24 Apr 2025
By Mary

InfoSec News Nuggets 4/24/2025

Bug hunter tricked SSL.com into issuing cert for Alibaba Cloud domain in 5 steps Certificate issuer SSL.com’s domain validation system had an unfortunate bug that was exploited by miscreants to obtain, without authorization, digital certs for legit websites. With those certificates in hand, said fraudsters could set up more-convincing malicious copies of those sites for things like credential phishing, or decrypt intercepted HTTPS traffic between those sites and their visitors. And since learning of that…
Read More
08 Jan 2025
By Mary

InfoSec News Nuggets 1/8/2025

Green Bay Packers' online store hacked to steal credit cards The Green Bay Packers American football team is notifying fans that a threat actor hacked its official online retail store in October and injected a card skimmer script to steal customers' personal and payment information. The National Football League team says it immediately disabled all checkout and payment capabilities after discovering on October 23 that the packersproshop.com website was breached. "On October 23, 2024, we…
Read More
11 Jan 2023
By Mary

InfoSec News Nuggets 01/11/2023

Microsoft’s new AI can simulate anyone’s voice with 3 seconds of audio  On Thursday, Microsoft researchers announced a new text-to-speech AI model called VALL-E that can closely simulate a person's voice when given a three-second audio sample. Once it learns a specific voice, VALL-E can synthesize audio of that person saying anything—and do it in a way that attempts to preserve the speaker's emotional tone. Its creators speculate that VALL-E could be used for high-quality text-to-speech applications, speech…
Read More
22 Jan 2021
By Mary

InfoSec News Nuggets 01/22/2021

Vehicle Manufacturers Face Cybersecurity Challenges Over the last several decades, there have been significant advancements in automotive technology. Today’s vehicles are equipped with more and more sophisticated computer systems than ever before. But as our reliance on technology continues to grow, so does the potential for cybersecurity attacks and resulting litigation. That’s why it’s becoming increasingly important for car manufacturers to pay close attention to the legal landscape. One recent case illustrates what’s going on.…
Read More