Cybersecurity agencies from the Five Eyes have released joint guidance on how to deal with bulletproof hosting providers

Cybersecurity and Infrastructure Security Agency CISA

Bulletproof Defense: Mitigating Risks From Bulletproof Hosting Providers | CISA

CISA and its partners urge ISPs and network defenders to implement these recommendations to mitigate risks posed by BPH providers.

Some drama in the tech world. TP-Link has sued Netgear over an alleged smear campaign. The Chinese company claims its American competitor is behind rumors and accusations over its connections to the CCP.

The Business Times

Netgear accused by rival of China smear to fan security fear

The suit comes as TP-Link faces growing scrutiny in Washington over national-security issues Read more at The Business Times.

US lawmakers want to extend CISA 2015 by another 10 years

Nextgov.com

Senators expect 10-year extension of cyber data-sharing law in future budget package

The Cybersecurity Information Sharing Act of 2015 got a temporary reprieve after the government reopened this month, but it risks lapsing again at ...

The npm portal has revamped its user access tokens. New tokens will have a default life of seven days (instead of 30), which can be updated to a maximum lifespan of 90 days (previously unlimited). The changes are going live this month.

The GitHub Blog

Strengthening npm security: Important changes to authentication and token management - GitHub Changelog

As part of our ongoing commitment to securing the npm ecosystem, we’re implementing the first phase of security improvements outlined in our ...

The European Court of Human Rights has dismissed a case brought by Catalan opposition figures over the CatalanGate 2022 spyware scandal due to a lack of evidence

Catalan opposition regroups after spyware case thrown out by human rights court – POLITICO

Danish officials have found a new way to push for the Chat Control encryption-breaking legislation without the proposed law going through a public debate

Patrick Breyer

Chat Control: The EU's CSAM scanner proposal

🇫🇷 French: Traduction du dossier Chat Control 2.0, stopchatcontrol.fr🇸🇪 Swedish: Chat Control 2.0🇩🇰 Danish: chatcontrol.dk🇳ðŸ‡...

Microsoft is adding Sysmon into Windows

The Verge

Microsoft is adding Sysmon into Windows.

Sysmon was first released in 2014 as a utility for security analysis into the Windows Event Log. Built by Microsoft technical fellow Mark Russinovi...

Nozomi researchers have found a vulnerability in the Shelly Pro 4PM smart relay and power metering product that could cut power to smart homes

Lights Out: How One Tiny Message Can Crash Your Shelly Pro 4PM and Lock You Out of Your Smart Home

Nozomi Networks Labs analyzed the Shelly Pro 4PM and found vulnerabilities that could force the device to reboot.

Nothing on the internet is working again.... great job Cloudflare!

Qurium has linked recent DDoS attacks against investigative news outlet iStories to Proxy[.]vn, a Vietnam-based proxy-for-hire network.

Proxy.vn’s hidden Tin-Roof datacenter fueling fake accounts behind the recent attack on iStories.media – Qurium Media Foundation