• Dec 29, 2022

    MasquerAds: a new Malvertising campaign via Google Ads

    A new cyber attack campaign called MasquerAds is targeting users who are searching for popular software by using Google Ads to serve malware-infected variants of the software. These malware-infected versions, which include Raccoon Stealer and Vidar, are being served through… read more »
  • Dec 27, 2022

    BlueNoroff APT group using new ways to bypass MotW protection

    The BlueNoroff subcluster of the Lazarus Group has adopted new techniques that allow it to bypass Windows’ Mark of the Web protections. MotW The Windows Mark of the Web (MotW) is a security feature that helps protect users from malicious… read more »
  • Dec 25, 2022

    Lastpass databreach: what is the actual risk?

    LastPass, a password management software used by over 33 million people and 100,000 businesses worldwide, has revealed that customer vault data was stolen after the company’s cloud storage was breached earlier this year. What happened? The attacker gained access to… read more »
  • Dec 24, 2022

    Open source tools for SOC: my own list

    A SOC, or Security Operations Center, is a centralized unit within an organization responsible for the detection, analysis, and response to cyber threats and vulnerabilities. It is typically responsible for managing and monitoring the security of an organization’s networks, systems,… read more »
  • Dec 19, 2022

    The Little Handbook of Online Privacy

    This book had a very long gestation. I started writing it at the end of 2019 and then, because of more important commitments, I decided to put it on hold and pick it up a few months later. In early… read more »
  • Dec 11, 2022

    Cyber Incident Response Plan: the Post Incident Review

    Cybersecurity is a critical issue in the modern world. As more and more of our personal and professional lives move online, the need for effective cybersecurity measures becomes increasingly important. One key aspect of maintaining strong cybersecurity posture is the… read more »
  • Dec 5, 2022

    Will blogs be written by AIs in the future?

    I tried to ask ChatGPT (an OpenAI project based on GPT 3.5) to explain if and why in the future all blogs will be written by artificial intelligences…here is the answer! In recent years, there has been a growing trend… read more »
  • Dec 1, 2022

    “Shine” is available on Spotify

    In the past months I have decided to move away for a while from the joyful and relaxing atmospheres that have characterized my musical production in recent years, and develop somewhat more crepuscular themes. “Shine” is a 4-track EP, designed… read more »