The Mandos Brief gives you a quick, 3-minute rundown of the week's top cybersecurity updates. It's your go-to source for staying informed and cyber-aware, fast.
Week 18: Postman API network leaks thousands of live credentials, DHS releases guidelines to protect critical infrastructure from AI threats, cybersecurity leaders discuss overuse of "critical" and effective risk communication, and insights on the daily work of cybersecurity analysts.
Week 17: Palo Alto XDR exploited to deploy malware, researchers claim GPT-4 can autonomously exploit vulnerabilities, LinkedIn CISO shares leadership insights, top cybersecurity training courses and more.
Week 16: PuTTY vulnerability allows ECDSA key recovery, LLMs perform as well as humans in pentesting, securing mass layoffs with empathy, and top-paying cybersecurity skills.
Week 15: State-sponsored attackers exploit Palo Alto Networks zero-day, cybercrime group uses AI-generated scripts to load malware, CISOs face burnout, and the importance of mentorship.
Week 14: Severe HTTP/2 vulnerabilities enable DoS attacks, new Latrodectus malware emerges, and the US Cyber Safety Board reports on a preventable Microsoft Exchange breach.
Week 13: UK's NHS suffers ransomware attack, critical backdoor found in XZ Utils, and PyPI suspends new projects after malicious package uploads.
Week 12: Hackers win $1.13M at Pwn2Own, critical Apple M-chip vulnerability exposed, and 19 million plaintext passwords leaked from Firebase.
Week 11: ChatGPT plugin vulnerabilities exposed, Roku suffers a credential stuffing breach impacting 15,000, and Tor Project unveils WebTunnel.
Google AI trade secrets theft, Microsoft source code breach, Apple zero-days, QNAP vulnerabilities, RA World ransomware targeting healthcare and finance.
Get the CISO Lens: founder-led positioning audits, competitive benchmarks, and advisory for cybersecurity vendors who need CISOs to actually pay attention.
