365 days of blogs

New year, new beginnings and all that.

This year I have set myself a challenge of writing a new blog post every day. They may be good, they may be bad, they may be interesting, they may not be, but it’s my challenge.

I’ve had this website for a while now, and not really done much with it, so that’s about to change. This page will be the holding page for each entry, so stay with me for a year – you might learn something – even if it’s just that I’m a sad cyber-nerd!

January

• (01-01-23) Blog 1 – NotPetya
• (02-01-23) Blog 2 – Passwords
• (03-01-23) Blog 3 – Stealing cars the cyber way
• (04-01-23) Blog 4 – Blocking ads and more with a Pi-hole
• (05-01-23) Blog 5 – Pi-hole, post install activities
• (06-01-23) Blog 6 – Blocking those pesky ads
• (07-01-23) Blog 7 – customising your pi-hole
• (08-01-23) Blog 8 – analysing your data
• (09-01-23) Blog 9 – Changing your view
• (10-01-23) Blog 10 – Enhancing the Pi-hole
• (11-01-23) Blog 11 – installing a VPN
• (12-01-23) Blog 12 – The usefulness of Artificial Intelligence
• (13-01-23) Blog 13 – What to do with that Alexa you got for xmas
• (14-01-23) Blog 14 – AI and deepfakes
• (15-01-23) Blog 15 – LockBit ransomware
• (16-01-23) Blog 16 – A no-hands wheelie down nostalgia avenue
• (17-01-23) Blog 17 – Heimdall WiFi Radar
• (18-01-23) Blog 18 – e-ink licence plates – a drunken idea made real?
• (19-01-23) Blog 19 – One
• (20-01-23) Blog 20 – Is TikTok really that evil?
• (21-01-23) Blog 21 – Download and be damned
• (22-01-23) Blog 22 – wHy dO My dNS QuEriEs lOOk oDd?
• (23-01-23) Blog 23 – VASTFlux malvertising operation taken down
• (24-01-23) Blog 24 – A cautionary tale of default settings
• (25-01-23) Blog 25 – Another cautionary tale
• (26-01-23) Blog 26 – You dirty RAT
• (27-01-23) Blog 27 – “You will never find a more wretched hive of scum and villainy”
• (28-01-23) Blog 28 – Who ya gonna call?
• (29-01-23) Blog 29 – “You will never find a more wretched hive of scum and villainy” – Pt 2
• (30-01-23) Blog 30 – “It’s an older code, sir, but it checks out.”
• (31-01-23) Blog 31 – JD sports hit with cyber attack

February

• (01-02-23) Blog 32 – DRAGONBRIDGE- One of Googles’ biggest headaches
• (02-02-23) Blog 33 – Sandworm poke their heads back out
• (03-02-23) Blog 34 – $30 Web injects for sale
• (04-02-23) Blog 35 – Watch your back Google – There’s a new kid in town called The New Bing!
• (05-02-23) Blog 36 – Pizza please, No Pineapple!
• (06-02-23) Blog 37 – Charlie Hebdo hacked
• (07-02-23) Blog 38 – Car dealers targeted in ransomware attacks
• (08-02-23) Blog 39 – Finnish hacker arrested in France
• (09-02-23) Blog 40 – The bard of Mountain View
• (10-02-23) Blog 41 – Open season on VMWare servers
• (11-02-23) Blog 42 – Healthcare & Finance companies attacked by Gootkit
• (12-02-23) Blog 43 – Crypto job hunting? Be careful in your searches
• (13-02-23) Blog 44 – The Not-so Magnificent Seven
• (14-02-23) Blog 45 – Prilex malware blocks NFC payments
• (15-02-23) Blog 46 – GDPR used as a threat
• (16-02-23) Blog 47 – Evil Corp – An Exposé
• (17-02-23) Blog 48 – OT:ICEFALL – a bad day for OT manufacturers
• (18-02-23) Blog 49a – Mirai – the botnet that just wont die
• (18-02-23) Blog 49b – GoDaddy multi-year breach
• (19-02-23) Blog 50 – RCE – What is it? and why is it dangerous?
• (20-02-23) Blog 51 – Record breaking HTTP DDoS attack seen
• (21-02-23) Blog 52 – CB3ROB – The ex-NATO nuclear bunker at the heart of the dark web & organised crime
• (22-02-23) Blog 53 – KillNet – Pro-Russian hackers causing chaos across the globe
• (23-02-23) Blog 54 – LockBit back again
• (24-02-23) Blog 55 – MyloBot – 50K devices infected daily
• (25-02-23) Blog 56 – Your voice is your password vulnerability
• (26-02-23) Blog 57 – Gmailc2 – An undetectable c2 server
• (27-02-23) Blog 58 – Lazarus group – an Exposé
• (28-02-23) Blog 59 – Good guy turned bad

