Aggregator

Cisco has fixed a command injection vulnerability in the Identity Services Engine (ISE) with public exploit code that lets attackers escalate privileges to root on vulnerable systems. [...]

梆梆安全

What is a spoofing attack? What Financial Institutions Need to Know Without a doubt, s

As AWS continues to evolve, new services and permissions are frequently introduced to enhance functionality and security. This blog provides a comprehensive recap of new sensitive permissions and services added in August 2024. Our intention in sharing this is to flag the most important releases to keep your eye on and update your permissions and […]

The post August Recap: New AWS Sensitive Permissions and Services appeared first on Security Boulevard.

Mallox is a sophisticated and dangerous family of malicious software that has been cau

«Шляпа» Смита – больше, чем просто форма.

苹果已开始在印度生产新一代 iPhone，其中包括原本在中国制造的高端机型 iPhone Pro。印度以前生产低端和老款机型，但由于地缘政治风险加剧及印度供应链技术能力的提升，苹果推进分散

*购买即赠送【pixel 1代】测试手机一部今日更新10.1：常用工具介绍随着移动设备的流行和普及，手机、平板、门铃、路由等终端使用安卓系统越来越多，安卓逆向领域的需求也在持续增长。很多刚毕业的大学生

近日，美国俄亥俄州哥伦布市对一名安全研究员David Leroy Ross（化名Connor Goodwolf）提起诉讼，指控其非法下载并泄露该市IT网络遭勒索软件组织Rhysida盗取的数据。此事可

2024 KCTF 大赛于8月15日正式开赛！比赛设置了多维度的评分体系，包括难度值、火力值和精致度积分，旨在引导竞赛的难度和趣味度，使其更具挑战性和吸引力。同时，也为参赛选手提供了更加公平、有趣的竞

A new "EUCLEAK" flaw found in FIDO devices using the Infineon SLE78 security microcontroller, like Yubico's YubiKey 5 Series, allows attackers to extract Elliptic Curve Digital Signature Algorithm (ECDSA) secret keys and clone the FIDO device. [...]

扫码订阅《中国信息安全》邮发代号 2-786征订热线：010-82341063形式主义向来是推动党和国家事业发展的大敌，且花样不断翻新，在数字时代又产生了一些新变种、新现象。7月30日召开的中共中央

扫码订阅《中国信息安全》邮发代号 2-786征订热线：010-82341063近日，工业和信息化部、中央网信办、教育部、财政部、自然资源部、住房城乡建设部、农业农村部、国家卫生健康委、中国人民银行、

扫码订阅《中国信息安全》邮发代号 2-786征订热线：010-82341063近年来，以大模型为代表的新一代人工智能技术加速迭代，向着更为智能化、通用化、普惠化的方向迈进，成为新一轮科技和产业变革的

扫码订阅《中国信息安全》邮发代号 2-786征订热线：010-82341063文 | 清华大学丘成桐数学科学中心教授 丁津泰；重庆大学大数据与软件学院教授 向宏在当今数字化深度融入工作与生活的背景下

扫码订阅《中国信息安全》邮发代号 2-786征订热线：010-82341063文 | 西南政法大学校长、教授、博士生导师 林维随着自动驾驶汽车、ChatGPT、人形机器人等人工智能应用的爆发，人工智

扫码订阅《中国信息安全》邮发代号 2-786征订热线：010-82341063导 读工业和信息化部、中央网信办、教育部、财政部、自然资源部、住房城乡建设部、农业农村部、国家卫生健康委、中国人民银行、

扫码订阅《中国信息安全》邮发代号 2-786征订热线：010-82341063实习招聘 /Recruitment/《中国信息安全》杂志是经国家新闻出版总署批准的面向国内外公开发行的信息安全权威媒体，

 

The decentralized finance (DeFi) and
cryptocurrency industries are being targeted by North Korean social engineering
schemes in highly personalized and convincing ways.

 

Here is an example that the FBI is showcasing:

1.      
A
person from your dream company, using the name of an old colleague, contacts
you on social media, mentioning a conference you both recently attended and
discussing shared interests.

2.      
He
asks if you're job hunting and reveals his company needs your skills, offering
a significant pay raise.  He arranges an
interview with his CTO and during the interview, the CTO gives you a
“pre-employment” test that involves troubleshooting code from some GitHub
repositories you do not recognize.

3.      
You
clone the repositories, execute the code, find the bugs, and pass the test with
flying colors.

 

Congrats - you have fallen for a well-disguised
social engineering scheme conducted by North Korean cyber actors. One of those
GitHub repositories was malicious and landed a malware dropper on your machine
which installed a key logger and acquired your credentials to access your
company’s network.

 

The North Korean attackers gain access and moving
laterally, eventually getting access to the seed phrases and security
signatures for your company’s cryptocurrency assets.  Shortly thereafter all the company’s crypto
assets disappear and everything you and your colleagues worked for is gone.

 

The threat is real.

 

Check out the full FBI public warning here: https://www.ic3.gov/Media/Y2024/PSA240903

The post FBI Warns of North Korea Attacks Against the Crypto Industry appeared first on Security Boulevard.