In the offense-defense see-saw, the defense seems to be rising.
An Apache vulnerability is being used to install ransomware. Exploitation of Citrix vulnerability in the wild. AP sustains DDoS attack. HHS reaches settlement in HIPAA data breach incident. More evidence of OSINT's reach. On the Solution Spotlight: Simone Petrella and Rick Howard speak with Ben Rothke about his article and thoughts on "Is there really an information security jobs crisis?" Andrea Little Limbago from Interos joins us to discuss SEC and the disclosure rules. And, Microsoft draws a lesson from Russia's war: cyber defense now has the advantage over cyber offense.
HelloKitty ransomware now exploiting Apache ActiveMQ flaw in attacks (BleepingComputer)
HHS’ Office for Civil Rights Settles Ransomware Cyber-Attack Investigation (U.S. Department of Health and Human Services)
Associated Press hit by Anonymous Sudan DDoS attack? (Tech Monitor)
Revisiting the Gaza Hospital Explosion (New York Times)
A new world of security: Microsoft’s Secure Future Initiative (Microsoft On the Issues)
Announcing Microsoft Secure Future Initiative to advance security engineering (Microsoft Security)
Ukraine at D+617: Advantage defense. (CyberWire)