Recent Security News
-
Weak session keys let snoops take a byte out of your Bluetooth traffic
November 30, 2023 at 02:40AM Various Bluetooth chips from companies including Qualcomm, Broadcom, Intel, and Apple are susceptible to two security flaws discovered by researcher Daniele Antonioli, allowing unauthorized device impersonation and data interception. These vulnerabilities, present in Bluetooth standards since 2014, affect multiple devices and both Bluetooth security modes. Work is underway on fixes…
-
U.S. Treasury Sanctions Sinbad Cryptocurrency Mixer Used by North Korean Hackers
November 30, 2023 at 01:48AM The U.S. Treasury has sanctioned Sinbad, a crypto mixer used by North Korea’s Lazarus Group for money laundering. Sinbad has processed stolen virtual currency from major heists and is linked to various criminal activities. Blockchain analysis suggests connections between Sinbad and the also-sanctioned Blender mixer. **Clear Takeaways from Meeting Notes…
-
10 Holiday Gifts For Stressed-Out Security Pros
November 29, 2023 at 10:28PM Cybersecurity professionals face intense daily pressures, making stress relief an ideal focus for holiday gift exchanges like Secret Santa or White Elephant. Consider peaceful gift options for these overburdened individuals. Meeting Takeaways: 1. Cybersecurity professionals, including CISOs and SOC analysts, are experiencing high levels of stress and pressure due to…
-
US lawmakers have Chinese LiDAR on their threat-detection radar
November 29, 2023 at 09:35PM A US congressional committee is considering whether to ban Chinese LiDAR devices due to national security concerns. They requested an investigation into the technology, as it could potentially be used for military purposes or contain malware, and noted its association with human rights abuses in China. **Takeaways from Meeting:** 1.…
-
Rogue ex-Motorola techie admits cyberattack on former employer, passport fraud
November 29, 2023 at 08:23PM Andrew Mahn, ex-Motorola technician, pleaded guilty to passport and wire fraud after launching a cyberattack on the company and attempting to acquire a passport with false credentials while pending trial. Mahn stole Motorola data, including code to unlock radio features, using employee credentials obtained via phishing. Sentencing is set for…