Digital Ocean dumps Mailchimp after attack leaked customer email addresses

Somebody went after crypto-centric companies’ outsourced email but the damage was felt in the cloud Junior cloud Digital Ocean has revealed that some of its clients’ email addresses were exposed to attackers, thanks to an attack on email marketing service Mailchimp.…

37m

It's 2022 and there are still thousands of public systems using password-less VNC

Let alone the ones with 123456 to login. How sophisticated do attackers really need to be? Thousands of machines on the public internet can be remotely controlled via VNC without any authentication, a cybersecurity vendor has reminded us this month.…

3h

Oh Deere: Farm hardware jailbroken to run Doom

Corn-y demo heralded as right-to-repair win At DEF CON 30 on Saturday, an Australian who goes by the handle Sick Codes showed off a way to fully take control of some John Deere farming machine electronics to run first-person shooter Doom.…

5h

CIA accused of illegally spying on Americans visiting Assange in embassy

Lawyers, journalists sue super-snoop agency and Spanish security biz The CIA illegally spied on US citizens while they visited WikiLeaks publisher Julian Assange inside the Ecuadorian embassy in London, a lawsuit filed today has claimed.…

10h

Dutch authorities arrest 29-year-old dev with suspected ties to Tornado Cash

The arrest comes days after US Treasury levies sanctions against the crypto mixing service Dutch authorities have arrested a software developer suspected of working with Tornado Cash, a cryptocurrency mixing service that only two days earlier was sanctioned by the US government for allegedly laundering money for ransomware operators and other cybercriminals.…

12h

Indian military ready to put long-range quantum key distribution on the line

Local startup can make it happen over 150km India's military has celebrated the nation's Independence Day by announcing it will adopt locally developed quantum key distribution (QKD) technology that can operate across distances of 150km.…

23h

Black Hat and DEF CON visitors differ on physical risk management

COVID, flood surfing, crowds – what to pick? Black Hat  As last week's hacker summer camps wound down it's clear that attendee numbers are still well down on the pre-COVID days, although things are recovering.…

1d

Elon Musk wrote article for China's internet regulator, hinted at aged care robots

PLUS Vietnam's massive infosec push; Philippines telco fight; Australia dumps COVID app; and more Asia in Brief  Elon Musk has written an article for the Cyberspace Administration of China's flagship magazine.…

1d

Ukraine's cyber chief comes to Black Hat in surprise visit

Tl;DR - the news isn't good Black Hat In Brief  Victor Zhora, Ukraine's lead cybersecurity official, made an unannounced visit to Black Hat in Las Vegas this week, where he spoke to attendees about the state of cyberwarfare in the country's conflict with Russia. The picture Zhora painted was bleak.…

2d

Let there be ambient light sensing, without fear of data theft

Six years on web devs finally settle on sensor privacy defenses Six years after web security and privacy concerns surfaced about ambient light sensors in mobile phones and notebooks, browser boffins have finally implemented defenses.…

3d