March

• (01-03-23) Blog 60 – Exfiltrator-22, coming to a network near you…
• (02-03-23) Blog 61 – NewsCorp network infiltrated for years
• (03-03-23) Blog 62 – WHSmith hit with cyber attack
• (04-03-23) Blog 63 – LockBit just wont quit
• (05-03-23) Blog 64 – And the ransomware attacks keep on coming…
• (06-03-23) Blog 65 – The Dark web – what is it exactly? Pt1
• (07-03-23) Blog 66 – The Dark web – what is it exactly? Pt2
• (08-03-23) Blog 67 – The Dark web – what is it exactly? Pt3
• (09-03-23) Blog 68 – The Dark web – what is it exactly? Pt4
• (10-03-23) Blog 69 – Stealerium – an overview
• (11-03-23) Blog 70 – Password Managers, what are they & should you use one?
• (12-03-23) Blog 71 – NetWire admin tool exposed as malware
• (13-03-23) Blog 72 – In cyberspace, no one can hear you scream
• (14-03-23) Blog 73 – MoaR Ransomware attacks
• (15-03-23) Blog 74 – Ransomware gang sinks to a new low
• (16-03-23) Blog 75 – DNS – it’s always DNS…
• (17-03-23) Blog 76 – Got a Samsung device? oh dear…
• (18-03-23) Blog 77 – Meta develops new Cyber Kill Chain
• (19-03-23) Blog 78 – Ransomware – the Internets’ biggest threat
• (20-03-23) Blog 79 – BreachForums admin arrested – site down
• (21-03-23) Blog 80 – Ransomware attacks too much faff? Go straight for extortion instead
• (22-03-23) Blog 81 – Protecting your online activity – Pt1
• (23-03-23) Blog 82 – Protecting your online activity – Pt2
• (24-03-23) Blog 83 – Protecting your online activity – Pt3
• (25-03-23) Blog 84 – Protecting your online activity – Pt4
• (26-03-23) Blog 85 – Protecting your online activity – Pt5
• (27-03-23) Blog 86 – Protecting your online activity – Pt6
• (28-03-23) Blog 87 – Protecting your online activity – Pt7
• (29-03-23) Blog 88 – Protecting your online activity – Pt8
• (30-03-23) Blog 89 – Protecting your online activity – Pt9
• (31-03-23) Blog 90 – Wi-Fi Vulnerability discovered

April

• (01/04/23) Blog 91 – The Vulkan files – Russia’s own Snowden incident
• (02/04/23) Blog 92 – 3k bot-net rental targets Android devices
• (03/04/23) Blog 93 – Riding the ransomware wave
• (04/04/23) Blog 94 – SIM swapping – What is it, and should you be concerned?
• (05/04/23) Blog 95 – Op Cookie Monster takes down initial access brokerage site
• (06/04/23) Blog 96 – OP Cookie Monster – updates
• (07/04/23) Blog 97 – Happy Easter!
• (08/04/23) Blog 98 – Happy Easter!
• (09/04/23) Blog 99 – Happy Easter!
• (10/04/23) Blog 100 – Can you steal a car? – Yes you CANbus
• (11/04/23) Blog 101 – Domo arigato misuta Robotto
• (12/04/23) Blog 102 – Somebody really wants to know what the blend of 11 herbs & spices is
• (13/04/23) Blog 103 – Kodi forum breached – 400K+ accounts compromised
• (14/04/23) Blog 104 – We all hate a Queue Jumper right?
• (15/04/23) Blog 105 – Cozy bear targets NATO – No surprises there then!
• (16/04/23) Blog 106 – RaidForums – an Exposé
• (17/04/23) Blog 107 – Malware, a reference guide
• (18/04/23) Blog 108 – LockBit gang targeting MacOS
• (19/04/23) Blog 109 – Get prepared, Spandex Tempest is out to get you!
• (20/04/23) Blog 110 – ACRO offline, criminal records bureau hit by cyber attack
• (21/04/23) Blog 111 – Capita breach – Customer data may have been affected
• (22/04/23) Blog 112 – OSINT pt1
• (23/04/23) Blog 113 – OSINT pt2
• (24/04/23) Blog 114 – OSINT pt3
• (25/04/23) Blog 115 – Holidays are coming!
• (26/04/23) Blog 116 – Sigh – LockBit – again!
• (27/04/23) Blog 117 – LockBit make a 2nd apology
• (28/04/23) Blog 118 – Google helping make the Internet a safer place
• (29/04/23) Blog 119 – It’s hotting up in the states
• (30/04/23) Blog 120 – UK gun owners cautioned after cyber-attack

