Recent Security News
-
KyberSlash attacks put quantum encryption projects at risk
January 7, 2024 at 03:37PM The Kyber key encapsulation mechanism, including its official implementation CRYSTALS-Kyber, has been found vulnerable to flaws known collectively as KyberSlash, allowing the recovery of secret keys. Timing-based attacks and patches for KyberSlash1 and KyberSlash2 have been identified, affecting various projects, with efforts underway to address the issue. The impact varies…
-
X users fed up with constant stream of malicious crypto ads
January 6, 2024 at 11:46AM Cybercriminals are exploiting X ads to promote crypto scams including fake airdrops and drainer sites, targeting those interested in cryptocurrencies. X’s advertising algorithm matches users’ interests, resulting in an increasing volume of malicious ads. Despite warnings and skepticism over X’s ad vetting, it’s reported that malicious ads have significantly grown,…
-
Sea Turtle Cyber Espionage Campaign Targets Dutch IT and Telecom Companies
January 6, 2024 at 03:33AM A cyber espionage campaign by the threat actor Sea Turtle targets telecommunication, media, internet service providers, and Kurdish websites in the Netherlands, collecting politically motivated information. Sea Turtle, documented in 2019, uses DNS hijacking and exploits known vulnerabilities, and was found to use a simple reverse TCP shell. Organizations are…