Infosec Reading List - September 2022

On a monthly basis I will publish my reading recommendations which mainly focus on Information Security (InfoSec) and Outdoor Sports. All InfoSec Reading Lists can be found here. Text in italic represent quotes from the original article.

Quotes from the Twitterverse

N/A

InfoSec

• As Ex-Uber Executive Heads to Trial, the Security Community Reels - “The U.S. v. Sullivan trial starts in September, but the key lesson here is one that almost every CISO has experienced firsthand: when faced with a lose-lose decision, do the right thing (or at least the lawful one).” - [link]
• Revolut security breach: data of +50,000 users exposed - [link]
• The Reporting Line of Security Teams / CISOs - Updated - [link]
• LockBit ransomware gang gets aggressive with triple-extortion tactic - “I am looking for dudosers [DDoSers] in the team, most likely now we will attack targets and provide triple extortion, encryption + date leak + dudos, because I have felt the power of dudos and how it invigorates and makes life more interesting,” LockBitSupp wrote in a post on a hacker forum. - [link]
• Ex-Twitter exec blows the whistle, alleging reckless and negligent cybersecurity policies - [link]
• The Search for Dirt on the Twitter Whistle-Blower - [link]
• Uber hacked, internal systems breached and vulnerability reports stolen - [link]

Outdoor

• The Long Crossing of Norway’s Lofoten Islands - this goes to my [todo] list - [link]
• The super-rich ‘preppers’ planning to save themselves from the apocalypse - [link]