It’s 5:05, on Monday, December 12 , 2022. This is your daily update of open source and cybersecurity news.This is Pokie Huang, coming from the 5:05 offices in New York City. Stories for today come from Katy Craig in california gives highlights from Fiscal Year 2023, The National Defense Authorization Act, Edwin Kwan in Australia reporting on Australia's largest telecommunication suggers privacy breach, Olimpiu Pop in Romania on Kali Linux newest released.

We will start today with Mark Miller in New York city on why CVE and NVD do not work

Let’s get to it!

🇺🇸 Mark Miller, New York City

CVE / NVD doesn’t work

https://blog.crashoverride.com/cve-nvd-doesnt-work-for-open-source-and-supply-chain-security

🇺🇸 Katy Craig, San Diego, California

Highlights from the FY2023 NDAA Defense Budget

H.R.7900 - 117th Congress (2021-2022): National Defense Authorization Act for Fiscal Year 2023 

FY2023 NDAA k80cb.pdf

🇦🇺 Edwin Kwan, Sydney, Australia

Australia's Largest Telco Suffers Privacy Breach

https://www.reuters.com/technology/australias-telstra-suffers-privacy-breach-132000-customers-impacted-2022-12-11/

https://www.itnews.com.au/news/telstra-blames-privacy-breach-on-database-misalignment-588975

🇷🇴 Olimpiu Pop, Transylvania, Romania

Kali Linux 2022.4 released also in Azure Marketplace

https://www.kali.org/blog/kali-linux-2022-4-release/

https://www.kali.org/tools/bloodhound.py/

https://www.kali.org/tools/certipy-ad/

https://www.kali.org/tools/python-ldapdomaindump/

https://www.kali.org/tools/hak5-wifi-coconut/

https://www.kali.org/tools/peass-ng/

https://www.kali.org/tools/rizin-cutter/