LastPass was hacked and it is very bad for anyone who it affects
I was using LastPass until a few years ago. With news of this hacking, I am suddenly terrified that my account wasn't deleted by them. We will see.
|
"New Gmail Attack Bypasses Passwords And 2FA To Read All Email"
Bolding below is mine for emphasis.
According to cyber security firm Volexity, the threat research team has found the North Korean 'SharpTongue' group, which appears to be part of, or related to, the Kimsuky advanced persistent threat group, deploying malware called SHARPEXT that doesn't need your Gmail login credentials at all.
Instead, it "directly inspects and exfiltrates data" from a Gmail account as the victim browses it. This quickly evolving threat, Volexity says it is already on version 3.0 according to the malware's internal versioning, can steal email from both Gmail and AOL webmail accounts, and works across three browsers: Google Chrome, Microsoft Edge, and a South Korean client called Whale.
|
Security Researchers can use a SATA cable inside a computer to transmit data wirelessly to a nearby receiver
Dubbed the 'SATAn' attack. This is not an attack normal people need to be worried about, but it's pretty wild technology. Bolding for emphasis is mine:
This paper introduces a new type of attack on isolated, air-gapped workstations. Although air-gap computers have no wireless connectivity, we show that attackers can use the SATA cable as a wireless antenna to transfer radio signals at the 6 GHz frequency band. The Serial ATA (SATA) is a bus interface widely used in modern computers and connects the host bus to mass storage devices such as hard disk drives, optical drives, and solid-state drives. The prevalence of the SATA interface makes this attack highly available to attackers in a wide range of computer systems and IT environments. We discuss related work on this topic and provide technical background. We show the design of the transmitter and receiver and present the implementation of these components. We also demonstrate the attack on different computers and provide the evaluation. The results show that attackers can use the SATA cable to transfer a brief amount of sensitive information from highly secured, air-gap computers wirelessly to a nearby receiver. Furthermore, we show that the attack can operate from user mode, is effective even from inside a Virtual Machine (VM), and can successfully work with other running workloads in the background. Finally, we discuss defense and mitigation techniques for this new air-gap attack.
|
Axie Infinity was taken down by a fake job offer
Ronin, the Ethereum-linked sidechain that underpins play-to-earn game Axie Infinity, lost $540 million in crypto to an exploit in March. While the US government later tied the incident to North Korean hacking group Lazarus, full details of how the exploit was carried out have not been disclosed.
The Block can now reveal that a fake job ad was Ronin’s undoing.
According to two people with direct knowledge of the matter, who were granted anonymity due to the sensitive nature of the incident, a senior engineer at Axie Infinity was duped into applying for a job at a company that, in reality, did not exist.
[...]
The fake “offer” was delivered in the form of a PDF document, which the engineer downloaded — allowing spyware to infiltrate Ronin’s systems. From there, hackers were able to attack and take over four out of nine validators on the Ronin network — leaving them just one validator short of total control.
In a post-mortem blog post on the hack, published April 27, Sky Mavis said: “Employees are under constant advanced spear-phishing attacks on various social channels and one employee was compromised. This employee no longer works at Sky Mavis. The attacker managed to leverage that access to penetrate Sky Mavis IT infrastructure and gain access to the validator nodes.”
The hackers are reportedly out of North Korea. The article highlights this article which notes that they have used similar tactics with aerospace and defense contractors. It's hard to blame anyone for falling for these. This isn't a Nigerian prince emailing, this is a company that looks legit and puts you through many rounds of interviews, just to get you to download a PDF.
|
Neopixel Skirt? I want it as a shirt!
This is super cool and something I might definitely one day possibly attempt to make for myself as a shirt.
|
