Welcome
Welcome
Hello and Welcome!
Be sure to attend our monthly meetings. Lots of good information there. Register for our Thursday July 30th Virtual Meeting on our site ISC2CT.ORG
Also come Join our (ISC)2 Connecticut Chapter Discord Server
Have a Safe and Happy 4th of July!
Upcoming Events:
Antisyphon Anti-Cast Forensic Investigations: What AI and Analysts Get Wrong with Markus Schober | July 8th, 2026 | 12:00 pm – 1:00 pm EDT FREE Live Event Zoom How many forensic reports contain conclusions that the evidence doesn’t actually support? Join Markus Schober, founder of Blue Cape Security and former enterprise incident responder, demonstrates why both AI and human analysts draw incorrect conclusions from Windows forensic artifacts, and how proper correlation leads to more defensible investigations. You’ll learn to evaluate artifact confidence, avoid overclaiming findings, and correlate multiple evidence sources to answer the most critical questions in DFIR — what was executed, when, and how. If you’ve ever relied on single artifacts to support findings, this session will challenge how you think about evidence, strengthen your investigative tradecraft, and help you produce conclusions you can confidently defend.Registration
Antisyphon Anti-Cast: OSINT Magic Tricks Revealed with Mishaal Khan | July 22nd, 2026 Free Live Event Zoom What happens when you challenge a highly skilled ethical hacker to find something? You get a magic show! Join Mishaal Khan, ethical hacker and OSINT specialist, as he pulls back the curtain on open-source intelligence in a rapid-fire live demo that turns seemingly impossible searches into repeatable techniques. You’ll learn Mishaal’s process for finding timely, accurate information online — the same methodology that turns raw searches into actionable intelligence — and come away ready to launch your first investigation. Want to go deeper? Registration
SANS Cloud Security Exchange Summit 2026 | August 17-18th Online Virtual Free to Attend 12 CPEs The SANS Cloud Security Exchange Summit brings the world’s leading names in cloud and AI security experts together with top practitioners to share real-world insights, case studies, and hands-on technical training to help you build and maintain modern cloud environments, shaped by automation, artificial intelligence (AI), and scale. Designed for both seasoned practitioners and leaders—as well as those newer to cloud security—the Summit delivers practical guidance, forward-looking discussions, and opportunities to learn directly from peers shaping cloud security today.Agenda & Registration
Quinnipiac University is committed to helping advance the field of cybersecurity through its School of Computing & Engineering. To support the growth of professionals within cybersecurity and computing, Quinnipiac offers flexible online and on-campus opportunities that deliver practical skills you can immediately apply on the job. Both its MS in Cybersecurity and MS in Computer Science programs feature hands-on experience in lab settings that simulate real-world scenarios. To learn more about these exciting opportunities, Visit Quinnipiac University
Cyber News
CISA gives agencies new vulnerability remediation deadlines that take risk levels into account
The cybersecurity agency says it wants to help network defenders prioritize the fixes that matter the most.
Agentic AI: The Weapon That No Longer Needs a Warrior
Agentic AI is pushing offensive security beyond chatbots into autonomous recon, social engineering, exploit testing, and malware adaptation.
Trump AI Order Seeks Voluntary Frontier Model Testing
The White House's executive order establishes voluntary framework for early government access to frontier models while investing in federal security.
Software, AI companies form alliance to tackle open-source security flaws
A coalition of technology companies, including Anthropic, AWS, IBM and Microsoft, announced a joint effort to find, disclose and remediate security flaws in open-source software.
New unpatchable exploit targets Apple devices with A12 and A13 chips
Researchers at Paradigm Shift have published the technical details of usbliter8, a new unpatchable iPhone BootROM vulnerability.
AMD denies researcher a $10,000 bug bounty after fixing critical auto-updater vulnerability — security flaw took 124 days to patch
Quis renovatores renovat — who updates the updater?
OpenAI Expands Daybreak With GPT-5.5-Cyber to Help Defenders Patch Security Flaws
OpenAI is releasing GPT-5.5-Cyber, Codex Security updates, and Patch the Planet to help defenders validate and patch vulnerabilities.
SHA-1 Was Shattered
A couple of weeks ago I downloaded a copy of OBS, and my operating system yelled at me. Told me I shouldn't trust it. And it was right, I shouldn't have been trying to download from fastandrealobsfree.ru.
Ghost-Sender - Universal Email Spoofing against Exchange Online
TLDR: Want to know if you’re vulnerable? Together with this post we’re releasing https://ghost-sender.com/ — a tool that can be used to test your organization.
Miasma Blight Reaches Microsoft: 73 Repos Disabled in 105 Seconds
A terms of use violation triggered repos for Microsoft and Azure to go down for investigations - signs point to Miasma npm malware
Fake AI Agent Skill Passed Security Scans and Reportedly Reached 26,000 Agents
AIR says its fake AI skill passed scanner checks by using a mutable external link, exposing a blind spot in agent skill vetting.