May

• (01/05/23) Blog 121 – Time’s up for Western Digital
• (02/05/23) Blog 122 – 2nd Cyber attack confirmation of 2023 for T-Mobile
• (03/05/23) Blog 123 – It was 30 years ago today…
• (04/05/23) Blog 124 – Google banish passwords to history books
• (05/05/23) Blog 125 – Sandworm uses WinRAR – bet they didn’t buy it!
• (06/05/23) Blog 126 – The royal connection to Cyber Security
• (07/05/23) Blog 127 – New BGP vulnerabilities discovered
• (08/05/23) Blog 128 – A trip down the Information superhighway!
• (09/05/23) Blog 129 – In Space, no-one can hear you Pwn…
• (10/05/23) Blog 130 – 2nd U.S. food distributor hit in cyber attack
• (11/05/23) Blog 131 – Capita breach – update on events
• (12/05/23) Blog 132 – Strava users hidden locations revealed
• (13/05/23) Blog 133 – Capita update – biggest data breach in UK history
• (14/05/23) Blog 134 – .zip TLD just made the Internet a much less safe place
• (15/05/23) Blog 135 – Op Venetic keeps on giving
• (16/05/23) Blog 136 – Capita update – It just gets worse
• (17/05/23) Blog 137 – RA GROUP steals 2.5Tb of data
• (18/05/23) Blog 138 – Apple helping make the Internet a safer place
• (19/05/23) Blog 139 – KeePass exploit recovers master password
• (20/05/23) Blog 140 – The State of Ransomware
• (21/05/23) Blog 141 – Did dish pay the ransom?
• (22/05/23) Blog 142 – Captia have a new cyber issue
• (23/05/23) Blog 143 – Say goodbye to the padlock
• (24/05/23) Blog 144 – DDoS attack still a force to be reckoned with
• (25/05/23) Blog 145 – Vulnerability discovered in oAuth module
• (26/05/23) Blog 146 – SAS (no not that one) hit by ransomware attack
• (27/05/23) Blog 147 – CosmicEnergy malware targeting OT systems
• (28/05/23) Blog 148 – Dodgy Domain Decline
• (29/05/23) Blog 149 – .zip domains already being used for phishing
• (30/05/23) Blog 150 – Capita update – many thousands affected over data breach
• (31/05/23) Blog 151 – A cautionary tale of default credentials

