Yesterday ClearSky, a security research group, released a report on a threat actor group called CryptoCore. As you may guess by the name, CryptoCore specifically targets cryptocurrency wallets and exchanges. This group carefully and methodically social engineers companies that run exchanges for cryptocurrency like Bitcoin. At first, they target the personal account of an … [Read more...]
US Senators Introduce Bill to Backdoor Encryption
Three Republican Senators today introduced the Lawful Access to Encrypted Data Act, in their latest attack on the security and privacy of everyday citizens. The press release for the bill describes it as a way to “bolster national security interests” by “ending the use of ‘warrant-proof’ encrypted technology by terrorists and other bad actors to conceal illicit behavior.” At a … [Read more...]
RIpple20 Causes Waves in Network Security
Last week JSOF, a cybersecurity team, released 19 vulnerabilities found in a library developed by Treck, Inc. Two of these include code execution vulnerabilities. According to the report, millions of devices ranging from printers to other embedded networking devices use the Treck library as the TCP/IP stack. JSOF hasn't released too many details on most of the … [Read more...]
FBI Warns of an Increase in Malicious Banking Apps
This week the FBI issued a warning on the increased use of mobile banking apps. With more mobile banking usage by Americans, the FBI predicts an increased threat by cyber criminals targeting these apps. The FBI estimates that more than 75% of Americans used mobile banking in 2019. Another study indicated a 50% increase in mobile banking this year. These exploits come as … [Read more...]
VMware Cloud Server Takeover Vulnerability
Earlier this week, Citadelo published a vulnerability they found in the VMware Cloud software. Small Cloud providers use VMware Cloud software to support virtual servers and manage the environment through the Director module in the software. Citadelo found a remote execution vulnerability in this management software. Citadelo also noted they could do the following … [Read more...]
