# SANS ISC

# threatpost.com

# Reddit netsec

# Krebs On Security

  • Note to Self: Create Non-Exhaustive List of Competitors Tue, 20 Apr 2021 21:46:52 +0000
    What was the best news you heard so far this month? Mine was learning that KrebsOnSecurity is listed as a restricted competitor by Gartner Inc. [NYSE:IT] -- a $4 billion technology goliath whose analyst reports can move markets and shape the IT industry.
  • Did Someone at the Commerce Dept. Find a SolarWinds Backdoor in Aug. 2020? Fri, 16 Apr 2021 12:57:19 +0000
    On Aug. 13, 2020, someone uploaded a suspected malicious file to VirusTotal, a service that scans submitted files against more than five dozen antivirus and security products. Last month, Microsoft and FireEye identified that file as a newly-discovered fourth malware backdoor used in the sprawling SolarWinds supply chain hack. An analysis of the malicious file and other submissions by the same VirusTotal user suggest the account that initially flagged the backdoor as suspicious belongs to IT personnel at the National Telecommunications and Information Administration (NTIA), a division of the U.S. Commerce Department that handles telecommunications and Internet policy.
  • Microsoft Patch Tuesday, April 2021 Edition Tue, 13 Apr 2021 23:12:19 +0000
    Microsoft today released updates to plug at least 110 security holes in its Windows operating systems and other products. The patches include four security fixes for Microsoft Exchange Server -- the same systems that have been besieged by attacks on four separate (and zero-day) bugs in the email software over the past month. Redmond also patched a Windows flaw that is actively being exploited in the wild.

# Bruce Schneier's blog

# TWITTER

?>

# WIRED Threat Level

# exploit-db.com

# Securiteam

?>