June

• (01/06/23) Blog 152 – Does using a Mac give you a migraine?
• (02/06/23) Blog 153 – Firmware backdoor on Gigabyte motherboards
• (03/06/23) Blog 154 – Ransomware – where did it all begin?
• (04/06/23) Blog 155 – A brief(ish) history of malware
• (05/06/23) Blog 156 – BlackBasta targets Swiss firm ABB
• (06/06/23) Blog 157 – RaidForums user list posted online
• (07/06/23) Blog 158 – LockBit claim another scalp
• (08/06/23) Blog 159 – BlackByte claim the city of Augusta as latest hit
• (09/06/23) Blog 160 – Clop like to MOVEit MOVEit
• (10/06/23) Blog 161 – Lazarus grab USD$35M in crypto heist
• (11/06/23) Blog 162 – Lockbit ramp up their activity
• (12/06/23) Blog 163 – aggregation of data proves “anonymity” functions near-useless
• (13/06/23) Blog 164 – bulletproof host operator sentenced to 3 years behind bars
• (14/06/23) Blog 165 – Operation “Power Off” targets online DDoS services
• (15/06/23) Blog 166 – New kid on the block – Cadet Blizzard
• (16/06/23) Blog 167 – 3rd LockBit Affiliate charged in US
• (17/06/23) Blog 168 – Polish police arrest admins as part of Operation “Power Off”
• (18/06/23) Blog 169 – LockBit Ransomware – Cyber Advisory
• (19/06/23) Blog 170 – Cl0P Ransomware – Cyber Advisory
• (20/06/23) Blog 171 – Mystic Stealer coming to a device near you soon
• (21/06/23) Blog 172 – Reddit threatened with data leak if ransom not paid
• (22/06/23) Blog 173 – RDStealer uses RDP to infect remote victims
• (23/06/23) Blog 174 – Manchester University hit with cyber attack
• (24/06/23) Blog 175 – breached.vc seized by FBI
• (25/06/23) Blog 176 – Hey, remember me? It’s Mirai – I’m back…
• (26/06/23) Blog 177 – Google identify 10 vulnerabilities in Intel TDX
• (27/06/23) Blog 178 – Cl0p list of victims growing by the day
• (28/06/23) Blog 179 – Op Venetic – update on statistics
• (29/06/23) Blog 180 – Wagner ransomware targets Russian PCs
• (30/06/23) Blog 181 – 8Base ransomware group rising through the ranks

July

• (01/07/23) Blog 182 – NHS data compromised in Manchester Uni attack
• (02/07/23) Blog 183 – NHS trust breached by AlphaV
• (03/07/23) Blog 184 – TSMC hit with eye-watering ransom demand
• (04/07/23) Blog 185 – New malware targeting Spanish bank account holders
• (05/07/23) Blog 186 – Akira ransomware decryptor released
• (06/07/23) Blog 187 – New laws for connected devices
• (07/07/23) Blog 188 – NCSC release the 6th annual “Active Cyber Defence” Report
• (08/07/23) Blog 189 – UWS hit with cyber attack
• (09/07/23) Blog 190 – Ukraine war has changed the cyber threat landscape
• (10/07/23) Blog 191 – Analysing attacks on financial services
• (11/07/23) Blog 192 – Revolut hackers steal $20 Million
• (12/07/23) Blog 193 – Strava running route data suspected in Russian murder
• (13/07/23) Blog 194 – Anonymous Sudan claim Reddit, AO3 and other scalps
• (14/07/23) Blog 195 – Cosy Bear targets Ukrainian diplomats with fake BMW advert
• (15/07/23) Blog 196 – Pompompurin enters guilty plea for hacking & child pornography
• (16/07/23) Blog 197 – Teenage hacker identified as being behind Uber and Rockstar attacks
• (17/07/23) Blog 198 – Russian state TV hacked – ‘Payback time’ message displayed
• (18/07/23) Blog 199 – SiegedSec – Gay Furry hackers on global hacking spree
• (19/07/23) Blog 200 – Twitter hacker from UK sentenced to five years behind bars
• (20/07/23) Blog 201 – Silk Road advisor sentenced to 20 years behind bars
• (21/07/23) Blog 202 – Kevin Mitnick (06/08/63 – 16/07/23)
• (22/07/23) Blog 203 – Hacker infects own PC – sells access to it by mistake
• (23/07/23) Blog 204 – US launches ‘Cyber Trust Mark’ for IoT devices
• (24/07/23) Blog 205 – Cyber Insurance ruling in Germany set to cause reassessment of policies
• (25/07/23) Blog 206 – MOVEit / Cl0p update
• (26/07/23) Blog 207 – WormGPT – hacking in an AI world
• (27/07/23) Blog 208 – Breached forums database now searchable
• (28/07/23) Blog 209 – Cyber attack affecting UK ambulance trusts
• (29/07/23) Blog 210 – Yamaha hit by cyber attack
• (30/07/23) Blog 211 – Israeli oil refinery targeted by Pro-Palestine hackers
• (31/07/23) Blog 212 – New Android malware retrieves credentials from images

