By Bill Toulas North Korean IT professionals who trick Western companies into hiring them are stealing data from the organization’s network and asking for a ransom to not leak it. Dispatching IT workers to seek employment at companies in wealthier nations is a tactic that North Korea has been using for years as a means to obtain privileged access for cyberattacks or to generate revenue for the country’s weapons programs. […]
Ironically, Macs’ lower risk profile may make them more susceptible to any given threat than the average Windows or Linux system. Nate Nelson, Contributing Writer A new infostealer is trying to ride the coattails of one of the most prevalent malware tools on the planet, taking advantage of some inherent security shortcomings in macOS environments. In a new blog post, Cado Security discusses “Cthulhu Stealer,” a new cybercrime tool making the rounds […]
Poking at bad encryption practices to discover some outrageous, unexpected issues By Alfonso Maruccia August 26, 2024 at 3:16 PM WTF?! Chinese-made chips used in popular contactless cards contain hardware backdoors that are easy to exploit. These chips are compatible with the proprietary Mifare protocol developed by Philips spin-off NXP Semiconductors and are inherently “intrinsically broken,” regardless of the card’s brand. Security researchers at Quarkslab have discovered a backdoor in millions of RFID cards […]
Club Penguin fans reportedly hacked into Disney’s internal servers this week, uncovering internal data about Disney’s larger business. By Maxwell Zeff PublishedThursday 2:45PM When Disney shut down Club Penguin in 2017, millions of disgruntled fans were left without a virtual, penguin-based world to call home. This week, Bleeping Computer reports that threat actors hacked into Disney’s internal servers looking for old Club Penguin secrets, but ended up stealing 2.5 GB of […]
Ernestas Naprys  Senior Journalist: Threat actors have come up with a new solution called Geobox that transforms the mini-computer Raspberry Pi into a Swiss-army knife type of hacking device for fraudsters and other criminals. Sold for a lifetime fee of $700 or a monthly rate of $80, the software is able to spoof location, mimic Wi-Fi access points, and manipulate DNS and network parameters while providing anonymity. Researchers from Resecurity […]
