Encryption and Engineering - Cyber Security Informer

Samsung Encryption Flaw

Schneier on Security

MARCH 4, 2022

Researchers have found a major encryption flaw in 100 million Samsung Galaxy phones. We reversed-engineered and provide a detailed description of the cryptographic design and code structure, and we unveil severe design flaws. This means that for a given application, all key blobs will be encrypted using the same key.

Encryption

Encryption Engineering

News alert: CyTwist launches threat detection engine tuned to identify AI-driven malware in minutes

The Last Watchdog

JANUARY 7, 2025

Ramat Gan, Israel, January 7th, 2025, CyberNewswire — CyTwist , a leader in advanced next-generation threat detection solutions, has launched its patented detection engine to combat the insidious rise of AI-generated malware. Evasion: AI-generated threats mimic human behavior, complicating detection for security teams.

Threat Detection

Threat Detection Engineering Malware Artificial Intelligence

Crooks bank on Microsoft’s search engine to phish customers

Malwarebytes

NOVEMBER 4, 2024

We identified a new wave of phishing for banking credentials that targets consumers via Microsoft’s search engine. While Microsoft’s Bing only has about 4% of the search engine market share , crooks are drawn to it as an alternative to Google. We have reported the fraudulent sites to Microsoft already.

Engineering

Engineering Phishing Banking Authentication

Glove Stealer bypasses Chrome’s App-Bound Encryption to steal cookies

Security Affairs

NOVEMBER 15, 2024

The Glove Stealer malware exploits a new technique to bypass Chrome’s App-Bound encryption and steal browser cookies. Threat actors relies on social engineering tactics like ClickFix and FakeCaptcha to trick users into executing malicious scripts via PowerShell or Run prompts. ” reads the report published by Gen Digital.

Encryption

Encryption Password Management Cryptocurrency Social Engineering

Which Types Of Encryption Will Remain Secure As Quantum Computing Develops – And Which Popular Ones Will Not

Joseph Steinberg

FEBRUARY 2, 2022

As I discussed last month, unless we take actions soon, a tremendous amount of data that is today protected through the use of encryption will become vulnerable to exposure. To protect data in the quantum computing era , therefore, we must change how we encrypt.

Encryption

Encryption Artificial Intelligence Risk Engineering

CVE-2024-28989: Weak Encryption Key Management in Solar Winds Web Help Desk

NetSpi Technical

MARCH 10, 2025

This led to an analysis of the software and how it stored encrypted passwords, giving the red team the ability to recover the stored passwords and use them to access other systems. TL;DR an attacker with access to a Web Help Desk backup file may be able to recover some of the encrypted passwords stored within it.

Encryption

Encryption Backups Passwords Software

xz Utils Backdoor

Schneier on Security

APRIL 2, 2024

An intentionally placed backdoor in xz Utils, an open-source compression utility, was pretty much accidentally discovered by a Microsoft engineer—weeks before it would have been incorporated into both Debian and Red Hat Linux. The cybersecurity world got really lucky last week. modified the way the software functions.

Social Engineering

Social Engineering Engineering Software Encryption

News alert: NTT unveils AI inference chip enabling real-time 4K processing of ultra-high-def video

The Last Watchdog

APRIL 10, 2025

The LSI overcomes these restraints by implementing an NTT-created AI inference engine. This engine reduces computational complexity while ensuring detection accuracy, improving computing efficiency using interframe correlation and dynamic bit-precision control. Additionally, NTT researchers are collaborating with NTT DATA, Inc.

Technology

Technology Wireless Engineering Encryption

The Mad Liberator ransomware group uses social-engineering techniques

Security Affairs

AUGUST 18, 2024

The Mad Liberator ransomware group has been active since July 2024, it focuses on data exfiltration instead of data encryption. Mad Liberator employs social engineering techniques to gain access to the victim’s environment, specifically targeting organizations using remote access tools like Anydesk.

Social Engineering

Social Engineering Engineering Ransomware Cybercrime

PCI DSS Tokenization vs Encryption: Key Differences to Protect Payment Data

Centraleyes

APRIL 10, 2025

The most commonly used methods for securing cardholder data are tokenization and encryption. This blog will explore the differences between PCI DSS tokenization vs. encryption, how each method fits into PCI compliance, and the associated PCI DSS encryption requirements and tokenization practices. What Is Encryption?