August

• (01/08/23) Blog 213 – Hackers target Minecraft servers and users via mod vulnerability
• (02/08/23) Blog 214 – Google AMP pages used in phishing URLs
• (03/08/23) Blog 215 – Tempur-Sealy mattress company hit by ALPHAV
• (04/08/23) Blog 216 – “We didn’t pay a ransom, we reached a settlement”
• (05/08/23) Blog 217 – 2022 Top routinely exploited vulnerabilities
• (06/08/23) Blog 218 – Op Venetic – another update
• (07/08/23) Blog 219 – New privacy tools from Google
• (08/08/23) Blog 220 – US Hospital network forced offline after cyber attack
• (09/08/23) Blog 221 – Acoustic side channel attack on keyboards
• (10/08/23) Blog 222 – Bulletproof hosting not so bulletproof after all
• (11/08/23) Blog 223 – Tesla:”Want those heated seats, it’s gonna cost” Hackers: “Hold my beer”
• (12/08/23) Blog 224 – Ford discloses software vulnerability in the SYNC3 infotainment system
• (13/08/23) Blog 225 – Checkmate – Knight ransomware posing as TripAdvisor complaint
• (14/08/23) Blog 226 – The future of (no) passwords
• (15/08/23) Blog 227 – Welcome Veilid – the new, open-source app framework from one of the original hacking groups
• (16/08/23) Blog 228 – Arion Kurtaj faces court proceedings
• (17/08/23) Blog 229 – 1,000’s of Citrix Netscaler servers hacked
• (18/08/23) Blog 230 – QR codes used in phishing attack to bypass email security scanners
• (19/08/23) Blog 231 – Africa Cyber Surge II – Return of Interpol
• (20/08/23) Blog 232 – Anonfiles closes, hackers lose data
• (21/08/23) Blog 233 – Thai cyber police seize ฿1.5 Billion
• (22/08/23) Blog 234 – Global software supplier to energy companies hit with cyber attack
• (23/08/23) Blog 235 – Spectre, Meltdown, now Downfall plagues Intel
• (24/08/23) Blog 236 – Jury finds Arion Kurtaj guilty of hacking
• (25/08/23) Blog 237 – Gone, it’s all gone!
• (26/08/23) Blog 238 – St Helens council hit with cyber attack
• (27/08/23) Blog 239 – French government job agency in data breach
• (28/08/23) Blog 240 – Polish rail network hacked
• (29/08/23) Blog 241 – Duolingo data scraped – 2.6m accounts harvested
• (30/08/23) Blog 242 – Multiple threat actors using Lockbit 3.0 code base
• (31/08/23) Blog 243 – Qakbot botnet dismantled by FBI

September

• (01/09/23) Blog 244 – Space – The new frontier for cyber attacks?
• (02/09/23) Blog 245 – Lockbit back from holiday – post a host of new victims
• (03/09/23) Blog 246 – Infamous Chisel – Sandworm tools used to target Ukrainian military
• (04/09/23) Blog 247 – Security fencing supplier hacked by Lockbit
• (05/09/23) Blog 248 – Lidl remove children’s snack, but not for the reason you’d expect…
• (06/09/23) Blog 249 – Crypto-gambling site Stake hacked – $40M stolen
• (07/09/23) Blog 250 – Freecycle.org breached – user data stolen
• (08/09/23) Blog 251 – Electoral Commission failed cyber essentials
• (09/09/23) Blog 252 – Your car knows about your sex-life (and much more)
• (10/09/23) Blog 253 – Conti & TrickBot members sanctioned
• (11/09/23) Blog 254 – Ransomware – an in depth view of the Internets’ biggest problem
• (12/09/23) Blog 255 – MGM International targeted in cyber attack
• (13/09/23) Blog 256 – A hard lesson in cyber security
• (14/09/23) Blog 257 – ‘Football Leaks’ hacker/whistle-blower given 4-year sentence
• (15/09/23) Blog 258 – ‘Scattered Spider’ suspected as MGM attackers
• (16/09/23) Blog 259 – Lockbit change their terms for affiliates
• (17/09/23) Blog 260 – Lazarus group earns nearly $240M in stolen crypto in 3 months
• (18/09/23) Blog 261 – ICO & NCSC to help companies lessen the impact of data breach fines
• (19/09/23) Blog 262 – UK achieves 7th place in MIT global Cyber Defense Index
• (20/09/23) Blog 263 – International Criminal Court hacked
• (21/09/23) Blog 264 – New Linux backdoor malware identified
• (22/09/23) Blog 265 – Microsoft researchers accidentally expose 38TB of data
• (23/09/23) Blog 266 – It’s a Hacker-eats-hacker world out there…
• (24/09/23) Blog 267 – Russian hackers target Bermuda Government
• (25/09/23) Blog 268 – Phishing, SMShing, Vishing, now Quishing
• (26/09/23) Blog 269 – Yet another crypto exchange gets hacked
• (27/09/23) Blog 270 – The devastating effect of ransomware
• (28/09/23) Blog 271 – New hacking team claim 1st big scalp
• (29/09/23) Blog 272 – Joint security advisory warns of Chinese router backdoor activity
• (30/09/23) Blog 273 – New Internet proposal to end web snooping

