ForcedEntry is “one of the most technically sophisticated exploits” Project Zero security researchers have ever seen.
hacking
A Year After SolarWinds, Supply Chain Threats Still Loom
The Russia-led campaign was a wake-up call to the industry, but there’s no one solution to the threat.
Microsoft Seizes Domains Used by a Chinese Hacking Group
The move delivers a blow to the hackers behind sophisticated attacks on government agencies, think tanks, and other organizations.
A Planned Parenthood LA Hack Affects 400,000 Patients
Plus: A Ubiquiti hack revelation, predictive policing, and more of the week’s top security news.
NSO Group Spyware Hits at Least 9 US State Department Phones
The incident lays bare how hollow the surveillance company’s reassurances about the limits of its hacking tools have always been.
A Software Bug Let Hackers Drain $31M From a Crypto Service
An attacker exploited a vulnerability in MonoX Finance’s smart contract to inflate the price of its digital token and then cash out.
Malicious Google Play Apps Stole User Banking Info
Using tricks to sidestep the app store’s restrictions, malware operators pillaged passwords, keystrokes, and other data.