InfoSec News Nuggets 2/2/2024

FBI disrupts Chinese botnet used for targeting US critical infrastructure  The FBI has disrupted the KV botnet, used by People’s Republic of China (PRC) state-sponsored hackers (aka “Volt Typhoon”) to target US-based critical infrastructure organizations. The threat actors used the KV botnet malware to hijack hundreds of US-based, privately-owned small office/home office (SOHO) routers and to hide their hacking activity towards “US and other foreign victims”. “The Volt Typhoon malware enabled China to hide, among other things,…
Read More

InfoSec News Nuggets 10/19/2023

The Fake Browser Update Scam Gets a Makeover  One of the oldest malware tricks in the book — hacked websites claiming visitors need to update their Web browser before they can view any content — has roared back to life in the past few months. New research shows the attackers behind one such scheme have developed an ingenious way of keeping their malware from being taken down by security experts or law enforcement: By hosting…
Read More

InfoSec News Nuggets 07/14/2022

Joshua Schulte: Former CIA hacker convicted of 'brazen' data leak Joshua Schulte was convicted of sending the CIA's "Vault 7" cyber-warfare tools to the whistle-blowing platform. He had denied the allegations. The 2017 leak of some 8,761 documents revealed how intelligence officers hacked smartphones overseas and turned them into listening devices. Prosecutors said the leak was one of the most "brazen" in US history. Damian Williams, the US attorney for the Southern District of New…
Read More

InfoSec News Nuggets 02/14/2022

Hidden in plain sight: How the dark web is spilling onto social media Just a few years ago, illicit services and online contraband were firmly sourced in the hidden, largely untraceable depths of the internet: the dark web. People frequenting dark web sites knew how to take advantage of the anonymity offered, and often managed to evade law enforcement. However, fast forward a couple of years and this model is changing. We are now seeing illegal…
Read More

InfoSec News Nuggets 10/13/2021

Olympus has been hit with another major cyberattack Camera maker and Japanese tech giant Olympus was forced to shut down its IT systems in the US, Canada and Latin America after it recently fell victim to a cyberattack. In a statement on its website, the company said that it is currently in the process of investigating a potential cybersecurity incident which occurred on October 10 that affected its IT systems. After detecting suspicious activity on its network, Olympus mobilized…
Read More

InfoSec News Nuggets 6/17/2020

GitHub to replace "master" with alternative term to avoid slavery references GitHub is working on replacing the term "master" on its service with a neutral term like "main" to avoid any unnecessary references to slavery, its CEO said on Friday. The code-hosting portal is just the latest in a long line of tech companies and open source projects that have expressed support for removing terms that may be offensive to developers in the black community.…
Read More