Encryption

Encryption Data breaches Risk Retail

A Day in the Life of a Prolific Voice Phishing Crew

Krebs on Security

JANUARY 7, 2025

Each participant in the call has a specific role, including: -The Caller: The person speaking and trying to social engineer the target. A tutorial shared by Stotle titled “Social Engineering Script” includes a number of tips for scam callers that can help establish trust or a rapport with their prey. ”

Phishing

Phishing Cryptocurrency Accountability Social Engineering

My Philosophy and Recommendations Around the LastPass Breaches

Daniel Miessler

DECEMBER 24, 2022

After initiating an immediate investigation, we have seen no evidence that this incident involved any access to customer data or encrypted password vaults. I have friends on LastPass and other password manager company security teams, and I know them to be great engineers and great security teams. Actually, some data was lost.

Password Management

Password Management Passwords Encryption Backups

NIST’s Post-Quantum Cryptography Standards

Schneier on Security

AUGUST 8, 2022

Current quantum computers are still toy prototypes, and the engineering advances required to build a functionally useful quantum computer are somewhere between a few years away and impossible. Fun fact: Those three algorithms were broken by the Center of Encryption and Information Security, part of the Israeli Defense Force.

Encryption

Encryption Architecture Engineering Information Security

Lazarus targets blockchain engineers with new KandyKorn macOS Malware

Security Affairs

NOVEMBER 5, 2023

North Korea-linked Lazarus group is using new KandyKorn macOS Malware in attacks against blockchain engineers. North Korea-linked Lazarus APT group were spotted using new KandyKorn macOS malware in attacks against blockchain engineers, reported Elastic Security Labs. ” reads the report. ” concludes the report.

Engineering

Engineering Malware Cryptocurrency Encryption

Don’t Let Zombie Zoom Links Drag You Down

Krebs on Security

OCTOBER 2, 2023

These company-specific Zoom links, which include a permanent user ID number and an embedded passcode, can work indefinitely and expose an organization’s employees, customers or partners to phishing and other social engineering attacks. Image: @Pressmaster on Shutterstock.

Engineering

Engineering Encryption Social Engineering Healthcare

Adventures in Contacting the Russian FSB

Krebs on Security

JUNE 7, 2021

In the process of doing so, I encountered a small snag: The FSB’s website said in order to communicate with them securely, I needed to download and install an encryption and virtual private networking (VPN) appliance that is flagged by at least 20 antivirus products as malware. Federal Bureau of Investigation (FBI). Image: Wikipedia.

Antivirus

Antivirus VPN Encryption Malware

Microsoft Defender thwarted Akira ransomware attack on an industrial engineering firm

Security Affairs

OCTOBER 16, 2023

Microsoft announced that its Microsoft Defender for Endpoint helped to block a large-scale hacking campaign carried out by Akira ransomware operators (tracked by Microsoft as Storm-1567) The attack took place in early June 2023 and aimed at an industrial engineering organization.

Engineering

Engineering Ransomware Hacking Education

Does Your Domain Have a Registry Lock?

Krebs on Security

JANUARY 24, 2020

In the case of e-hawk.net, however, the scammers managed to trick an OpenProvider customer service rep into transferring the domain to another registrar with a fairly lame social engineering ruse — and without triggering any verification to the real owners of the domain. ” REGISTRY LOCK.

DNS

DNS Social Engineering Engineering Accountability

SECURITY AFFAIRS MALWARE NEWSLETTER – ROUND 22

Security Affairs

DECEMBER 1, 2024

A Case-Control Study to Measure Behavioral Risks of Malware Encounters in Organizations PyPI Python Library “aiocpa” Found Exfiltrating Crypto Keys via Telegram Bot Bootkitty: Analyzing the first UEFI bootkit for Linux Hudson Rock Announces First Comprehensive Infostealers AI Bot: CavalierGPT Gaming Engines: An Undetected Playground for (..)

Malware

Malware Social Engineering Antivirus Engineering

News alert: SquareX discloses nasty browser-native ransomware that’s undetectable by antivirus

The Last Watchdog

MARCH 28, 2025

Ransomware attacks typically involve tricking victims into downloading and installing the ransomware, which copies, encrypts, and/or deletes critical data on the device, only to be restored upon the ransom payment. Traditionally, the primary target of ransomware has been the victims device.

Antivirus

Antivirus Ransomware Social Engineering Engineering

Phish of GoDaddy Employee Jeopardized Escrow.com, Among Others

Krebs on Security

MARCH 31, 2020

The attacker also obtained free encryption certificates for escrow.com from Let’s Encrypt. The employee involved in this incident fell victim to a spear-fishing or social engineering attack. 49 (that domain is hobbled here because it is currently flagged as hosting a phishing site).

