382 Computer Security Blog

[382] China Hacking SK Missile Defense

Posted on

The Wall Street Journal is reporting that John Hultquist, director of cyberespionage analysis at FireEye, believes that China is performing cyberattacks against the South Korean “Terminal High-Altitude Area Defense” (Thaad), a missile defense technology. “China opposes Thaad, saying its radar system can reach deep into its own territory and compromise its security,” writes the Journal. Hultquist […]

382 Computer Security Blog

[382] Broadcom

Posted on

There were two articles of particular interest to me this week, but in the interest of brevity I felt I should focus on just one. So instead of looking at the CIA toolkit used to infect Windows machines (which is nonetheless very worth reading!), I will be looking at how a vulnerability in Android Broadcom […]

382 Computer Security Blog

[382] LastPass vs The World

Posted on

I always recommend that everybody — from the technologically illiterate to experienced software engineers — use a password manager. Everybody is lazy; no one likes having to remember a bunch of different passwords, and will almost certainly reuse them across the hundreds of sites we have accounts for. By using random passwords stored in a password manager, we save […]

382 Computer Security Blog

[382] Teddy Ruxpin Likes to Talk

Posted on

ArsTechnica is reporting today on analysis from Troy Hunt (creator of HaveIBeenPwned) that over “2 million voice recordings of parents and their children” have been exposed to intruders. References to these recordings were contained in two password-unprotected databases of ~10GB each, “cloudpets-staging” and “cloudpets-testing,” with the references themselves pointing to unsecured AWS S3 files — anyone who knows […]

382 Computer Security Blog

[382] Macro’d Microphone Malware

Posted on

(I’ve got to stop with this alliteration nonsense.) ArsTechnica reported today on findings by CyberX labs that over 600GB of data was obtained from 70 different targets in varying industries, including “critical infrastructure, news media, and scientific research.” Targets were mostly inside Ukraine, though a small number of targets were from Russia, Austria, and Saudi […]

382 Computer Security Blog

[382] At This Point, It’s Getting Ridiculous

Posted on

I’m always reticent to discuss politically-aligned matters in professionally-oriented spaces like this one. Not because I have any particular aversion to politics (my Twitter and Facebook pages would seem to indicate the exact opposite), but because I generally don’t believe it’s appropriate to discussion subjective matters (like politics) in places where you should be as objective as […]

382 Computer Security Blog

[382] The Rise of Stateless Malware

Posted on

ArsTechnica reported today on a new rash of bank-targeting malware infections which, unlike your average malware, are unique in that they store almost nothing on infected users’ disk drives, instead existing solely in a computer’s RAM. (What they do store in memory is relegated to small powershell commands in the Windows registry.) As a result, they are tremendously difficult […]