infossl – Page 54 – SSL and internet security news

FBI (and Others) Shut Down Genesis Market

April 5, 2023 infossl

botnets, credentials, cybercrime, fbi, law enforcement, Security technology, Uncategorized

Genesis Market is shut down: Active since 2018, Genesis Market’s slogan was, “Our store sells bots with logs, cookies, and their real fingerprints.” Customers could search for infected systems with a variety of options, including by Internet address or by specific domain names associated with stolen credentials. But earlier today, multiple domains associated with Genesis … Read More “FBI (and Others) Shut Down Genesis Market” »

North Korea Hacking Cryptocurrency Sites with 3CX Exploit

April 4, 2023 infossl

cryptocurrency, cybersecurity, hacking, malware, North Korea, Security technology, supply chain, Uncategorized, vulnerabilities

News: Researchers at Russian cybersecurity firm Kaspersky today revealed that they identified a small number of cryptocurrency-focused firms as at least some of the victims of the 3CX software supply-chain attack that’s unfolded over the past week. Kaspersky declined to name any of those victim companies, but it notes that they’re based in “western Asia.” … Read More “North Korea Hacking Cryptocurrency Sites with 3CX Exploit” »

UK Runs Fake DDoS-for-Hire Sites

April 3, 2023 infossl

cybercrime, denial of service, Security technology, uk, Uncategorized

Brian Krebs is reporting that the UK’s National Crime Agency is setting up fake DDoS-for-hire sites as part of a sting operation: The NCA says all of its fake so-called “booter” or “stresser” sites - which have so far been accessed by several thousand people—have been created to look like they offer the tools and … Read More “UK Runs Fake DDoS-for-Hire Sites” »

Friday Squid Blogging: Giant Squid vs. Blue Marlin

March 31, 2023 infossl

Security technology, squid, Uncategorized

Epic matchup. As usual, you can also use this squid post to talk about the security stories in the news that I haven’t covered. Read my blog posting guidelines here. Powered by WPeMatico

Russian Cyberwarfare Documents Leaked

March 31, 2023 infossl

cyberespionage, cyberwar, espionage, hacking, leaks, russia, Security technology, Uncategorized, whistleblowers

Now this is interesting: Thousands of pages of secret documents reveal how Vulkan’s engineers have worked for Russian military and intelligence agencies to support hacking operations, train operatives before attacks on national infrastructure, spread disinformation and control sections of the internet. The company’s work is linked to the federal security service or FSB, the domestic … Read More “Russian Cyberwarfare Documents Leaked” »

The Security Vulnerabilities of Message Interoperability

March 29, 2023 infossl

academic papers, authentication, economics of security, privacy, psychology of security, Security technology, Uncategorized

Jenny Blessing and Ross Anderson have evaluated the security of systems designed to allow the various Internet messaging platforms to interoperate with each other: The Digital Markets Act ruled that users on different platforms should be able to exchange messages with each other. This opens up a real Pandora’s box. How will the networks manage … Read More “The Security Vulnerabilities of Message Interoperability” »

Security Vulnerabilities in Snipping Tools

March 28, 2023 infossl

cybersecurity, privacy, Security technology, Uncategorized, vulnerabilities

Both Google’s Pixel’s Markup Tool and the Windows Snipping Tool have vulnerabilities that allow people to partially recover content that was edited out of images. Powered by WPeMatico

Hacks at Pwn2Own Vancouver 2023

March 27, 2023 infossl

adobe, cars, hacking, Security technology, Uncategorized, windows, zero-day

An impressive array of hacks were demonstrated at the first day of the Pwn2Own conference in Vancouver: On the first day of Pwn2Own Vancouver 2023, security researchers successfully demoed Tesla Model 3, Windows 11, and macOS zero-day exploits and exploit chains to win $375,000 and a Tesla Model 3. The first to fall was Adobe … Read More “Hacks at Pwn2Own Vancouver 2023” »

Friday Squid Blogging: Creating Batteries Out of Squid Cells

March 24, 2023 infossl

Security technology, squid, Uncategorized

This is fascinating: “When a squid ends up chipping what’s called its ring tooth, which is the nail underneath its tentacle, it needs to regrow that tooth very rapidly, otherwise it can’t claw its prey,” he explains. This was intriguing news and it sparked an idea in Hopkins lab where he’d been trying to … Read More “Friday Squid Blogging: Creating Batteries Out of Squid Cells” »

Mass Ransomware Attack

March 23, 2023 infossl

cyberattack, hacking, ransomware, Security technology, Uncategorized, vulnerabilities

A vulnerability in a popular data transfer tool has resulted in a mass ransomware attack: TechCrunch has learned of dozens of organizations that used the affected GoAnywhere file transfer software at the time of the ransomware attack, suggesting more victims are likely to come forward. However, while the number of victims of the mass-hack is … Read More “Mass Ransomware Attack” »