Phishing

Phishing DNS Social Engineering Accountability

MY TAKE: Fostering Digital Trust – the role of ‘post-quantum crypto’ and ‘crypto agility’ in 2024

The Last Watchdog

DECEMBER 13, 2023

I had the opportunity to sit down with DigiCert’s Jason Sabin , Chief Technology Officer and Avesta Hojjati , Vice President of Engineering to chew this over. Enter the concept of “ cryptographic agility ” — a reference to the rise of a new, much more flexible approach to encrypting digital assets.

Encryption

Encryption Technology CISO IoT

Alleged Boss of ‘Scattered Spider’ Hacking Group Arrested

Krebs on Security

JUNE 15, 2024

Among those was the encrypted messaging app Signal , which said the breach could have let attackers re-register the phone number on another device for about 1,900 users. LastPass said criminal hackers had stolen encrypted copies of some password vaults, as well as other personal information.

Hacking

Hacking Cybercrime Phishing Passwords

New Bluetooth Vulnerability

Schneier on Security

SEPTEMBER 17, 2020

The only way to protect against BLURtooth attacks is to control the environment in which Bluetooth devices are paired, in order to prevent man-in-the-middle attacks, or pairings with rogue devices carried out via social engineering (tricking the human operator). However, patches are expected to be available at one point.

Authentication

Authentication Social Engineering Firmware Engineering

Ghost Ransomware a Persistent Global Threat to Critical Infrastructure

SecureWorld News

FEBRUARY 20, 2025

Ghost ransomware actors, identified as operating from China, have been targeting unpatched systems and stolen credentials to infiltrate networks, encrypt data, and demand ransom payments. Cybersecurity awareness and incident response Train employees to recognize phishing attempts and social engineering.

Ransomware

Ransomware IoT Encryption Social Engineering

The Biggest Cybersecurity Risk We're Ignoring—And No, It's Not AI

SecureWorld News

FEBRUARY 28, 2025

The elephant in the (server) room We've all seen the headlines: AI is taking over, deepfakes are fooling the masses, quantum computing will break encryption! Because no firewall, no AI-powered SOC, no quantum-proof encryption will save you if your employees keep clicking phishing emails, because let's face it. So what do we do?

Cybersecurity

Cybersecurity Risk Social Engineering Phishing

WhatsApp hack: Meta wins payout over NSO Group spyware

Malwarebytes

MAY 8, 2025

NSO Group reverse engineered WhatsApp’s software and developed its own software and servers to send messages to victims via the WhatsApp service that contained malware.

Spyware

Spyware Hacking Surveillance Government

LW ROUNDTABLE: Predictive analytics, full-stack visualization to solidify cyber defenses in 2025

The Last Watchdog

DECEMBER 18, 2024

Quantum computing advances are making traditional encryption obsolete, and adversaries are stockpiling data for future decryption. FIPS-203 enables legal PQC deployment, prompting CISOs to overhaul encryption strategies. Organizations face rising risks of AI-driven social engineering and personal device breaches.

Risk

Risk Threat Detection Technology Phishing

Microsoft's Majorana 1 and the Path to Scalable Quantum Computing

SecureWorld News

FEBRUARY 20, 2025

Large enterprises should put testing quantum-resistant encryption on their roadmaps. As quantum computers grow, current encryption methods like RSA and ECC may soon become vulnerable," said Kip Boyle , vCISO, Cyber Risk Opportunities LLC. Taking these steps can save both time and resources in the long run."

Encryption

Encryption Energy and Utilities Government Architecture

Cloak ransomware group hacked the Virginia Attorney General’s Office

Security Affairs

MARCH 24, 2025

. “Cloaks attack strategy involves acquiring network access through Initial Access Brokers (IABs) or social engineering methods such as phishing, malvertising, exploit kits, and drive-by downloads disguised as legitimate updates like Microsoft Windows installers.”

Ransomware

Ransomware Hacking Social Engineering VPN

A Decade Later: How To Send Messages That Even The NSA, CIA, and FBI Cannot Read

Joseph Steinberg

OCTOBER 4, 2023

While some messaging systems now offer end-to-end encryption that prevents the providers of such services from decrypting messages , metadata – including who communicated with whom and when and where – is still available to governments. Of course, no encryption method is perfect.