October

• (01/10/23) Blog 274 – We want you!
• (02/10/23) Blog 275 – Operation DreamJob targets victims via LinkedIn
• (03/10/23) Blog 276 – BunnyLoader – new malware spreading faster than rabbits
• (04/10/23) Blog 277 – LockBit exfil infrastructure exposed
• (05/10/23) Blog 278 – Hacktivist rules of engagement released
• (06/10/23) Blog 279 – Looney Tunables – that’s all folks!
• (07/10/23) Blog 280 – Mobile provider Lyca MobileUK hit with cyber attack
• (08/10/23) Blog 281 – ShinyHunters hacker pleads guilty to wire fraud & identity theft
• (09/10/23) Blog 282 – Fancy earning yourself $12k? Easy – just crack elliptic curve…
• (10/10/23) Blog 283 – Boots on the ground – coders in the cloud
• (11/10/23) Blog 284 – Microsoft Digital Defence report shows we are not learning from mistakes
• (12/10/23) Blog 285 – Google Passkeys now the default option
• (13/10/23) Blog 286 – Supply chain attacks – what are they? and why do they matter?
• (14/10/23) Blog 287 – Encryption – a short guide (pt1)
• (15/10/23) Blog 288 – Encryption – a short guide (pt2)
• (16/10/23) Blog 289 – Encryption – a short guide (pt3)
• (17/10/23) Blog 290 – Encryption – a short guide (pt4)
• (18/10/23) Blog 291 – Encryption – a short guide (pt5)
• (19/10/23) Blog 292 – Trigona ransomware gang hacked by Ukrainian Cyber Alliance
• (20/10/23) Blog 293 – WinRAR vulnerability used by state-backed threat actors
• (21/10/23) Blog 294 – Ragnar_Locker taken down by law agencies across the world
• (22/10/23) Blog 295 – PassKey usage starting to increase
• (23/10/23) Blog 296 – 50k + Cisco devices hacked with 0-day
• (24/10/23) Blog 297 – Identity & access experts Okta attacked with compromised identity
• (25/10/23) Blog 298 – Spanish cybercrime gang busted
• (26/10/23) Blog 299 – Pwn2Own Toronto hands out $800K in prizes in 1st two days
• (27/10/23) Blog 300 – iPhone privacy feature failed to provide privacy for 3 years
• (28/10/23) Blog 301 – Ransomware gangs turn to Violence-as-a-Service
• (29/10/23) Blog 302 – Lockbit claim Boeing scalp
• (30/10/23) Blog 303 – Winter Vivern exploiting RoundCube email vulnerability
• (31/10/23) Blog 304 – British Library hit with Cyber Attack

