ITSEC News @itsecbot@schleuss.online

#introductions This bot is posting ITSEC related news from all over the web - usually refreshes every few minutes with new stories. If you would like to see more sites included, write to the maintainer @emanuel - you might also be interested in @vulnbot

Mozilla Releases Firefox 100.0.2 With Critical Security Fixes - Mozilla has just released a new Firefox version, and this time, the minor revision... https://news.softpedia.com/news/mozilla-releases-firefox-100-0-2-with-critical-security-fixes-535426.shtml #security

Responsible disclosure - another new policy - We have just completed and released another topic-specific information security po... http://blog.noticebored.com/2022/05/responsible-disclosure-another-new.html #vulnerability #bestpractice #incidents #integrity #internet #outsider #hacking #infosec #insider #ethics #policy #threat #cyber #fraud #tools #trust #risk

Security Certification Roadmap -  The mother of all listingshttps://pauljerimy.com/security-certification-roadmap/ https://tech-wreckblog.blogspot.com/2022/05/security-certification-roadmap.html

Mozilla patches Wednesday’s Pwn2Own double-exploit… on Friday! - That was quick! 48 hours from exploit report to published patch. https://nakedsecurity.sophos.com/2022/05/21/mozilla-patches-wednesdays-pwn2own-double-exploit-on-friday/ #vulnerability #cve-2022-1529 #cve-2022-1802 #manfredpaul #firefox #mozilla #pwn2own

Microsoft patches the Patch Tuesday patch that broke authentication - Remember the good old days when security patches rarely needed patches? Because security ... https://nakedsecurity.sophos.com/2022/05/20/microsoft-patches-the-patch-tuesday-patch-that-broke-authentication/ #authentication #patch-to-patch #vulnerability #out-of-band #microsoft #woindows #windows

Balancing Convenience and Caution with One-Time Passwords - From chat rooms, to emails, to bank accounts, to medical information, provi... https://duo.com/blog/balancing-convenience-and-caution-with-one-time-passwords #product&engineering

Cyber Liability Insurance Essentials for Small and Medium-Sized Enterprises - For as long as organizations have existed to grow crops, move goods or produce ite... https://duo.com/blog/cyber-liability-insurance-essentials-for-small-and-medium-sized-enterprises #industrynews

Behind the Scenes: Migrating Duo to Kubernetes - Duo Security has historically been a Python shop hosted on Amazon Web Services (AW... https://duo.com/blog/behind-the-scenes-migrating-duo-to-kubernetes #product&engineering

Duo’s Recipe for Great Culture - After years of immersion, here’s what I believe is Duo’s recipe for great c... https://duo.com/blog/duo-s-recipe-for-great-culture #industrynews

Redesigning the Security Narrative - When I joined Duo’s creative team back in 2017 as a junior designer, I reca... https://duo.com/blog/redesigning-the-security-narrative #industrynews

Duo Announces UK & India Data Centers to Support Data Localization Requirements and International Expansion - Since 2017, the number of data localization measures in force globally has ... https://duo.com/blog/duo-international-growth-2022 #product&engineering

Paving the Way to Passwordless - Do you remember all the passwords to your various accounts and profiles? Ho... https://duo.com/blog/paving-the-way-to-passwordless #industrynews

Duo Has Been Recognized as a Customers’ Choice for Access Management in Gartner® Peer Insights™ Two Years in a Row! - Duo is excited to announce we have been recognized as a Customers’ Choice v... https://duo.com/blog/duo-recognized-as-a-customers-choice-for-access-management-in-gartner-peer-insights-two-years-in-row #industrynews

Managed or Unmanaged Device? Duo’s Device Trust Has You Covered - “How do I allow access only to devices that meet my organization’s trust and compl... https://duo.com/blog/managed-or-unmanaged-device-duo-device-trust-has-you-covered #product&engineering

Improved Self-Service. Less Code. Hosted Device Management via Duo SSO Is Now in Public Preview. - Millions of users carry Duo Mobile around in their pocket daily. On top of ... https://duo.com/blog/hosted-device-management-via-duo-sso-now-in-public-preview #product&engineering

Threat Roundup for May 13 to May 20 - Today, Talos is publishing a glimpse into the most prevalent threats we've observed betwe... http://blog.talosintelligence.com/2022/05/threat-roundup-0513-0520.html #vulnerabilities #threatroundup #features #malware #securex #talos #iocs

Greenland hit by cyber attack, finds its health service crippled - For the past week and a half, Greenland's health service has reportedly been struggling t... https://www.bitdefender.com/blog/hotforsecurity/greenland-hit-by-cyber-attack-finds-its-health-service-crippled/ #securitythreats #healthcare #guestblog #greenland #hacking #malware

Bank refuses to pay ransom to hackers, sends dick pics instead - I'm not sure if it would be enough for me to switch bank accounts, but I have something o... https://grahamcluley.com/bank-refuses-to-pay-ransom-to-hackers-sends-dick-pics-instead/ #ransomware #malware #zambia

(ISC)² Entry-Level Cybersecurity Certification Pilot Exam Reaches 1,000 Exam Milestone - We are excited to announce that more than 1,000 cybersecurity career hopefuls have... https://blog.isc2.org/isc2_blog/2022/05/isc2-entry-level-cybersecurity-cert-reaches-milestone.html #cybersecuritycertifications #cybersecurityworkforce #cybersecuritytraining

US Government says: Patch VMware right now, or get off our network - Find and patch. Right now. If you can't patch, get it off the network. Right now! Oh, and... https://nakedsecurity.sophos.com/2022/05/20/us-government-says-patch-vmware-right-now-or-get-off-our-network/ #federalgovernment #cve-2022-22972 #cve-2022-22973 #vulnerability #vmware #mtr