Schneier on Security

NOVEMBER 26, 2024

which are two recently released versions of Apple’s mobile operating system, according to documents describing the tool’s capabilities in granular detail obtained by 404 Media. The documents do not appear to contain information about what Graykey can access from the public release of iOS 18.1,

Media 283

Media Manufacturing Mobile Hacking 283

Schneier on Security

MAY 27, 2025

users by piecing together corporate documents from around the world. The ownership of many appeared deliberately opaque, with several concealing their structure behind layers of offshore shell companies. TTP was able to determine the Chinese ownership of the 20 VPN apps being offered to Apple’s U.S.

VPN 301

VPN 301

Penetration Testing

DECEMBER 8, 2024

This searchable database... The post DDoSecrets Unveils Massive “Library of Leaks” Search Engine with Millions of Leaked Documents appeared first on Cybersecurity News.

Engineering 98

Engineering Cybersecurity 98

Schneier on Security

NOVEMBER 19, 2024

According to an Italian Ministry of Justice document , as of December 2022 law enforcement in the country could rent spyware for €150 a day, regardless of which vendor they used, and without the large acquisition costs which would normally be prohibitive.

Spyware 294

Spyware Marketing Hacking 294

Krebs on Security

MARCH 14, 2025

Malicious macros became such a common malware threat that Microsoft was forced to start blocking macros by default in Office documents that try to download content from the web.

Phishing 283

Phishing Malware Scams Passwords 283

Krebs on Security

NOVEMBER 9, 2024

The trouble is, these EDRs largely bypass any official review and do not require the requester to supply any court-approved documents. Others simply sell access to hacked government or police email accounts, and leave it up to the buyer to forge any needed documents. “Unlimited Emergency Data Requests. . Reset as you please.

Hacking 293

Hacking Accountability Government Social Engineering 293

Security Affairs

APRIL 6, 2025

The document is realistic enough to bypass automated Know Your Customer (KYC) checks, the expert states. Experts are calling for stronger defenses, including broader use of NFC-based verification and electronic identity documents (eIDs), which offer more resilient, hardware-level authentication. ” Musielak wrote on X.

Identity Theft 145

Identity Theft Insurance Banking Authentication 145

Krebs on Security

MAY 22, 2025

As detailed in this 2015 story, the author of the ZeuS trojan created a custom version of the malware to serve purely as a spying machine, which scoured infected systems in Ukraine for specific keywords in emails and documents that would likely only be found in classified documents.

Malware 248

Malware Cybercrime Government Banking 248

Schneier on Security

DECEMBER 22, 2023

Interesting attack on a LLM: In Writer, users can enter a ChatGPT-like session to edit or create their documents. In this chat session, the LLM can retrieve information from sources on the web to assist users in creation of their documents.

343

343

Security Affairs

NOVEMBER 12, 2024

Law enforcement warned that securely stored iPhones awaiting forensic examination are mysteriously rebooting, making them much harder to unlock, per a document obtained by 404 Media. 404 Media obtained the document from a mobile forensics source and verified it with another source. Three iPhones running iOS 18.0

Media 130

Media Wireless Mobile Encryption 130

Security Affairs

NOVEMBER 8, 2024

Law enforcement warns that securely stored iPhones awaiting forensic examination are mysteriously rebooting, making them much harder to unlock, per a document obtained by 404 Media. 404 Media obtained the document from a mobile forensics source and verified it with another source. Below is the hypothesis reported in the document.

Media 121

Media Mobile Passwords Hacking 121

Adam Shostack

FEBRUARY 12, 2025

This is a big, complex document. The apparent complexity is exacerbated by the intermingling of how to conduct with sample output and perhaps the document might be improved by breaking it into two: a how to guide and a sample output document or documents. What makes this level of detail right for this document?

Risk 147

Risk Manufacturing Encryption Surveillance 147

Malwarebytes

MARCH 4, 2025

Also, it seems weird that Docusign has been used to send a document that doesnt require a signature. I’ve you’ve received an email like this and want to verify if it’s genuine, go directly to Docusign.com, click ‘Access Documents’ (upper right-hand corner), and enter the security code displayed in the email.

