Threatline

Happy 12th Birthday, KrebsOnSecurity.com!

KrebsOnSecurity.com celebrates its 12th anniversary today! Maybe "celebrate" is too indelicate a word for a year wracked by the global pandemics of COVID-19 and ransomware. Especially since stories about both have helped to grow the audience here tremendously in 2021. But this site's birthday also is a welcome opportunity to thank you all for your continued readership and support, which helps keep the content here free to everyone.

LastPass VPs confirm 'no indication' of compromised accounts after security alerts

LastPass VP Gabor Angyal said some of the security alerts that initially caused concern were "likely triggered in error."

Timekeeping biz Kronos hit by ransomware and warns customers to engage biz continuity plans

Updated

Is VPOTUS Bluetooth-phobic or sensible? The answer's pretty clear

In Brief

When disaster strikes, data recovery really is a race against time

Log4j RCE latest: In case you hadn't noticed, this is Really Very Bad, exploited in the wild, needs urgent patching

Updated

MPs charged with analysing Online Safety Bill say end-to-end encryption should be called out as 'specific risk factor'

Britain's Online Safety Bill is being enthusiastically endorsed in a "manifesto" issued today by MPs who were tasked with scrutinising its controversial contents.…

Popular password manager LastPass to be spun out from LogMeIn

One of the biggest beasts in the password management world, LastPass, is being spun out from parent LogMeIn as a "standalone cloud security" organisation.…

You may have cracked serverless development, but it’s almost certain you haven’t solved serverless security

Paid Post

Apache takes off, nukes insecure feature at the heart of Log4j from orbit with v2.16