hacking – SSL and internet security news

New Mobile Phone Forensics Tool

July 18, 2025 infossl

china, forensics, hacking, malware, privacy, Security technology, smartphones, Uncategorized

The Chinese have a new tool called Massistant. Massistant is the presumed successor to Chinese forensics tool, “MFSocket”, reported in 2019 and attributed to publicly traded cybersecurity company, Meiya Pico. The forensics tool works in tandem with a corresponding desktop software. Massistant gains access to device GPS location data, SMS messages, images, audio, contacts and … Read More “New Mobile Phone Forensics Tool” »

Hacking Trains

July 16, 2025 infossl

hacking, infrastructure, Security technology, transportation, Uncategorized

Seems like an old system system that predates any care about security: The flaw has to do with the protocol used in a train system known as the End-of-Train and Head-of-Train. A Flashing Rear End Device (FRED), also known as an End-of-Train (EOT) device, is attached to the back of a train and sends data … Read More “Hacking Trains” »

Court Rules Against NSO Group

May 13, 2025 infossl

courts, exploits, hacking, israel, Security technology, Uncategorized, whatsapp

The case is over: A jury has awarded WhatsApp $167 million in punitive damages in a case the company brought against Israel-based NSO Group for exploiting a software vulnerability that hijacked the phones of thousands of users. I’m sure it’ll be appealed. Everything always is. Powered by WPeMatico

WhatsApp Case Against NSO Group Progressing

April 30, 2025 infossl

courts, hacking, Meta, Security technology, Uncategorized, whatsapp

Meta is suing NSO Group, basically claiming that the latter hacks WhatsApp and not just WhatsApp users. We have a procedural ruling: Under the order, NSO Group is prohibited from presenting evidence about its customers’ identities, implying the targeted WhatsApp users are suspected or actual criminals, or alleging that WhatsApp had insufficient security protections. […] … Read More “WhatsApp Case Against NSO Group Progressing” »

Friday Squid Blogging: Squid Werewolf Hacking Group

March 28, 2025 infossl

hacking, Security technology, squid, Uncategorized

In another rare squid/cybersecurity intersection, APT37 is also known as “Squid Werewolf.” As usual, you can also use this squid post to talk about the security stories in the news that I haven’t covered. Powered by WPeMatico

Silk Typhoon Hackers Indicted

March 11, 2025 infossl

china, cyberattack, cyberespionage, espionage, hacking, law enforcement, Security technology, Uncategorized

Lots of interesting details in the story: The US Department of Justice on Wednesday announced the indictment of 12 Chinese individuals accused of more than a decade of hacker intrusions around the world, including eight staffers for the contractor i-Soon, two officials at China’s Ministry of Public Security who allegedly worked with them, and two … Read More “Silk Typhoon Hackers Indicted” »

Trojaned AI Tool Leads to Disney Hack

March 4, 2025 infossl

AI, credentials, cybersecurity, hacking, Security technology, Uncategorized

This is a sad story of someone who downloaded a Trojaned AI tool that resulted in hackers taking over his computer and, ultimately, costing him his job. Powered by WPeMatico

North Korean Hackers Steal $1.5B in Cryptocurrency

February 25, 2025 infossl

cryptocurrency, hacking, North Korea, Security technology, theft, Uncategorized

It looks like a very sophisticated attack against the Dubai-based exchange Bybit: Bybit officials disclosed the theft of more than 400,000 ethereum and staked ethereum coins just hours after it occurred. The notification said the digital loot had been stored in a “Multisig Cold Wallet” when, somehow, it was transferred to one of the exchange’s … Read More “North Korean Hackers Steal $1.5B in Cryptocurrency” »

FBI Shuts Down Chinese Botnet

September 19, 2024 infossl

botnets, china, hacking, Security technology, Uncategorized

The FBI has shut down a botnet run by Chinese hackers: The botnet malware infected a number of different types of internet-connected devices around the world, including home routers, cameras, digital video recorders, and NAS drives. Those devices were used to help infiltrate sensitive networks related to universities, government agencies, telecommunications providers, and media organizations…. … Read More “FBI Shuts Down Chinese Botnet” »

Hacking Wireless Bicycle Shifters

August 20, 2024 infossl

academic papers, firmware, hacking, Internet of Things, patching, Security technology, Uncategorized

This is yet another insecure Internet-of-things story, this one about wireless gear shifters for bicycles. These gear shifters are used in big-money professional bicycle races like the Tour de France, which provides an incentive to actually implement this attack. Research paper. Another news story. Slashdot thread. Powered by WPeMatico