Episode #14 - It's 5:05, Thursday, November 17, 2022

It’s 5:05, on Thursday, November 17th, 2022, the 321st day of the year. This is your daily update of open source and cybersecurity news. We have 20 reporters calling in from around the world. Today’s reports come from Tracy Bannon in Camp Hill Pennsylvania, Olimpiu Pop in Transylvania Romania, Edwin Kwan in Sydney Australia, and Mark Miller in New York City.   Let’s get to it!

🇷🇴 Olimpiu Pop, Transylvania, Romania

EU Parliament adopts new cybersecurity directive

Bart Groothuis: https://www.europarl.europa.eu/meps/en/197780/BART_GROOTHUIS/home

Renew: https://www.reneweuropegroup.eu/

European Network and Security Agency: https://www.enisa.europa.eu/topics/cybersecurity-policy/nis-directive-new

Executive Order on Improving the Nation’s Cybersecurity: https://www.whitehouse.gov/briefing-room/presidential-actions/2021/05/12/executive-order-on-improving-the-nations-cybersecurity/

Fighting Cyber Crime: https://www.europarl.europa.eu/news/en/headlines/security/20221103STO48002/fighting-cybercrime-new-eu-cybersecurity-laws-explained

🇦🇺 Edwin Kwan, Sydney, Australia

Mastodon users vulnerable to password-stealing attacks

https://portswigger.net/daily-swig/mastodon-users-vulnerable-to-password-stealing-attacks

https://portswigger.net/research/stealing-passwords-from-infosec-mastodon-without-bypassing-csp

🇺🇸 Mark Miller, New York City

NSA in the Wild

“'No guns, no guards, no gates”: https://www.cyberscoop.com/nsa-threat-sharing-unclassified-ccc/

Suzanne Smalley: https://www.cyberscoop.com/author/ssmalley/

CyberScoop: https://www.cyberscoop.com/

🇺🇸 Tracy Bannon, Camp Hill, Pennsylvania 

Securing DevOps: Don’t reinvent the wheel!!

Link to article: https://devops.com/5-tips-for-securing-devops-what-you-wish-you-knew-sooner/

List of resource links:

https://csrc.nist.gov/Projects/ssdf