Encryption

Encryption Artificial Intelligence Government Media

Personal AI Assistants and Privacy

Schneier on Security

MAY 23, 2024

Despite encryption and local storage, the new feature raises privacy concerns for certain Windows users. This requires an intimacy greater than your search engine, email provider, cloud storage system, or phone. I wrote about this AI trust problem last year: One of the promises of generative AI is a personal digital assistant.

Surveillance

Surveillance Marketing Engineering Encryption

SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 42

Security Affairs

APRIL 20, 2025

BPFDoors Hidden Controller Used Against Asia, Middle East Targets Gorilla, a newly discovered Android malware Cascading Shadows: An Attack Chain Approach to Avoid Detection and Complicate Analysis IronHusky updates the forgotten MysterySnail RAT to target Russia and Mongolia Unmasking the new XorDDoS controller and infrastructure Byte Bandits: How (..)

Malware

Malware Cryptocurrency Engineering Encryption

Experts Fear Crooks are Cracking Keys Stolen in LastPass Breach

Krebs on Security

SEPTEMBER 5, 2023

In November 2022, the password manager service LastPass disclosed a breach in which hackers stole password vaults containing both encrypted and plaintext data for more than 25 million users. LastPass disclosed that criminal hackers had compromised encrypted copies of some password vaults, as well as other personal information.

Cryptocurrency

Cryptocurrency Passwords Encryption Accountability

Xanthorox AI: A New Breed of Malicious AI Threat Hits the Darknet

eSecurity Planet

APRIL 8, 2025

Called Xanthorox AI, the tool was first spotted earlier this year on darknet forums and encrypted chat groups, where its being marketed as the killer of WormGPT and all EvilGPT variants. It features a live web scraper tool that pulls data from over 50 search engines for real-time reconnaissance.

Social Engineering

Social Engineering Phishing Engineering Education

MY TAKE: Why ‘basic research’ is so vital to bringing digital transformation to full fruition

The Last Watchdog

MARCH 17, 2021

In very short order, NTT Research assembled a who’s who of physicists, electrical engineers, neuroscientists, data scientists, computer scientists and mathematicians eager to port over their pet projects and rev up new ones. More about these paradigm shifters below. There was no hard sell needed to attract this level of talent, Gomi told me.

Digital transformation

Digital transformation Encryption Technology Mobile

Q&A: Cybersecurity in ‘The Intelligent Era’

IT Security Guru

MARCH 26, 2025

I recall my first job as a Chocolate Engineer in the mid 90s where I was wowed by robotic packaging systems and couldnt even imagine then how we now apply robots to achieve huge efficiency and quality advances across our industries today. The sheer number of instances of public key encryption in use today is impossible to quantify.

Cybersecurity

Cybersecurity Encryption Threat Detection Authentication

Privnotes.com Is Phishing Bitcoin from Users of Private Messaging Service Privnote.com

Krebs on Security

JUNE 13, 2020

For the past year, a site called Privnotes.com has been impersonating Privnote.com , a legitimate, free service that offers private, encrypted messages which self-destruct automatically after they are read. And it doesn’t send and receive messages. Creating a message merely generates a link. ” But that’s not the half of it.

Phishing

Phishing Encryption Internet Internet

Secure Communications: Relevant or a Nice to Have?

Jane Frankland

FEBRUARY 7, 2025

When you tune in to my interview with BlackBerry’s Director of Sales Engineering, Paul Fryer , you’ll hear his view on secure communication, and why this is such a focus for BlackBerry right now. Supply chains, essential to national security and business continuity, have become prime targets due to their interconnected nature.

Cyber Risk

Cyber Risk CISO Risk Encryption

GUEST ESSAY: A primer on content management systems (CMS) — and how to secure them

The Last Watchdog

MAY 19, 2022

Today, there are two major types of common CMS platforms: •The older “traditional” or “monolithic” CMS platforms include a content repository (usually a multimedia database), the administrative console (where content is added and categorized), the presentation system (which makes nice-looking pages), and the search engine. Gierlinger.

Data breaches

Data breaches Encryption Mobile Technology

Fla. Man Charged in SIM-Swapping Spree is Key Suspect in Hacker Groups Oktapus, Scattered Spider

Krebs on Security

JANUARY 30, 2024

2022 that an intrusion had exposed a “limited number” of Twilio customer accounts through a sophisticated social engineering attack designed to steal employee credentials. LastPass said criminal hackers had stolen encrypted copies of some password vaults, as well as other personal information. Twilio disclosed in Aug.

