Smashing Security podcast #398: Fake CAPTCHAs, Harmageddon, and Krispy Kreme
This week, we delve into the dark world of fake CAPTCHAs designed to hijack your computer. Plus, the AI safety clock is ticking down –...
Mailbox Insecurity
It turns out that all cluster mailboxes in the Denver area have the same master key. So if someone robs a postal carrier, they can...
New Malware Can Kill Engineering Processes in ICS Environments
Forescout identified a new type of malware capable of terminating engineering processes, used to target Siemens engineering workstations Read More
EU Opens Door for AI Training Using Personal Data
The EU Data Protection Board (EDPB) published a long-awaited opinion on how GDPR should apply to AI models Read More
Crypto-Hackers Steal $2.2bn as North Koreans Dominate
Mainly North Korean hackers stole over $2bn from crypto platforms in 2024, says Chainalysis Read More
Recorded Future CEO Calls Russia’s “Undesirable” Listing a “Compliment”
Cybersecurity firm Recorded Future has been listed as an “undesirable” organization by the Prosecutor General's Office of the Russian Federation Read More
Vulnerability Exploit Assessment Tool EPSS Exposed to Adversarial Attack
A Morphisec researcher showed how an attacker could manipulate FIRST’s Exploit Prediction Scoring System (EPSS) using AI Read More
Interpol Calls for an End to “Pig Butchering” Terminology
Interpol wants to change the term “pig butchering” to “romance baiting” Read More
New Advances in the Understanding of Prime Numbers
Really interesting research into the structure of prime numbers. Not immediately related to the cryptanalysis of prime-number-based public-key algorithms, but every little bit matters. Read...
US Government Issues Cloud Security Requirements for Federal Agencies
A CISA Directive sets out actions all US federal agencies must take to identify and secure cloud tenants in their environments Read More