Cybersecurity Roundup #18

If you spend more on coffee than on IT security, you will be hacked. What’s more, you deserve to be hacked”  ― Richard Clarke

Grayshift, The Startup That Breaks Into Unlocked IPhones For The Feds, Raises $47 Million

Grayshift, the startup behind one of the U.S. government’s favourite iPhone hacking technologies, has raised $47 million in funding. It’s a huge round for a phone forensics company, especially one that’s focused almost exclusively on breaking the security of Apple’s famous device.

US Army Base’s Twitter Account Hacked

A malicious hacker has been blamed for a series of lewd messages that emanated from the social media account of a US military base on Wednesday. Followers of Fort Bragg’s official Twitter account were surprised by the sexual content of a number of tweets that began to appear at around 4:30pm ET.

US Treasury sanctions Russian research institute behind Triton malware

The US Treasury Department announced sanctions today against a Russian research institute for its role in developing Triton, a malware strain designed to attack industrial equipment.

YouTube-dl removed from GitHub after RIAA DMCA notice

The Recording Industry Association of America, Inc. (RIAA) has taken down YouTube-dl’s GitHub repositories using a DMCA takedown notice. YouTube-dl is an extremely popular command-line program used to download multimedia content from YouTube.com and other sites.

JavaScript-based address bar spoofing vulns patched in Safari, Yandex, Opera

Rapid7 found Apple’s Safari browser, as well as the Opera Mini and Yandex browsers, were vulnerable to JavaScript-based address bar spoofing.

Why contact-tracing apps haven’t lived up to expectations

During the first wave of COVID-19, researchers at Oxford University built a computer model that suggested if 56% of the UK downloaded and used a contact-tracing app (alongside other control measures) it could end the epidemic in the country.

Ed Snowden doesn’t need to worry about being turfed out of Russia any more

Russia has apparently given super-leaker Edward Snowden de facto permanent residence. State-owned newswire TASS on Thursday reported that Snowden’s lawyer, a chap named Anatoly Kucherena, dropped in to tell it that Snowden has been granted an “open-ended residence permit”.

Donald Trump’s Twitter password is “maga2020!”, and there’s no 2FA, claims hacker

Last month hackers made the astonishing claim that they had managed to crack Donald Trump’s password back in 2016. And what was the password used by the then US Presidential Candidate?

Report: Microsoft was the most frequently targeted brand by cybercriminals

According to Check Point Research’s Brand Phishing Report for Q3 2020, Microsoft was the most imitated brand for phishing attempts by cybercriminals in Q3 2020.

Google says Chinese hackers who targeted Biden campaign are faking McAfee software

Google said in a new blog post that hackers linked to the Chinese government have been impersonating antivirus software McAfee to try to infect victims’ machines with malware.

Related posts