Welcome to this week in NerdNews (TWINN). Your weekly top 5 technical and security issues Nerds should pay attention to:
One in Five Manufacturing Firms Targeted by Cyberattacks. This is no surprise to anyone watching the security space, but it’s important to emphasize that one in five companies in the sector have already been compromised in a successful attack with no end in sight.
Inside the Market for Cookies That Lets Hackers Pretend to Be You. Remember the EA breach? Turns out they bought the required cookie from a site called Genesis Market. This SLACK cookie cost the attackers only $10 on the dark web. Wow.
Newly discovered Vigilante malware outs software pirates and blocks them. If you thought malware could get complicated, what if software that is technically malware actually was doing Vigilante work? That’s what this is. The author is breaking the law to prevent law-breakers from breaking the law so easily in the future.
Attackers Find New Way to Exploit Google Docs for Phishing. This one is interesting in that it’s a fresh approach that security awareness training doesn’t cover, but with proper security gateway controls, this is easily preventable.
Building a WebAuthn Click Farm — Are CAPTCHAs Obsolete? This story just shows that the man vs machine fight has a unknown future as of right now. Any website operator knows the importance of being able to verify it’s a human at the other end. I for one, I’m glad there are engineers thinking about this stuff day and night.
Did you know?
Apple Private Relay has been evaluated thoroughly and I’ve written about it at adamnet.io/privaterelay and feel free to check it out!
For a video version of this, see https://youtu.be/bOA1aIVZ7Qw