Ian Campbell on Nostr: Been a while since I've had an actual curated thread of interesting reads. Here are a ...
Been a while since I've had an actual curated thread of interesting reads. Here are a few, with Recorded Future's 'The Record' absolutely dominating this week with some great reporting.
Attackers use EvilProxy phishing kit to take over executives’ Microsoft 365 accounts - https://therecord.media/evilproxy-phishing-kit-targets-ceos-executives
IRS confirms takedown of bulletproof hosting provider Lolek - https://therecord.media/lolek-bulletproof-hosting-seizure-fbi-irs
Next-gen OSDP was supposed to make it harder to break in to secure facilities. It failed. - https://arstechnica.com/security/2023/08/next-gen-osdp-was-supposed-to-make-it-harder-to-break-in-to-secure-facilities-it-failed/
New Downfall attacks on Intel CPUs steal encryption keys, data - https://www.bleepingcomputer.com/news/security/new-downfall-attacks-on-intel-cpus-steal-encryption-keys-data/
Lawsuit: ByteDance’s CapCut app secretly reaps massive amounts of user data - https://therecord.media/capcut-privacy-lawsuit-illinois-bipa-bytedance-china
Tunnel Vision: CloudflareD AbuseD in the WilD - https://www.guidepointsecurity.com/blog/tunnel-vision-cloudflared-abused-in-the-wild/
Attackers use EvilProxy phishing kit to take over executives’ Microsoft 365 accounts - https://therecord.media/evilproxy-phishing-kit-targets-ceos-executives
IRS confirms takedown of bulletproof hosting provider Lolek - https://therecord.media/lolek-bulletproof-hosting-seizure-fbi-irs
Next-gen OSDP was supposed to make it harder to break in to secure facilities. It failed. - https://arstechnica.com/security/2023/08/next-gen-osdp-was-supposed-to-make-it-harder-to-break-in-to-secure-facilities-it-failed/
New Downfall attacks on Intel CPUs steal encryption keys, data - https://www.bleepingcomputer.com/news/security/new-downfall-attacks-on-intel-cpus-steal-encryption-keys-data/
Lawsuit: ByteDance’s CapCut app secretly reaps massive amounts of user data - https://therecord.media/capcut-privacy-lawsuit-illinois-bipa-bytedance-china
Tunnel Vision: CloudflareD AbuseD in the WilD - https://www.guidepointsecurity.com/blog/tunnel-vision-cloudflared-abused-in-the-wild/