Archive - Zero Day

New

Top

Discussion

European Standards Body Votes to Release Secret Algorithms

After hit with criticism earlier this year for keeping its encryption algorithms secret, the European standards body behind the TETRA algorithms has…

Nov 13 •

October 2023

Sophisticated StripedFly Spy Platform Masqueraded for Years as Crypto Miner

Malware discovered in 2017 was long classified as a crypto miner. But researchers at Kaspersky Lab say it's actually part of a sophisticated spy…

Oct 26 •

How North Korean Workers Tricked U.S. Companies into Hiring Them and Secretly Funneled Their Earnings into Weapons Programs

Thousands of IT workers allegedly working on behalf of North Korea managed to trick U.S. companies into hiring them as remote developers — then used the…

Oct 20 •

Standards Body Considers Uncloaking Secret Encryption Algorithms

The European standards body that created secret encryption algorithms for use in TETRA radio communications is weighing whether to make new algorithms…

Oct 11 •

August 2023

Did a Journalist Violate Hacking Law to Leak Fox News Clips? The Government Thinks He Did.

But attorneys for Timothy Burke say a raid on his home and office exhibit government over-reach and misuse of the federal hacking law, and raises First…

Aug 17 •

Radiation Spikes at Chernobyl: A Mystery Few Seem Interested in Solving

Ever since radiation sensors at the Chernobyl nuclear plant spiked dramatically following the Russian invasion, there have been questions about what…

Aug 8 •

July 2023

Interview with the ETSI Standards Organization That Created TETRA "Backdoor"

Brian Murgatroyd spoke with me about why his standards group weakened an encryption algorithm used to secure critical radio communications of police…

Jul 25 •

June 2023

SEC Targets SolarWinds' CISO for Rare Legal Action Over Russian Hack

In a highly rare move, the SEC sent notice to SolarWinds' CISO, and other specific employees, indicating they may face legal action over Russia's hack…

Jun 28 •

May 2023

How Volexity Discovered the SolarWinds Hacking Campaign

An interview with Volexity President Steven Adair about how his team stumbled upon the "cyber espionage campaign of the decade" — but didn't know it …

May 17 •

Timeline of the SolarWinds Hack and Investigation

To accompany an in-depth feature story I wrote for WIRED about the SolarWinds hack--considered the most sophisticated and boldest supply-chain hack ever…

May 9 •

April 2023

Updates and Timeline for 3CX and X_Trader Hacks

Mandiant revealed this week that the hack of 3CX was actually a double supply-chain hack that first involved hacking and compromising another company's…

Apr 22 •

Software Maker 3CX Was Compromised in First-of-its-Kind Threaded Supply-Chain Hack - Updated

Hackers first compromised a different software maker and embedded malware in one of its programs. 3CX got compromised when a worker downloaded that…

Apr 20 •

#nojs-banner { position: fixed; bottom: 0; left: 0; padding: 16px 16px 16px 32px; width: 100%; box-sizing: border-box; background: red; color: white; font-family: -apple-system, "Segoe UI", Roboto, Helvetica, Arial, sans-serif, "Apple Color Emoji", "Segoe UI Emoji", "Segoe UI Symbol"; font-size: 13px; line-height: 13px; } #nojs-banner a { color: inherit; text-decoration: underline; } This site requires JavaScript to run correctly. Please turn on JavaScript or unblock scripts