Scams 137

Scams Accountability Phishing Banking 137

We Live Security

MAY 19, 2025

This issue of the ESET APT Activity Report reviews notable activities of APT group that were documented by ESET researchers from October 2024 until March 2025.

126

126

The Last Watchdog

JANUARY 27, 2025

demands a structured approach to implementation and preparation. demands a structured approach to implementation and preparation. demands a structured approach to implementation and preparation.

Password Management 130

Password Management Architecture Threat Detection Cybersecurity 130

Security Affairs

OCTOBER 21, 2024

It provides a range of development resources, including SDKs (Software Development Kits), documentation, sample code, and learning materials for networking, security, and cloud infrastructure. DevHub is a platform designed for developers to access resources, tools, and APIs to build and integrate applications with Cisco’s technologies.

Cybercrime 133

Cybercrime Data breaches Technology Banking 133

SecureWorld News

NOVEMBER 11, 2024

Following a documented protocol keeps you on solid ground, especially when the stakes are high and the pressure is on. Document every decision and action Documentation may seem tedious in the middle of a breach response, but it's critical. Detailed records can protect your team by demonstrating a transparent, ethical response.

Data breaches 109

Data breaches Accountability Cybersecurity Account Security 109

SecureList

MARCH 10, 2025

The document uses the remote template injection technique to download an RTF file stored on a remote server controlled by the attacker. The documents used various themes to deceive victims into believing they are legitimate. Some documents concerned nuclear power plants and nuclear energy agencies. pro document-viewer[.]info

Energy and Utilities 117

Energy and Utilities Malware Government Phishing 117

Security Affairs

DECEMBER 7, 2024

Allegedly, invoice receipts, accounting documents, personal data, certificates, employment contracts, a huge amount of confidential information, confidentiality pic.twitter.com/Tad7LeOcsk — HackManac (@H4ckManac) December 6, 2024 According to the announcement published by the group on its Tor leak site, stolen data includes: Invoice Receipts (..)

Ransomware 126

Ransomware Hacking Accountability Cyber Attacks 126

Schneier on Security

JULY 23, 2024

Many more ODNI documents here. It’s heavily redacted , but still interesting.

281

281

Schneier on Security

OCTOBER 26, 2023

Interesting article about the Snowden documents, including comments from former Guardian editor Ewen MacAskill MacAskill, who shared the Pulitzer Prize for Public Service with Glenn Greenwald and Laura Poitras for their journalistic work on the Snowden files, retired from The Guardian in 2018.

Surveillance 333

Surveillance Government Marketing 333

Security Affairs

DECEMBER 6, 2024

. “The attacks continued intensively including on election day and the night after elections,” the Romanian Intelligence reported in a declassified document. “The operating mode and the amplitude of the campaign leads us to conclude the attacker has considerable resources specific to an attacking state.”

Government 140

Government Cybercrime Cyber Attacks Hacking 140

PCI perspectives

MARCH 10, 2025

This document provides direction for merchants and service providers implementing controls to protect payment card data during e-commerce transactions. The PCI Security Standards Council (PCI SSC) has introduced a new information supplement: Payment Page Security and Preventing E-Skimming Guidance for PCI DSS Requirements 6.4.3 and 11.6.1.

eCommerce 111

eCommerce 111

Adam Shostack

JANUARY 2, 2025

Ill add that not everything in the document is introduced in methodology, and Ill list those as we go. As always, and especially in these Threat Model Thursday posts, my goal is to point out interesting work in a constructive way. Let me start by saying that I love that theres a methodology section at the top.

Engineering 246

Engineering Authentication 246

Security Affairs

JANUARY 14, 2025

According to court documents, the Chinese government paid Mustang Panda to develop PlugX malware, used since 2014 to target U.S., The malware was operated by a China-linked threat actor, known as Mustang Panda (aka Twill Typhoon, to steal sensitive information from victim computers. European, and Asian entities. systems. .”