Social Engineering

Social Engineering Mobile Passwords Cybercrime

Cybersecurity Resolutions for 2025

IT Security Guru

JANUARY 9, 2025

Security teams should collaborate closely with IT and software engineering teams to identify where and how public key cryptography is being used. The shift to the cloud enhances security by incorporating automatic updates, advanced encryption, MFA and continuous monitoring, all of which fortify defences against evolving threats.

Cybersecurity

Cybersecurity Cyber threats Architecture Digital transformation

Wanted: Disgruntled Employees to Deploy Ransomware

Krebs on Security

AUGUST 19, 2021

. “For decades, West African scammers, primarily located in Nigeria, have perfected the use of social engineering in cybercrime activity.” ransomware-as-a-service gang actually includes a solicitation for insiders in the desktop wallpaper left behind on systems encrypted with the malware. For example, the Lockbit 2.0

Ransomware

Ransomware Social Engineering Cybercrime Scams

EDR-as-a-Service makes the headlines in the cybercrime landscape

Security Affairs

APRIL 7, 2025

In Dark Web environments as well as on specialized forums, sellers are posting synthetic ads inviting potential buyers to contact them privately, often via Telegram, Session, and other encrypted messaging apps. Payments are mostly made in Bitcoin or Monero, to ensure confidentiality and irreversibility.

Cybercrime

Cybercrime Social Engineering Accountability Government

Samsung Encryption Flaw

News alert: CyTwist launches threat detection engine tuned to identify AI-driven malware in minutes

Trending Sources

Crooks bank on Microsoft’s search engine to phish customers

Glove Stealer bypasses Chrome’s App-Bound Encryption to steal cookies

Which Types Of Encryption Will Remain Secure As Quantum Computing Develops – And Which Popular Ones Will Not

CVE-2024-28989: Weak Encryption Key Management in Solar Winds Web Help Desk

xz Utils Backdoor

News alert: NTT unveils AI inference chip enabling real-time 4K processing of ultra-high-def video

The Mad Liberator ransomware group uses social-engineering techniques

PCI DSS Tokenization vs Encryption: Key Differences to Protect Payment Data

A Day in the Life of a Prolific Voice Phishing Crew

My Philosophy and Recommendations Around the LastPass Breaches

NIST’s Post-Quantum Cryptography Standards

Lazarus targets blockchain engineers with new KandyKorn macOS Malware

Don’t Let Zombie Zoom Links Drag You Down

Adventures in Contacting the Russian FSB

Microsoft Defender thwarted Akira ransomware attack on an industrial engineering firm

Does Your Domain Have a Registry Lock?

SECURITY AFFAIRS MALWARE NEWSLETTER – ROUND 22

News alert: SquareX discloses nasty browser-native ransomware that’s undetectable by antivirus

Phish of GoDaddy Employee Jeopardized Escrow.com, Among Others

MY TAKE: Fostering Digital Trust – the role of ‘post-quantum crypto’ and ‘crypto agility’ in 2024

Alleged Boss of ‘Scattered Spider’ Hacking Group Arrested

New Bluetooth Vulnerability

Ghost Ransomware a Persistent Global Threat to Critical Infrastructure

The Biggest Cybersecurity Risk We're Ignoring—And No, It's Not AI

WhatsApp hack: Meta wins payout over NSO Group spyware

LW ROUNDTABLE: Predictive analytics, full-stack visualization to solidify cyber defenses in 2025

Microsoft's Majorana 1 and the Path to Scalable Quantum Computing

Cloak ransomware group hacked the Virginia Attorney General’s Office

A Decade Later: How To Send Messages That Even The NSA, CIA, and FBI Cannot Read

Personal AI Assistants and Privacy

SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 42

Experts Fear Crooks are Cracking Keys Stolen in LastPass Breach

Xanthorox AI: A New Breed of Malicious AI Threat Hits the Darknet

MY TAKE: Why ‘basic research’ is so vital to bringing digital transformation to full fruition

Q&A: Cybersecurity in ‘The Intelligent Era’

Privnotes.com Is Phishing Bitcoin from Users of Private Messaging Service Privnote.com

Secure Communications: Relevant or a Nice to Have?

GUEST ESSAY: A primer on content management systems (CMS) — and how to secure them

Fla. Man Charged in SIM-Swapping Spree is Key Suspect in Hacker Groups Oktapus, Scattered Spider

Cybersecurity Resolutions for 2025

Wanted: Disgruntled Employees to Deploy Ransomware

EDR-as-a-Service makes the headlines in the cybercrime landscape

Stay Connected