Cyber Security

TWINN Security News December 27
by Niles Nerd

Welcome to this week in NerdNews (TWINN). Your weekly top 5 technical and security issues Nerds should pay attention to:

Hackers target crypto wallets through Telegram using Echelon malware. We regularly see Telegram as more than a messenger now. It is more like a user-friendly darkweb technology. It is too powerful for criminals to ignore, including how it is used for Command and Control operators that are traditionally hard to block. It needs to be said to be very careful about using Telegram, if you use it at all.

Lights Out: Cyberattacks Shut Down Building Automation Systems. The hackers turned a security feature against the owners. Even though the motivations are a bit of a mystery as no ransom note has been found, it goes to show that everything is hackable and therefore we must protect everything that connects.

Polish opposition senator hacked with spyware. This is another case of Toronto’s Citizen Lab finding Israeli Pegasus spyware in use on politicians.

Honeypot experiment reveals what hackers want from IoT devices. This is consistent with my honeypots as well. If remote access is gained in a non-targeted approach, and if the access is persistent, such compromised hosts are used for mining cryptocurrencies and participation in Botnets, ready to receive attack commands at any moment.

Phishing in Organizations: Findings from a Large-Scale and Long-Term Study. This really shows that globally we still have a major phishing problem. Not only that we are vulnerable but that a zero trust connectivity approach prevents users from even being able to visit not-yet-verified destinations.

Did you know?

My favourite security conference, RSA, has been delayed to June 2022.

For a video version of this see: https://youtu.be/dOZZER_g08o

Related Posts

TWINN Security News January 17

TWINN Security News January 17

Welcome to this week in NerdNews (TWINN). Your weekly top 5 technical and security issues Nerds should pay attention to. Today our focus is on RATs, or Remote Access Trojans. RATs are one of the most powerful tools in a cyber criminals bag of tricks. They’ve existed...

TWINN Security News January 10

TWINN Security News January 10

Welcome to this week in NerdNews (TWINN). Your weekly top 5 technical and security issues Nerds should pay attention to: This week we focus on the difficult challenge ahead of public software libraries and scripts that thousands of companies and developers are...

TWINN Security News January 3

TWINN Security News January 3

Welcome to this week in NerdNews (TWINN). Your weekly top 5 technical and security issues Nerds should pay attention to: In 2022, I’ll have more of a focus on one key story for my TWINN each Monday. The feature story today is around SIM swapping. It’s an attack vector...