Brief

Brief #59: OpenSSH RCE Flaw, AI Jailbreak Technique, Cybersecurity Market Failure, Job Tips

Week 27: OpenSSH RCE as root flaw affects 14M servers, new AI jailbreak bypasses guardrails, cybersecurity market failure needs regulation, tips to land a job.

9 min read
mandos brief newsletter by nikoloz kokhreidze week 27 of 2024

Happy week 27!

This week we're covering a critical OpenSSH vulnerability allowing remote code execution, a new AI jailbreak technique called Skeleton Key, the need for regulatory action in cybersecurity, practical tips for landing a cybersecurity job, Rapid7's acquisition of Noetic Cyber, and a useful process filtering tool for Windows environments.


Mandos Brief - Industry News
Mandos Brief - Industry News

OpenSSH Vulnerability CVE-2024-6387 Allows Remote Code Execution as Root


OpenAI Hacker Breached Employee Forum, Stole AI Tech Details


Twilio Confirms Data Breach Exposing 33 Million Authy Phone Numbers


SnailLoad Attack Exploits Network Bottlenecks to Infer User Activity


Researcher Discovers Bug Allowing Websites to Fill Vision Pro User's Room with 3D Objects

Mandos Brief - AI & Security
Mandos Brief - AI & Security

Skeleton Key: New AI Jailbreak Technique Bypasses Guardrails


Rabbit Data Breach Exposes All R1 Responses, API Keys Remain Unchanged


OpenAI Patches ChatGPT macOS App Vulnerability


Mandos Brief - Leadership Insights
Mandos Brief - Leadership Insights

Cybersecurity Market Failure Requires Regulatory Action to Drive Change


CISOs Seek Personal Protection Amid Increased Liability Risks


Nathan Case Argues There Is No Such Thing as Security on Cyber Ranch Podcast


Mandos Brief - Career Development
Mandos Brief - Career Development

Redditor Shares Tips for Landing a Cybersecurity Job


Acing the Cyber Security Job Interview: Insights from a Recruiting Expert


Cybersecurity Job Interview Tips Shared in 7-Video YouTube Playlist


Mandos Brief - Market Analysis
Mandos Brief - Market Analysis

Rapid7 to Acquire CAASM Startup Noetic Cyber


OT Cybersecurity Market to Reach $21.6 Billion by 2028


Proton Launches Privacy-Focused Google Docs and Microsoft Word Alternative


Mandos Brief - Cybersecurity Tools
Mandos Brief - Cybersecurity Tools

ProcFilter

ProcFilter is a process filtering system for Windows with built-in YARA integration, designed for malware analysts to create YARA signatures for Windows environments.


VERIS Community Database

A comprehensive and unrestricted dataset of security incidents for research and decision-making


HoneyDB

HoneyDB is a honeypot-based threat intelligence platform that provides real-time insights into attacker behavior and malicious activity on networks.

Thank You

If you found this newsletter useful, I'd really appreciate if you could forward it to your friends and share your feedback below!

Have questions? Let me know in the comments or on LinkedIn and X.

Best, 
Nikoloz

Share This Post

Check out these related posts

Brief #61: Great CrowdStrike Meltdown, NSA AI security guide, dual-title CISOs, AppSec interviews

  • Nikoloz Kokhreidze
by Nikoloz Kokhreidze | | 9 min read

Brief #60: Blast-RADIUS Flaw, AI Disinformation Tool, CISO Lawsuits, Interview Tips

  • Nikoloz Kokhreidze
by Nikoloz Kokhreidze | | 9 min read

Brief #58: ChamelGang APT, P2Pinfect Malware, TeamViewer Breach, CISO Role Evolution

  • Nikoloz Kokhreidze
by Nikoloz Kokhreidze | | 9 min read