November

• (01/11/23) Blog 305 – Cyber partnership agrees to not pay any ransoms
• (02/11/23) Blog 306 – Cyber security workforce study reveals difficult landscape
• (03/11/23) Blog 307 – Common Vulnerability Scoring System Version 4.0 released
• (04/11/23) Blog 308 – LockBit remove Boeing, add Shimano
• (05/11/23) Blog 309 – Vulnerability in MS Exchange allows for remote code execution
• (06/11/23) Blog 310 – AIT fraud, what is it?, and why is it a problem?
• (07/11/23) Blog 311 – Looney Tunables – that’s not all folks
• (08/11/23) Blog 312 – LockBit announce the imminent release of Boeing data
• (09/11/23) Blog 313 – Defending UK Critical National Infrastructure – a part we all have to play
• (10/11/23) Blog 314 – Worlds largest bank hit by (probably) LockBit
• (11/11/23) Blog 315 – DP world Australia paralysed due to cyber attack
• (12/11/23) Blog 316 – Floortex UK hit by LockBit
• (13/11/23) Blog 317 – Phishing service shutdown by Royal Malaysian police
• (14/11/23) Blog 318 – DP World: Australia back online, but attack not over
• (15/11/23) Blog 319 – NCSC 7th annual review released
• (16/11/23) Blog 320 – Denmark hit with largest cyber attack on record
• (17/11/23) Blog 321 – Samsung UK data breach
• (18/11/23) Blog 322 – Israeli hacker sentenced to 80 months for global hacking campaign
• (19/11/23) Blog 323 – ALPHAV tattle-tale
• (20/11/23) Blog 324 – LockBit compromise Sabena Engineering
• (21/11/23) Blog 325 – Rhysida gang behind British Library attack
• (22/11/23) Blog 326 – Another UK haulage firm hit with ransomware
• (23/11/23) Blog 327 – RFC 9424 – An NCSC first
• (24/11/23) Blog 328 – Cyber assistance for small businesses
• (25/11/23) Blog 329 – UK law firms hit with supply chain attack
• (26/11/23) Blog 330 – ClearFake campaign targets Windows and Mac users
• (27/11/23) Blog 331 – NCSC release guidance for secure AI development
• (28/11/23) Blog 332 – Slovenia’s largest power supplier in ransomware attack
• (29/11/23) Blog 333 – Ransomware gang members arrested in Ukraine
• (30/11/23) Blog 334 – US seizes crypto-mixer used by North Korea and others to process stolen cryptocurrencies

December

• (01/12/23) Blog 335 – Microsoft warns of new ransomware campaign
• (02/12/23) Blog 336 – A new take on SIM swapping
• (03/12/23) Blog 337 – AlphaV enter new world of triple extortion
• (04/12/23) Blog 338 – Hotels hacked to gain access to booking.com API
• (05/12/23) Blog 339 – NCSC launches Cyber Incident Exercising scheme
• (06/12/23) Blog 340 – Google invests millions in European cyber security training
• (07/12/23) Blog 341 – LogoFail firmware attack has capability to affect every PC on planet
• (08/12/23) Blog 342 – 23andMe breach
• (09/12/23) Blog 343 – UK calls out Russia for election interference
• (10/12/23) Blog 344 – New vulnerability SLAMs Intel, AMD, and Arm CPUs,
• (11/12/23) Blog 345 – 5Ghoul – new attacks against 5G devices discovered
• (12/12/23) Blog 346 – “Kelvin Security” hacking group leader arrested in Spanish raid
• (13/12/23) Blog 347 – China prepositioning US access in case of Taiwan escalations
• (14/12/23) Blog 348 – Europes 2nd largest semiconductor manufacturer compromised for over 2 years
• (15/12/23) Blog 349 – Joint security advisory released for JetBrains TeamCity CVE – targeted by Fancy Bear
• (16/12/23) Blog 350 – Hackers find new way to abuse GoogleAds
• (17/12/23) Blog 351 – Sandman APT deploy Lua-based malware
• (18/12/23) Blog 352 – MongoDB breached – Customer data compromised
• (19/12/23) Blog 353 – Rhysida leak 1.7Tb of data from Insomniac games
• (20/12/23) Blog 354 – FBI disrupt AlphaV operations – but for how long?
• (21/12/23) Blog 355 – The Tallinn Mechanism for Cyber Security
• (22/12/23) Blog 356 – GTA VI – Lapsus$ hacker sentenced
• (23/12/23) Blog 357 – WP.29 – Making vehicles safer
• (24/12/23) Blog 358 – Possible LockBit & AlphaV cabal?
• (25/12/23) Blog 359 – Wall of Flippers – detects and blocks Bluetooth spam attacks
• (26/12/23) Blog 360 – Outlook notification sounds can lead to system compromise
• (27/12/23) Blog 361 – Europes largest parking company compromised
• (28/12/23) Blog 362 – EU member states reach common position on “Cyber Solidarity Act”
• (29/12/23) Blog 363 – NASA launches space industry cyber security guide
• (30/12/23) Blog 364 – German Hospitals ransomed by chancer
• (31/12/23) Blog 365 – The end of the year – the end of my challenge