hacking – SSL and internet security news

WhatsApp Case Against NSO Group Progressing

April 30, 2025 infossl

courts, hacking, Meta, Security technology, Uncategorized, whatsapp

Meta is suing NSO Group, basically claiming that the latter hacks WhatsApp and not just WhatsApp users. We have a procedural ruling: Under the order, NSO Group is prohibited from presenting evidence about its customers’ identities, implying the targeted WhatsApp users are suspected or actual criminals, or alleging that WhatsApp had insufficient security protections. […] … Read More “WhatsApp Case Against NSO Group Progressing” »

Friday Squid Blogging: Squid Werewolf Hacking Group

March 28, 2025 infossl

hacking, Security technology, squid, Uncategorized

In another rare squid/cybersecurity intersection, APT37 is also known as “Squid Werewolf.” As usual, you can also use this squid post to talk about the security stories in the news that I haven’t covered. Powered by WPeMatico

Silk Typhoon Hackers Indicted

March 11, 2025 infossl

china, cyberattack, cyberespionage, espionage, hacking, law enforcement, Security technology, Uncategorized

Lots of interesting details in the story: The US Department of Justice on Wednesday announced the indictment of 12 Chinese individuals accused of more than a decade of hacker intrusions around the world, including eight staffers for the contractor i-Soon, two officials at China’s Ministry of Public Security who allegedly worked with them, and two … Read More “Silk Typhoon Hackers Indicted” »

Trojaned AI Tool Leads to Disney Hack

March 4, 2025 infossl

AI, credentials, cybersecurity, hacking, Security technology, Uncategorized

This is a sad story of someone who downloaded a Trojaned AI tool that resulted in hackers taking over his computer and, ultimately, costing him his job. Powered by WPeMatico

North Korean Hackers Steal $1.5B in Cryptocurrency

February 25, 2025 infossl

cryptocurrency, hacking, North Korea, Security technology, theft, Uncategorized

It looks like a very sophisticated attack against the Dubai-based exchange Bybit: Bybit officials disclosed the theft of more than 400,000 ethereum and staked ethereum coins just hours after it occurred. The notification said the digital loot had been stored in a “Multisig Cold Wallet” when, somehow, it was transferred to one of the exchange’s … Read More “North Korean Hackers Steal $1.5B in Cryptocurrency” »

FBI Shuts Down Chinese Botnet

September 19, 2024 infossl

botnets, china, hacking, Security technology, Uncategorized

The FBI has shut down a botnet run by Chinese hackers: The botnet malware infected a number of different types of internet-connected devices around the world, including home routers, cameras, digital video recorders, and NAS drives. Those devices were used to help infiltrate sensitive networks related to universities, government agencies, telecommunications providers, and media organizations…. … Read More “FBI Shuts Down Chinese Botnet” »

Hacking Wireless Bicycle Shifters

August 20, 2024 infossl

academic papers, firmware, hacking, Internet of Things, patching, Security technology, Uncategorized

This is yet another insecure Internet-of-things story, this one about wireless gear shifters for bicycles. These gear shifters are used in big-money professional bicycle races like the Tour de France, which provides an incentive to actually implement this attack. Research paper. Another news story. Slashdot thread. Powered by WPeMatico

On the Cyber Safety Review Board

August 6, 2024 infossl

computer security, cybersecurity, hacking, Security technology, Uncategorized

When an airplane crashes, impartial investigatory bodies leap into action, empowered by law to unearth what happened and why. But there is no such empowered and impartial body to investigate CrowdStrike’s faulty update that recently unfolded, ensnarling banks, airlines, and emergency services to the tune of billions of dollars. We need one. To be sure, … Read More “On the Cyber Safety Review Board” »

Hacking Scientific Citations

July 15, 2024 infossl

academic, fraud, hacking, Security technology, Uncategorized

Some scholars are inflating their reference counts by sneaking them into metadata: Citations of scientific work abide by a standardized referencing system: Each reference explicitly mentions at least the title, authors’ names, publication year, journal or conference name, and page numbers of the cited publication. These details are stored as metadata, not visible in the … Read More “Hacking Scientific Citations” »

Reverse-Engineering Ticketmaster’s Barcode System

July 9, 2024 infossl

hacking, reverse engineering, Security technology, Uncategorized

Interesting: By reverse-engineering how Ticketmaster and AXS actually make their electronic tickets, scalpers have essentially figured out how to regenerate specific, genuine tickets that they have legally purchased from scratch onto infrastructure that they control. In doing so, they are removing the anti-scalping restrictions put on the tickets by Ticketmaster and AXS. Powered by WPeMatico