Hacker NewsNov 13

Checkout.com hacked, refuses ransom payment, donates to security labs

https://www.checkout.com/blog/protecting-our-merchants-standing-up-to-extortion

#HackerNews #CheckoutHacked #RefusesRansom #CyberSecurity #Donations #SecurityLabs #ExtortionStandards

Protecting our Merchants: Standing up to Extortion

Our statement detailing an incident concerning a legacy system. We outline our commitment to transparency, accountability, and planned investment in cyber security research.

Andrew Krug | Democratizing SecurityNov 21, 2022

Happy to see this one remediated in #AWS. Just in time for #reInvent. If you're an AppSync customer check out this article to learn more about the impact of the vulnerability the #securitylabs team @[email protected] discovered.

https://loom.ly/_klA78A

A Confused Deputy Vulnerability in AWS AppSync | Datadog Security Labs

Public disclosure of a cross-account security vulnerability in AWS AppSync.

Andrew Krug | Democratizing SecurityNov 20, 2022
Kubernetes is everywhere! Did you miss our #securitylabs post by @[email protected] Security Advocate [email protected] @[email protected] ? An excellent recap of the inaugural event. https://loom.ly/QYQnPj4
KubeHuddle: The first Scottish Kubernetes conference | Datadog Security Labs

Missed Kubehuddle? Have a look at highlights from the Datadog Security Labs team.

Andrew Krug | Democratizing SecurityNov 20, 2022
Great time this week at #appsecusa by #owasp hearing from folx like @bubblewire about paved road and highways!
@[email protected] 's Ellen Wang released an open source tool called #GuardDog from #securitylabs that helps detect malicious python packages using #semgrep.