North Korean hackers appear to have used the corrupted VoIP software to go after just a handful of crypto firms with “surgical precision.”
hack
The LastPass Hack Somehow Gets Worse
Plus: The US Marshals disclose a “major” cybersecurity incident, T-Mobile has gotten pwned so much, and more.
The Uber Data Breach Conviction Shows Security Execs What Not to Do
Former Uber security chief Joe Sullivan’s conviction is a rare criminal consequence for an executive’s handling of a hack.
Janet Jackson’s ‘Rhythm Nation’ Can Crash Old Hard Drives
Plus: The Twilio hack snags a reporter, a new tool to check for spyware, and the Canadian weed pipeline gets hit by a cyberattack.
How a Hacked Tractor Added Fuel to the Right-to-Repair Movement
This week, we discuss the latest John Deere tractor hack and its broader implications for repair rights advocates.
An Attack on Albanian Government Suggests New Iranian Aggression
A Tehran-linked hack of a NATO member marks a significant escalation against the backdrop of US-Iran nuclear talks.
A New Attack Can Unmask Anonymous Users on Any Major Browser
Researchers have found a way to use the web’s basic functions to identify who visits a site—without the user detecting the hack.
Who’s Behind the Okta Hack?
This week we discuss Lapsus$, the group claiming to have pulled the recent hack on Okta.
A Sinister Way to Beat Multifactor Authentication Is on the Rise
Lapsus$ and the group behind the SolarWinds hack have utilized prompt bombing to defeat weaker MFA protections in recent months.
New Lapsus$ Hack Documents Make Okta’s Response Look More Bizarre
Documents shed some light on how Okta and its subprocessor Sitel reacted to a breach, but they don’t explain the apparent lack of urgency.