Category: Class Posts

If You Work For GA Tech, Monitor or Freeze your Credit Now There’s some news that isn’t in the main news yet, several employees of GA Tech are reporting credit monitoring alerts that their social security number was leaked in conjunction with their emails. Many people are getting alerts about their information being found on…

Hi folks, it’s another week of CS 6035 Intro to Information Security! I’m going to talk about a recent CVE and then rehash a post from Spring 23 about the NSO Group Pegasus malware used by governments to spy on journalists, among other things. Chrome Zero-Day Announced Last Week On Wednesday this came out: A…

The guy on the left is the CEO of Decentraland. We’ll get to that soon. It’s a digital real estate platform. UPDATE: Yikes just in time https://www.wsj.com/finance/currencies/the-worlds-biggest-crypto-firm-is-melting-down-338b8e17?mod=hp_lead_pos4 You have free access to WSJ through GA Tech https://education.wsj.com/search-students/?mod=wsjedu&user_type=students The “Web3” link below, at first I just posted it without paying much attention to it. It’s a…

This is a sad story, and an object lesson to take malware threats seriously. Ransomware Wipes Out Data Access for ‘Majority’ of Cloud Provider’s Customers For our top story, we have this Danish company CloudNordic, a small cloud services provider. One day they moved some servers, that’s where they think the problem got started. I…

The U.S. Cybersecurity and Infrastructure Security Agency (CISA), way back in November, 2021, issues a “binding operational directive” that requires operators to patch against all known bad stuff. There’s a deadline coming up August 10 for a couple of “Common Vulnerabilities and Exposures” (CVEs). I guess it’s no surprise that Cold Fusion websites are still…

This may not affect you but you might want to check if you’re using an Android file management app by “tom wang.” Between two such utilities, there are 1.5 million known installs. The apps are still listed on the Google Play store: Apps with 1.5M installs on Google Play send your data to China One…

We have a duo of Twitter articles. First is the news about needing to sign in: Twitter now forces you to sign in to view tweets It’s what it says. Notably: Apparently when Twitter locked things down, it caused some users to get stuck in a repeated login loop. The article recounts some other recent…

This seems like a critical issue, it’s about Mario Brothers! Trojanized Super Mario game used to install Windows malware Are you on a gaming forum and someone has a link for Super Mario 3:Mario Forever? Watch out! It’s another Monero mining attack, in addition to the proper Mario Brothers game, there are two executables installed,…

Today I’m linking to the Wired Magazine article, I’m sure there’s plenty of sources. Wired is pretty interesting, it’s really an old magazine, and they are always pushing a $5 one year subscription. It’s worth it, in my opinion. The US Is Openly Stockpiling Dirt on All Its Citizens We’ve known at least since Ed…

Have you heard of FTX? One of the subjects I like to follow is the dark side of crypto. Not Cryptograpy, but crypto currrencies! Here’s another bit of fallout from the FTX scandal. Temasek is the Singaporean entity responsible for investing state funds. I suppose we could call this a “sovereign wealth fund”. They had…