Sign up to save your podcasts
Or
Share 2024-02-08 : Daily : Gracie Folkins
Share to email
Share to Facebook
Share to X
Share to email
Share to Facebook
Share to X
Or
2024-02-08 : Daily : Gracie Folkins
I'm Gracie Folkins, and this is Hack News Daily for February 8th, 2024.
Leading today's cybersecurity developments, Google is enhancing its malware defense strategy in Singapore by trialing a security feature designed to prevent the installation of sideloaded Android apps that request high-risk permissions. This initiative seeks to minimize the risk of financial fraud and the dissemination of malware via third-party app installations.
In cybercrime news, the breach of the Russian cybercrime forum Mazafaka has exposed its founder, identified as a lawyer with ties to Russia's GRU. This individual is accused of providing cybercriminals with advice on avoiding legal consequences and potentially participating in state-backed hacking operations.
Dispelling recent rumors, cybersecurity experts confirmed that the claim of 3 million electric toothbrushes involved in a DDoS attack was purely speculative. This serves as a reminder of the importance of safeguarding all internet-connected devices from misuse.
The FBI has successfully dismantled the KV-botnet, hindering the Volt Typhoon hacker group's efforts, associated with China, to attack U.S. infrastructure. Despite this setback, the group made an attempt to re-establish their network shortly thereafter.
Software security is in the spotlight as JetBrains encourages TeamCity users to install a critical update for CVE-2024-23917, addressing a vulnerability that could lead to server takeovers at the admin level.
In the microblogging realm, Spoutible has addressed an API flaw that compromised user data, including hashed passwords and 2FA seeds, urging users to immediately update their security configurations.
The financial cybersecurity landscape has seen a surge in crypto ransom attacks, with payments in 2023 doubling to an unprecedented $1 billion. These attacks are increasingly targeting major institutions, with substantial sums laundered through platforms such as the Russian exchange Garantex.
Highlighting the innovative use of technology, a Raspberry Pi Pico has been demonstrated to extract BitLocker encryption keys from susceptible laptops in less than a minute, underscoring the ongoing struggle between security experts and attackers.
The Linux community is currently addressing a critical buffer overflow vulnerability in the bootloader shim, CVE-2023-40547, which could allow the execution of arbitrary code at boot. Recommended measures include utilizing HTTPS for network booting and applying necessary updates.
The Raspberry Robin worm is evolving, employing new methods for privilege escalation and exploiting compromised Discord downloads for attacks.
Lastly, NCC Group's recent research offers insights into securing emerging technologies and highlights current security challenges, from AI threat models to zero-day exploits.
That concludes today's episode of Hack News Daily. Join us tomorrow for the latest in cybersecurity. Visit HACK[.]NEWS for links to all the stories and more. This is Gracie Folkins, signing off.
View all episodes
By Jared FolkinsI'm Gracie Folkins, and this is Hack News Daily for February 8th, 2024.
Leading today's cybersecurity developments, Google is enhancing its malware defense strategy in Singapore by trialing a security feature designed to prevent the installation of sideloaded Android apps that request high-risk permissions. This initiative seeks to minimize the risk of financial fraud and the dissemination of malware via third-party app installations.
In cybercrime news, the breach of the Russian cybercrime forum Mazafaka has exposed its founder, identified as a lawyer with ties to Russia's GRU. This individual is accused of providing cybercriminals with advice on avoiding legal consequences and potentially participating in state-backed hacking operations.
Dispelling recent rumors, cybersecurity experts confirmed that the claim of 3 million electric toothbrushes involved in a DDoS attack was purely speculative. This serves as a reminder of the importance of safeguarding all internet-connected devices from misuse.
The FBI has successfully dismantled the KV-botnet, hindering the Volt Typhoon hacker group's efforts, associated with China, to attack U.S. infrastructure. Despite this setback, the group made an attempt to re-establish their network shortly thereafter.
Software security is in the spotlight as JetBrains encourages TeamCity users to install a critical update for CVE-2024-23917, addressing a vulnerability that could lead to server takeovers at the admin level.
In the microblogging realm, Spoutible has addressed an API flaw that compromised user data, including hashed passwords and 2FA seeds, urging users to immediately update their security configurations.
The financial cybersecurity landscape has seen a surge in crypto ransom attacks, with payments in 2023 doubling to an unprecedented $1 billion. These attacks are increasingly targeting major institutions, with substantial sums laundered through platforms such as the Russian exchange Garantex.
Highlighting the innovative use of technology, a Raspberry Pi Pico has been demonstrated to extract BitLocker encryption keys from susceptible laptops in less than a minute, underscoring the ongoing struggle between security experts and attackers.
The Linux community is currently addressing a critical buffer overflow vulnerability in the bootloader shim, CVE-2023-40547, which could allow the execution of arbitrary code at boot. Recommended measures include utilizing HTTPS for network booting and applying necessary updates.
The Raspberry Robin worm is evolving, employing new methods for privilege escalation and exploiting compromised Discord downloads for attacks.
Lastly, NCC Group's recent research offers insights into securing emerging technologies and highlights current security challenges, from AI threat models to zero-day exploits.
That concludes today's episode of Hack News Daily. Join us tomorrow for the latest in cybersecurity. Visit HACK[.]NEWS for links to all the stories and more. This is Gracie Folkins, signing off.