I started this site as a tool to capture things I’ve learned, and over time it’s become something of a life platform. Here you can find a blog, resume, projects, captures of what I’m reading, subjects I am interested in and everything else.
I hope you find something here worth your time.
“We need a cybersecurity renaissance in this Country that promotes cyber hygiene and a security centric corporate culture applied and continuously reinforced by peer pressure”.
― James Scott
— Interesting articles —
- HackerOne CEO Talks Bug Bounty Programs at RSA Conference - Can bug bounty programs be designed to protect consumer privacy and how do programs balance white hat disclosure versus companies sitting on vulnerabilities until they are fixed?
- RSAC 2018: Tech Giants Form Cybersecurity Tech Accord - Microsoft president Brad Smith at RSAC 2018 said more than 30 companies will oppose government cyberattacks on “innocent civilians.”
- Google Play Boots Three Malicious Apps From Marketplace Tied to APTs - Researchers said three apps used to surveil Middle East targets were booted from the Google Play marketplace.
- Vulnerability in San Francisco’s Public Safety Warning Sirens Fixed - A patched vulnerability in San Francisco’s public safety warning siren system suggests other radio-based platforms could also be hacked.
- U.S. DoD Hopes To Stamp Out Threats With Bug Bounty Program - The U.S. Department of Defense is the latest government entity to double down on vulnerabilities, on Monday announcing a new bug bounty program.
- Alleged Mastermind Behind Carbanak Crime Gang Arrested - The suspected leader behind the cyber crime group that targeted banks to rack up more than one billion Euros in damage over the past few years has been apprehended, according to the Spanish National Police.
- GoScanSSH Malware Targets SSH Servers, But Avoids Military and .GOV Systems - Researchers identify a new malware family called GoScanSSH that avoids servers linked to government and military IP addresses.
- FBI: Iranian Firm Stole Data In Massive Spear Phishing Campaign - The Department of Justice has announced charges against nine Iranians, affiliated with the Mabna Institute, who are accused of stealing private data from U.S. universities, private companies, and U.S. government departments.
- Senate Gives Nod To Controversial Cross-Border Data Access Bill - The senate on Thursday gave the thumbs up to a bill that is the subject of both support by tech companies and critique by privacy groups.
- A Closer Look at APT Group Sofacy’s Latest Targets - Threatpost talks to Kaspersky Lab researcher Kurt Baumgartner who was instrumental in tracking the latest activities of the Russian-speaking Sofacy APT gang.