Newsletter European Standards Body Votes to Release Secret Algorithms After hit with criticism earlier this year for keeping its encryption algorithms secret, the European standards body behind the TETRA algorithms has decided to open them to the public for scrutiny.
Newsletter Sophisticated StripedFly Spy Platform Masqueraded for Years as Crypto Miner Malware discovered in 2017 was long classified as a crypto miner. But researchers at Kaspersky Lab say it's actually part of a sophisticated spy platform that has infected more than a million victims.
Newsletter How North Korean Workers Tricked U.S. Companies into Hiring Them and Secretly Funneled Their Earnings into Weapons Programs Thousands of IT workers allegedly working on behalf of North Korea managed to trick U.S. companies into hiring them as remote developers — then used the money to help finance North Korean weapons.
Newsletter Standards Body Considers Uncloaking Secret Encryption Algorithms The European standards body that created secret encryption algorithms for use in TETRA radio communications is weighing whether to make new algorithms public, following backlash over its secrecy.
Newsletter Did a Journalist Violate Hacking Law to Leak Fox News Clips? The Government Thinks He Did. But attorneys for Timothy Burke say a raid on his home and office exhibit government over-reach and misuse of the federal hacking law, and raises First Amendment issues.
Newsletter Radiation Spikes at Chernobyl: A Mystery Few Seem Interested in Solving Ever since radiation sensors at the Chernobyl nuclear plant spiked dramatically following the Russian invasion, there have been questions about what caused the spikes. Now the mystery deepens.
Newsletter Interview with the ETSI Standards Organization That Created TETRA "Backdoor" Brian Murgatroyd spoke with me about why his standards group weakened an encryption algorithm used to secure critical radio communications of police, military, critical infrastructure and others.
Newsletter SEC Targets SolarWinds' CISO for Rare Legal Action Over Russian Hack In a highly rare move, the SEC sent notice to SolarWinds' CISO, and other specific employees, indicating they may face legal action over Russia's hack of their company.
Newsletter Updates and Timeline for 3CX and X_Trader Hacks Mandiant revealed this week that the hack of 3CX was actually a double supply-chain hack that first involved hacking and compromising another company's software. Here's a timeline of the events.
Newsletter Software Maker 3CX Was Compromised in First-of-its-Kind Threaded Supply-Chain Hack - Updated Hackers first compromised a different software maker and embedded malware in one of its programs. 3CX got compromised when a worker downloaded that program. It's not known why worker downloaded it.
Newsletter Leaked Pentagon Document Claims Russian Hacktivists Breached Canadian Gas Pipeline Company The document, part of a cache of leaks recently circulated on the internet, suggests the hackers had the ability to cause an explosion and sought instruction from the FSB.
Newsletter Hello and an Update I’ve been meaning to send an email to all of you for a while to fill you in on what I’ve been working on and to assure you that I haven’t abandoned Zero Day. I’ve been working on a number of projects that have been taking
Newsletter White House Says President Zelensky Set Security Parameters for His Visit to the U.S. Ukrainian President Volodymyr Zelensky will visit the White House on Wednesday for his first trip outside of Ukraine since the war began. He will hold a press conference and address Congress.
Newsletter Security Firms Aiding Ukraine During War Could Be Considered Participants in Conflict Experts say cybersecurity companies helping to defend Ukraine against Russian cyberattacks during the war could be considered direct participants in the hostilities and open themselves to attack.
Newsletter Viasat Hack "Did Not" Have Huge Impact on Ukrainian Military Communications, Official Says Contrary to initial reports that it resulted in a "really huge loss in communications in the very beginning of war," the hack did not have a huge impact on ability to coordinate military operations.
Newsletter Mysterious New Hacking Group Leaves Researchers Baffled The group, called Metador by the SentinelLabs researchers who discovered them, appears to be well-resourced and engaged in long-term espionage. But who is behind their operation is unclear.
Newsletter Is the Secret Service’s Claim About Erased Text Messages Plausible? (Updated) The Secret Service says data erased from the phones of some of its personnel — that may shed light on the agency's handling of the Jan. 6 insurrection — can’t be recovered. Is it telling the truth?
Newsletter What It Means that the U.S. Is Conducting Offensive Cyber Operations Against Russia Gen. Paul Nakasone's remarks this month about offensive operations against Russia caused a stir. But have people misinterpreted his words?
Newsletter Russia Began Setting Stage for Cyberattacks Against Ukraine a Year Ago The Kremlin’s cyber warriors began working to gain a foothold in Ukrainian government and critical infrastructure networks a year before the invasion, according to a report issued by Microsoft today.
Newsletter Questions about Cyber Conflict Remain Unresolved, Panelists Note Who is an enemy combatant in the cyber realm, and what are the rules of engagement for cyber conflict? These are enduring questions that remain unresolved despite years of punditry about cyberwarfare.
Newsletter Substack Rolls out Two-Factor Authentication for Users More than four years after launching, Substack finally adopts what is considered a security best standard.
Newsletter Unmasking China’s State Hackers Intrusion Truth debuted in 2017, unmasking hackers working for the Chinese government. Five years later they’re still at it, while managing to keep their own identity a secret.