Malware 122

Malware Government Hacking Cybersecurity 122

Schneier on Security

JANUARY 29, 2024

The investigation indicates they were initially targeting email accounts for information related to Midnight Blizzard itself.

Hacking 333

Hacking Accountability Passwords Cybersecurity 333

Security Affairs

DECEMBER 4, 2024

The group claimed to have stolen 500GB of data including Finacial data, Organisation data, Users data and personal documents, NDA’s, Confidential data, and more. As proof of the data breach, the group published multiple screenshots, including pictures of passports and other documents.

Ransomware 127

Ransomware Telecommunications Healthcare Insurance 127

Schneier on Security

JULY 25, 2024

Details are here , but basically a digital wallet is a repository for personal data and documents. I am the Chief of Security Architecture at Inrupt, Inc. , the company that is commercializing Tim Berners-Lee’s Solid open W3C standard for distributed data ownership. Right now, there are hundreds of different wallets, but no standard.

Architecture 327

Architecture Data privacy 327

Malwarebytes

APRIL 30, 2025

Your document is now ready for download: Please download the attachment and follow the provided instructions. NOTE: Statements & Documents are only compatible with PC/Windows systems. There are some variations to this mail in circulation but the example above shows how legitimate these emails look.

Computers and Electronics 144

Computers and Electronics Identity Theft Phishing Banking 144

Krebs on Security

NOVEMBER 14, 2024

Hydra trafficked in illegal drugs and financial services, including cryptocurrency tumbling for money laundering, exchange services between cryptocurrency and Russian rubles, and the sale of falsified documents and hacking services.

Retail 273

Retail Advertising Cryptocurrency Marketing 273

Security Affairs

OCTOBER 25, 2024

The company published a document containing recommendations against password spray attacks aimed at Remote Access VPN (RAVPN) services. The content of the email was empty, and the message only included an attached document that was not visible in the email client. The researchers also published PoC exploit code for this vulnerability.

VPN 114

VPN Firewall Technology Passwords 114

Security Affairs

DECEMBER 23, 2024

Court documents state that on October 29, 2019, plaintiffs filed this lawsuit, alleging that the defendants used WhatsApp to target approximately 1,400 mobile phones and devices to infect them with the surveillance software. ” reads the court document. WhatsApp won a legal case against NSO Group in a U.S. ” The U.S.

Spyware 110

Spyware Surveillance Software Hacking 110

Krebs on Security

FEBRUARY 22, 2024

A large cache of more than 500 documents published to GitHub last week indicate the records come from i-SOON , a technology company headquartered in Shanghai that is perhaps best known for providing cybersecurity training courses throughout China. A marketing slide deck promoting i-SOON’s Advanced Persistent Threat (APT) capabilities.

Government 333

Government Hacking Cyber threats Mobile 333

Adam Shostack

JANUARY 2, 2025

I would find it more surprising if I were to look at a 150 page document and not find anything surprising.) Give specific threat information and mitigation strategies to component designers. I find some parts of it surprising. (I

Risk 189

Risk Architecture Manufacturing Cybersecurity 189

Security Affairs

DECEMBER 16, 2024

“In at least two cases Amnesty International documented, the Cellebrite UFED product and associated exploits were used to covertly bypass phone security features, enabling Serbian authorities to infect the devices with NoviSpy spyware. . ” reported the Associated Press. ” concludes the report.

Spyware 106

Spyware Surveillance Technology Mobile 106

Security Affairs

MAY 1, 2025

“The emails had the subject Documents from 04/29/2025 and were sent from an address disguised as corporate correspondence.” ” The phishing emails employed in the campaign spotted by F6 experts has the subject Documents from 04/29/2025 and were sent from addresses mimicking corporate senders.

Malware 87

Malware Phishing Telecommunications Retail 87

Schneier on Security

FEBRUARY 23, 2024

call functions), read documents, and recursively call themselves. New research : LLM Agents can Autonomously Hack Websites Abstract: In recent years, large language models (LLMs) have become increasingly capable and can now interact with tools (i.e., As a result, these LLMs can now function autonomously as agents.

Hacking 337

Hacking Cybersecurity Artificial Intelligence 337