Information

10 Mar

Silicon Valley Bank Seized by FDIC as Depositors Pull Cash

Information, News

The Federal Deposit Insurance Corporation seized the assets of Silicon Valley Bank on Friday, marking the largest bank failure since Washington Mutual during the height of the 2008 financial crisis. The bank failed after depositors — mostly technology workers and venture capital-backed companies — began withdrawing their money creating a run on the bank. Silicon Valley was heavily exposed to tech industry and there is little chance of contagion in the banking sector as there…

Read More
10 Mar

S3 Ep125: When security hardware has security holes [Audio + Text]

Information

by Paul Ducklin YOU MUST HAVE THIS CHIP! EVEN IF IT HAS BUGS! Memories of Michelangelo (the virus, not the artist). Data leakage bugs in TPM 2.0. Ransomware bust, ransomware warning, and anti-ransomware advice. No audio player below? Listen directly on Soundcloud. With Doug Aamoth and Paul Ducklin. Intro and outro music by Edith Mudge. You can listen to us on Soundcloud, Apple Podcasts, Google Podcasts, Spotify, Stitcher and anywhere that good podcasts are found.…

Read More
10 Mar

White House Budget Plan Seeks to Boost Cybersecurity Spending

Information, News

The White House on Thursday published its $6.9 trillion budget proposal for fiscal year 2024 and the administration wants to increase cybersecurity spending. Several sections of President Biden’s budget plan mention cybersecurity-related spending.  The administration has proposed an additional $145 million for the Cybersecurity and Infrastructure Security Agency (CISA), which will receive a total of $3.1 billion. This amount includes $425 million to improve the agency’s internal cybersecurity and analytical capabilities, and $98 million for…

Read More
09 Mar

Who’s Behind the NetWire Remote Access Trojan?

Information, Insights

A Croatian national has been arrested for allegedly operating NetWire, a Remote Access Trojan (RAT) marketed on cybercrime forums since 2012 as a stealthy way to spy on infected systems and siphon passwords. The arrest coincided with a seizure of the NetWire sales website by the U.S. Federal Bureau of Investigation (FBI). While the defendant in this case hasn’t yet been named publicly, the NetWire website has been leaking information about the likely true identity…

Read More
09 Mar

‘A woman from Mars’: Life in the pursuit of space exploration

Information

An astrobiologist, analog astronaut, author and speaker, Dr. Michaela Musilova shares her experience as a woman at the forefront of space exploration and from her quest for scientific and personal excellence When we talk about space adventures, our minds are likely to wander to famed astronauts. However, we often forget that there is a lot more to space exploration than “just” space shuttles and the crews of people clad in special space suits and bouncing…

Read More
09 Mar

Revelstoke Security Raises $20 Million for SOAR Platform

Information, News

Revelstoke Security on Wednesday announced that it has raised $20 million in a Series B funding round that brings the total investment in the company to $38 million. The new funding round was co-led by ClearSky Security and SYN Ventures, with additional investment from Crosslink Capital and Rally Ventures. Founded in 2020, the San Jose, California-based company provides a security orchestration, automation, and response (SOAR) platform built using a common data language that integrates disparate…

Read More
08 Mar

Love scam or espionage? Transparent Tribe lures Indian and Pakistani officials

Information

ESET researchers analyze a cyberespionage campaign that distributes CapraRAT backdoors through trojanized and supposedly secure Android messaging apps – but also exfiltrates sensitive information ESET researchers have identified an active Transparent Tribe campaign, targeting mostly Indian and Pakistani Android users – presumably with a military or political orientation. Victims were probably targeted through a honey-trap romance scam, where they were initially contacted on another platform and then convinced to use supposedly “more secure” apps, which…

Read More
08 Mar

Serious Security: TPM 2.0 vulns – is your super-secure data at risk?

Information

by Paul Ducklin Even if you’re not entirely sure what a TPM is, you’ll probably know that if you want to run Windows 11, you need one. More precisely, you need a TPM 2.0 (although there’s an official Microsoft workaround to get by with TPM 1.2, the previous, incompatible version of the technology). TPM is short for trusted plaftorm module, a encryption-and-cybersecurity gizmo that was invented by an industry grouping known as the TCG, short…

Read More
07 Mar

Sued by Meta, Freenom Halts Domain Registrations

Information, Insights

The domain name registrar Freenom, whose free domain names have long been a draw for spammers and phishers, has stopped allowing new domain name registrations. The move comes just days after the Dutch registrar was sued by Meta, which alleges the company ignores abuse complaints about phishing websites while monetizing traffic to those abusive domains. Freenom’s website features a message saying it is not currently allowing new registrations. Freenom is the domain name registry service…

Read More
07 Mar

Pre-Deepfake Campaign Targets Putin Critics

Information, News

Russia is continuing its campaign of disinformation around the Ukraine war through advanced social engineering delivered by a threat group tracked as TA499. According to a report from Proofpoint, TA499 targets US and European politicians, and leading businessmen and celebrities who have spoken out against Putin’s invasion. The primary purpose is to persuade the victims to take part in phone calls or video chats from which pro-Putin snippets can be elicited and published – thereby…

Read More