БЛОГ

Archive for the ‘cybercrime/malcode’ category: Page 12

Sep 13, 2024

New PIXHELL acoustic attack leaks secrets from LCD screen noise

Posted by in categories: cybercrime/malcode, mobile phones

A novel acoustic attack named ‘PIXHELL’ can leak secrets from air-gapped and audio-gapped systems, and without requiring speakers, through the LCD monitors they connect to.

In a PIXHELL attack, malware modulates the pixel patterns on LCD screens to induce noise in the frequency range of 0–22 kHz, carrying encoded signals within those acoustic waves that can be captured by nearby devices such as smartphones.

The researchers’ tests showed that data exfiltration is possible at a maximum distance of 2 meters (6.5 ft), achieving a data rate of 20 bits per second (bps).

Sep 4, 2024

When Cyber Security Breaches Are Inevitable, It’s Time To Call For A New Approach

Posted by in category: cybercrime/malcode

We need to do more than deflect cyberattacks. We must build the capacity to sustain operations during and after a cyberattack. We need to bounce back stronger than ever.

Sep 4, 2024

Insurance software giant reveals nearly a million customers hit by ransomware risk

Posted by in category: cybercrime/malcode

Young Consulting has confirmed it lost sensitive data on almost a million people in a ransomware attack that happened earlier in 2024.

The company confirmed the news by sending out data breach notification letters to exactly 954,177 customers, which said it became aware of “technical difficulties” in its computer environment in mid-April 2024.

Sep 3, 2024

Cyberattackers Exploit Google Sheets for Malware Control in Likely Espionage Campaign

Posted by in category: cybercrime/malcode

Cyberattackers leverage Google Sheets for command control in a global espionage campaign targeting 70+ organizations.

Sep 3, 2024

RansomHub Ransomware Group Targets 210 Victims Across Critical Sectors

Posted by in categories: cybercrime/malcode, government

US government warns of rising attacks on infrastructure using advanced tactics.

Sep 1, 2024

NIST publishes first set of ‘finalized’ post-quantum encryption standards

Posted by in categories: cybercrime/malcode, encryption, information science, policy, quantum physics

The three final algorithms, which have now been released, are ML-KEM, previously known as kyber; ML-DSA (formerly Dilithium); and SLH-DSA (SPHINCS+). NIST says it will release a draft standard for FALCON later this year. “These finalized standards include instructions for incorporating them into products and encryption systems,” says NIST mathematician Dustin Moody, who heads the PQC standardization project. “We encourage system administrators to start integrating them into their systems immediately.”

Duncan Jones, head of cybersecurity at the firm Quantinuum welcomes the development. “[It] represents a crucial first step towards protecting all our data against the threat of a future quantum computer that could decrypt traditionally secure communications,” he says. “On all fronts – from technology to global policy – advancements are causing experts to predict a faster timeline to reaching fault-tolerant quantum computers. The standardization of NIST’s algorithms is a critical milestone in that timeline.”

Aug 27, 2024

New Android Malware NGate Steals NFC Data to Clone Contactless Payment Cards

Posted by in categories: cybercrime/malcode, robotics/AI

Discover how NGate, a new Android malware, steals contactless payment data using NFC relay attacks. Learn about the latest cybersecurity threat target.

Aug 25, 2024

Telegram Founder Pavel Durov Arrested in France for Content Moderation Failures

Posted by in category: cybercrime/malcode

Telegram CEO Pavel Durov arrested in France over content moderation issues. Platform faces scrutiny for alleged facilitation of cybercrime and illegal.

Aug 25, 2024

New Qilin Ransomware Attack Uses VPN Credentials, Steals Chrome Data

Posted by in category: cybercrime/malcode

Qilin ransomware attackers now steal Chrome credentials, marking a dangerous new trend in cybercrime. Learn about this evolving threat and its implica.

Aug 25, 2024

New Linux Malware ‘sedexp’ Hides Credit Card Skimmers Using Udev Rules

Posted by in category: cybercrime/malcode

Discover ‘sedexp’, a stealthy Linux malware using udev rules for persistence, hiding credit card skimmers, and evading detection since 2022.

Page 12 of 223First910111213141516Last