis Taylor with Bobiverse Book 6, crypto/ATM machines banned, Signal vs. WhatsApp encryption in flight vs. at rest—Steve Gibson & Leo Laporte break it down on Security Now. #Cybersecurity #Encryption Download and subscribe here: https://twit.tv/shows/security-now/episodes/1034

Salt Typhoon hacks into National Guard systems a ‘serious escalation,’ experts warn https://www.defenseone.com/threats/2025/07/salt-typhoon-hacks-national-guard-systems-serious-escalation-experts-warn/406777/ #cybersecurity #infosec

Afghanistan, fuga di dati: grave leak per il MoD britannico
#CyberSecurity
https://insicurezzadigitale.com/afghanistan-fuga-di-dati-grave-leak-per-il-mod-britannico/

(proofpoint.com) Chinese State-Sponsored Threat Actors Target Taiwanese Semiconductor Industry with Multi-Vector Espionage Campaigns

https://www.proofpoint.com/us/blog/threat-insight/phish-china-aligned-espionage-actors-ramp-up-taiwan-semiconductor-targeting

#ThreatIntel #Cybersecurity #Infosec

(1/2)

Head's up, the "you must confirm your profile" scam is proliferating on the Fediverse. I wonder if they are trying to gather driver's licenses and credit card numbers? It's a scam.

This guide for embedded and IoT engineers covers secure system design from the ground up: cryptographic implementation, secure identity, memory protection, secure boot, system monitoring, and more.

Includes real-world case studies like AppArmor, MQTT, and firmware update strategies using SWUpdate. Designed for those who want to secure connected devices—without losing performance.

https://nostarch.com/engineering-secure-devices

DNS: A Small but Effective C2 system

This analysis explores the exploitation of DNS for command-and-control operations and data exfiltration. It details how cybercriminals leverage DNS tunneling to create covert communication channels, bypassing traditional security measures. The article examines various DNS tunneling families, including Cobalt Strike, DNSCat2, and Iodine, discussing their prevalence and unique characteristics. It also highlights Infoblox's Threat Insight machine learning algorithms, which can detect and block tunneling domains within minutes. The study provides insights into the detection rates of different tunneling families and discusses the challenges in differentiating between legitimate and malicious DNS traffic.

Pulse ID: 6878f6e5d14da64ae460ad61
Pulse Link: https://otx.alienvault.com/pulse/6878f6e5d14da64ae460ad61
Pulse Author: AlienVault
Created: 2025-07-17 13:13:08

Be advised, this data is unverified and should be considered preliminary. Always do further verification.

SVG Smuggling - Image Embedded JavaScript Redirect Attacks

Threat actors are increasingly using Scalable Vector Graphics (SVG) files to deliver JavaScript-based redirect attacks. These SVGs contain embedded, obfuscated JavaScript that initiates browser redirects to attacker-controlled infrastructure. The campaign uses email spoofing and impersonation to deliver the SVGs, bypassing traditional file-based detection. The embedded code uses XOR encryption and reconstructs the redirect command at runtime. The attack targets B2B Service Providers, including those handling corporate financial and employee data. Mitigation strategies include implementing DMARC policies, blocking SVG attachments, and enhancing email security measures. The campaign demonstrates a shift towards smuggling techniques that avoid triggering traditional security alerts.

Pulse ID: 6878f6e6ce9d5286edc46238
Pulse Link: https://otx.alienvault.com/pulse/6878f6e6ce9d5286edc46238
Pulse Author: AlienVault
Created: 2025-07-17 13:13:10

Be advised, this data is unverified and should be considered preliminary. Always do further verification.