Thursday, April 22, 2021
4 C
New York
More

    Latest Posts

    Foxconn drastically downsizes plans for Wisconsin facility

    Foxconn — the Taiwan-based manufacturing large that cranks out Apple’s iPhones amongst different well-liked devices — is drastically scaling again a deliberate $10 billion...

    Introspective, detail-oriented and disaster-chasing AIs – TechCrunch

    Research papers come out far too steadily for anybody to learn all of them. That’s very true within the subject of machine studying, which...

    North Korean hackers return, target infosec researchers in new operation

    In January, Google and Microsoft outed what they stated was North Korean government-sponsored hackers concentrating on safety researchers. The hackers spent weeks utilizing faux Twitter profiles—purportedly belonging to vulnerability researchers—earlier than unleashing an Internet Explorer zero-day and a malicious Visual Studio Project, each of which put in customized malware.

    Now the identical hackers are again, a Google researcher said on Wednesday, this time with a new batch of social media profiles and a faux firm that claims to supply offensive safety companies, together with penetration testing, software program safety assessments, and software program exploits.

    Once extra with feeling

    The homepage for the faux firm is smooth and appears no completely different from numerous actual safety firms all around the world:

    The hackers additionally cooked up greater than a dozen new social media profiles that presupposed to belong to recruiters for safety firms, safety researchers, and varied workers of SecuriElite, the faux safety firm. The work that went into creating the profiles was pretty spectacular.

    Next-level trolling

    My favourite is that this Twitter profile of @seb_lazar, which presumably corresponds to Sebastian Lazarescue, one of many faux researchers working for the faux SecuriElite:

    Security individuals all know that Lazarus is the identify used to establish hackers backed by the North Korean authorities. Developing detailed Twitter and LinkedIn profiles for a researcher along with your faux safety firm, naming him Sebastian Lazarescue, and having him retweeting plenty of top-flight safety researchers—some who work for Google—is next-level trolling.

    Adam Weidemann, a researcher with Google’s Threat Analysis Group, cautions that the hackers’ previous success in luring researchers to web sites internet hosting an IE zero-day means the group ought to be taken critically.

    “Based on their exercise, we proceed to consider that these actors are harmful, and certain have extra 0-days,” he wrote.

    Latest Posts

    Foxconn drastically downsizes plans for Wisconsin facility

    Foxconn — the Taiwan-based manufacturing large that cranks out Apple’s iPhones amongst different well-liked devices — is drastically scaling again a deliberate $10 billion...

    Introspective, detail-oriented and disaster-chasing AIs – TechCrunch

    Research papers come out far too steadily for anybody to learn all of them. That’s very true within the subject of machine studying, which...

    Don't Miss

    Google Earth adds time lapse video to depict climate change

    SAN RAMON, Calif. — The Google Earth app is including a brand new video function that pulls upon practically 4 many years of satellite...

    Robinhood sues Massachusetts over regulatory clampdown

     Online brokerage Robinhood on Thursday sued to invalidate Massachusetts’ recently-adopted fiduciary rule and block state regulators from continuing with prices it encourages inexperienced buyers...

    Mercedes rolls out luxury electric car in duel with Tesla

    Mercedes-Benz guardian Daimler AG on Thursday unveiled a battery-powered counterpart to its high Mercedes luxury sedan as German carmakers ramp up their problem to...

    Stay in touch

    To be updated with all the latest news, offers and special announcements.