Internet Discoveries between 18 May and 25 May

  • Should I block ICMP?
  • Have I Been Pwned 2.0 is Now Live!
  • KrebsOnSecurity Hit With Near-Record 6.3 Tbps DDoS
  • Securing CI/CD workflows with Wazuh
  • ASD releases joint advice on AI data security

Interesting details

Should I block ICMP? - Many network administrators feel that ICMP is a security risk, and should therefore always be blocked at the firewall. It is true that ICMP does have some security issues associated with it, and that a lot of ICMP should be blocked. But this is no reason to block all ICMP traffic!

Have I Been Pwned 2.0 is Now Live! - This has been a very long time coming, but finally, after a marathon effort, the brand new Have I Been Pwned website is now live! Feb last year is when I made the first commit to the public repo for the rebranded service, and we soft-launched the new brand in March of this year.

KrebsOnSecurity Hit With Near-Record 6.3 Tbps DDoS - KrebsOnSecurity last week was hit by a near record distributed denial-of-service (DDoS) attack that clocked in at more than 6.3 terabits of data per second (a terabit is one trillion bits of data).

Securing CI/CD workflows with Wazuh - Continuous Integration and Continuous Delivery/Deployment (CI/CD) refers to practices that automate how code is developed and released to different environments.

ASD releases joint advice on AI data security - “Neglecting these practices can lead to data corruption, compromised models, data leaks, and non-compliance, emphasising the critical importance of robust data security at every phase,” noted the CIS.

All this was saved to my GetPocket over the week