Best Infosec Long-Reads of the Week, 7/16/22
An attorney found her face for sale on NFT marketplace OpenSea, How a teen from an upscale suburban community pulled off a $23.8 million crypto heist, DARPA wants to understand open source risks, more
Latest
North Korean Hacking Group H0lyGh0st Has Been Targeting Small Businesses for Nearly a Year
Powerful Mantis botnet has targeted nearly 1,000 Cloudflare customers, Illicit addresses account for nearly a quarter of funds sent to mixers, Lawmakers seek to curb VPN abuses, much more
Vault 7 Leaker Joshua Schulte Convicted of Nine Counts Related to Largest Theft in CIA History
Hackers potentially stole Bandai Namco user data, Cyber Safety Review Board says log4j flaw less significant than feared, Ring gave footage to police without user permission, much more
Large-Scale Phishing Campaign Can Hijack Accounts Even When They're Protected by MFA
Hackers tried to trick Christine Lagarde, New Spectre-based speculative-execution attack discovered, Windows Autopatch available now, Microsoft issues 86 security fixes, much more
Microsoft Says Its Plan to Stop Blocking Macros by Default Is Only Temporary
Hacker stole $8 million from Uniswap liquidity provider, UK regulator raps cybersecurity plans of French nuclear power company, CrowdStrike warns of callback phishing, much more
U.S. Intel Community Reportedly Supported Defense Contractor's Plan to Buy NSO Group
Malware researcher shredded for shoddy report and abuse, Biden's EO seeks to protect privacy post-Roe, La Poste Mobile struggles after ransomware attack, Killnet took down Congress.gov, more
Best Infosec Long-Reads of the Week, 7/9/22
End-to-end encryption is even more important now that we're living in a post-Roe world, Sara Jacobs is fighting to protect reproductive data, Finland's model of cybersecurity is a winner, more Metacurity is pleased to offer our free and paid subscribers this weekly digest of long-form infosec
Best Infosec Long-Reads of the Week, 7/9/22
End-to-end encryption is even more important now that we're living in a post-Roe world, Sara Jacobs is fighting to protect reproductive data, Finland's model of cybersecurity is a winner, more
Microsoft Will Once Again Allow VBA Macros on Downloaded Documents by Default
Web 3 projects lost $2b during 1H of 2022, Chinese hacking groups are targeting Russian telecoms, License plate readers pose privacy threats in post-Roe America, Disneyland Instagram hacked, more
Apple's New iPhone Lockdown Mode Will Give Targets Protection From Nation-State Spying
North Korean hackers are targeting healthcare orgs with Maui ransomware, Trickbot has hit targets inside Ukraine at least six times, Chinese citizens' data were exposed for at least a year, much more
NIST Unveils Four New Algorithms to Protect Quantum Computing Systems From Threats
XakNet launched a 'cyberattack' against Ukraine's biggest energy company, Marriott confirms yet another data breach, NPM supply-chain attack uses typosquatting to infect developers, much more
Hackers Claim Massive Theft of Chinese Citizens' Personal Data From Shanghai Police Database
British army Twitter, YouTube accounts hacked, Hackers steal $8.7 million from defi protocol Crema Finance, HackerOne employee stole bug reports, Dutch uni profits from ransom attack years later, more