Patch Tuesday notes. Mr. Mudge goes to Washington. Joint warning of IRGC cyber activity. No major developments in the cyber phases of Russia’s hybrid war (but Ukraine is sounding confident).
Patch Tuesday notes. The US Senate Judiciary Committee hears from the Twitter whistleblower. Joint warning of IRGC cyber activity. Rob Boyce from Accenture on cybercriminals weaponizing leaked ransomware data. Chris Novak from Verizon describes his participation in the CISA Advisory Board. And Ukraine reiterates confidence in its resiliency.
Adobe Patches 63 Security Flaws in Patch Tuesday Bundle (SecurityWeek)
Microsoft Raises Alert for Under-Attack Windows Flaw (SecurityWeek)
SAP Security Patch Day September 2022 (Onapsis)
Apple fixes eighth zero-day used to hack iPhones and Macs this year (BleepingComputer)
Data Security at Risk: Testimony from a Twitter Whistleblower (United States Senate Committee on the Judiciary)
Twitter Employees Have Too Much Access to Data, Whistleblower Says (Wall Street Journal)
Security failures cause ‘real harm to real people’ (Washington Post)
Twitter whistleblower testifies to Congress, calls for tech regulation reforms (The Record by Recorded Future)
The Search for Dirt on the Twitter Whistle-Blower (The New Yorker)
Whistle-Blower Says Twitter ‘Chose to Mislead’ on Security Flaws (New York Times)
Twitter whistleblower exposes limits of FTC’s power (Washington Post)