Stolen Data Gives Attackers Advantage Against Text-Based 2FA
Companies that rely on texts for a second factor of authentication are putting about 20% of their customers at risk because the information necessary to attack the system is available in...
A Ransomware Explosion Fosters Thriving Dark Web Ecosystem
The underground economy is booming — fomented by a surging and evolving ransomware sector. The Dark Web now has hundreds of thriving marketplaces where a wide variety of professional ransomware products and services...
Genesis IAB Market Brings Polish to the Dark Web
The growing role of so-called initial access brokers (IABs) in the underground cybercrime economy is reflected in evolution of Genesis Marketplace, one of the earliest full-fledged markets for IABs,...
Nomad announces $19-million bounty for lost funds from recent hack
Nomad announced a bounty of up to 10% for the return of the stolen funds from the Nomad bridge. In a website announcement and tweet, the company publicly provided...
Experts find private keys on Slope servers, still puzzled over access
Blockchain auditing firms are still trying to figure out how hackers gained access to about 8,000 private keys used to drain Solana-based wallets. Investigations are ongoing after attackers managed to...
Time to Patch VMware Products Against a Critical New Vulnerability
Several VMware products need to be patched against a critical flaw that would allow authentication bypass for on-premises implementations.
The latest VMware bug is being tracked under CVE-2022-31656 and has a CVSSv3 base...
Massive China-Linked Disinformation Campaign Taps PR Firm for Help
A fake-news influence campaign based in China is leveraging at least 72 inauthentic news sites to push content strategically aligned with the political interests of the People's Republic of...
Hackers might be responsible for removing $4.8M from crypto exchange ZB.com: PeckShield
Blockchain investigator PeckShield has reported roughly $4.8 million in crypto moved from ZB.com amid the exchange announcing the suspension of withdrawals.In a Wednesday tweet, PeckShield speculated that hackers might...
Slope wallets blamed for Solana-based wallet attack
As the dust settles from yesterday’s Solana ecosystem mayhem, data is surfacing that wallet provider Slope is largely responsible for the security exploit that stole crypto from thousands of...
School Kid Uploads Ransomware Scripts to PyPI Repository as ‘Fun’ Project
An apparently school-age hacker based in Verona, Italy, has become the latest to demonstrate why developers need to pay close attention to what they download from public code repositories...
