Iranian APT Lures Defense Contractor in Catfishing-Malware Scam
Fake aerobics-instructor profile delivers malware in a supply-chain attack attempt from TA456.
Government
Novel Meteor Wiper Used in Attack that Crippled Iranian Train System
A July 9th attack disrupted service and taunted Iran’s leadership with hacked screens directing customers to call the phone of Iranian Supreme Leader Khamenei with complaints.
CISA’s Top 30 Bugs: One’s Old Enough to Buy Beer
There are patches or remediations for all of them, but they’re still being picked apart. Why should attackers stop if the flaws remain unpatched, as so many do?
Authorities opened an investigation into the secretive Israeli security firm.
Expected cyberattacks on Tokyo Olympics likely include attempts to hijack video feeds, the Feds warn.
Researchers are skeptical that much will come from calling out China for the Microsoft Exchange attacks and APT40 activity, but the move marks an important foreign-policy change.
Fourteen world leaders were among those found on list of NSO believed targets for its Pegasus spyware.
Podcast: Can a new SIM card and prepaid service from an MVNO help? Former spyware insider, current mobile white hat hacker Adam Weinberg on how to block spyware attacks.
The secretive Israeli firm was allegedly storing 50,000+ mobile phone numbers for activists, journalists, business executives and politicians — possible targets of iPhone and Android hacking.
Candiru, aka Sourgum, allegedly sells the DevilsTongue surveillance malware to governments around the world.
