Cryptocurrency tracing has become an important tool for police investigation everything from fraud and ransomware to child abuse. But its accuracy could soon be put to the test.
This week, we reported about new court filings from the legal team representing Roman Sterlingovwho served 15 months in prison, allegedly laundered $336 million in cryptocurrency as the alleged owner and operator dark-web crypto mixer Bitcoin Fog. Not only did Sterlingov assert his innocence, but his defense attorney claimed that the blockchain analysis used as evidence that Sterlingov set up the Bitcoin Fog was erroneous.
Elsewhere, we Highlights Microsoft’s new supported Morse bug hunting team, which aims to catch vulnerabilities in the company’s software before they cause problems for the company’s 1 billion users. We dive in spectacular failure of a new post-quantum encryption algorithm. We have listed them all major security update you need to update from Julyand we details all the data Amazon’s Ring camera collects about you.
Finally, a new report from cybersecurity firm Mandiant shows a The attack on Albania’s government shows signs of an Iranian state-sponsored attack—A notable escalation in the history of cyberwarfare, when Albania was a member of NATO. And we made a Slack bug that exposed hashed passwords for 5 years.
But that’s not all. Every week we highlight news that we don’t cover in depth. Click on the title below to read the full story. And it’s safe out there.
This is not an experiment. According to the Federal Emergency Management Agency and security researcher who discovered the vulnerability, the software used to transmit emergency alerts issued by the US government on television and radio had holes in it. The vulnerability could allow an attacker to broadcast false messages. The company that makes the software, Digital Alert Systems, has released the patches, and FEMA has warned TV and radio networks using the software to update their equipment immediately. Of course, patches may not be widely applicable, putting the system at risk. There is no evidence that attackers have exploited the vulnerabilities so far. But consider mayhem false emergency warnings can causewe’ll just have to hope that it stays that way.
One major crypto theft in a week would be bad, and this week has seen two thefts. First, thanks to a flaw in the Nomad bridge—a type of application that allows users to move digital tokens across blockchains. hacker’s main target– “hundreds“Of those who can steal a collective $190 million in electronic money. Nomad now speak that anyone who returns 90 percent of the money they swiped will be considered a “white hat” and can keep the remaining 10 percent as a bonus. Some 22 million dollars The stolen money has been recovered so far.
The second crypto hack of the week appeared just a day later, on Tuesday night, with hackers pulling out about 8,000 “hot” wallets (internet-connected cryptocurrency storage applications) connected to the Solana ecosystem, allowing them stolen about $5 million worth of cryptocurrency. Solana said in a tweet that the mining was caused by a bug in “software used by some software wallets popular among network users,” not the Solana network or its cryptography.
It’s one thing that needs to be said for what NSO Group spyware can do, but it’s quite another thing you have to witness for yourself. Israeli reporters Haaretz get your hands on never-before-seen screenshots of Syaphana prototype of NSO’s now infamous Pegasus spyware, have kept much of the interface and functionality of its predecessor. The screenshot shows that operators have the ability to access call and message logs and remotely activate the camera and microphone to turn an infected device into a real-time spying tool.
The government’s use of Pegasus and other spyware has led to a growing number of scandals, particularly in Europe. Yesterday, Panagiotis Kontoleon, head of the Greek intelligence service, and Grigoris Dimitriadis, secretary general of the prime minister’s office, resignation. Their departure follows a complaint filed by Nikos Androulakis, head of the socialist party PASOK, who alleges that his phone was targeted by the Predator spyware run by Cytrox, based in North Macedonia, based in neighboring North Macedonia, targeted. However, the Greek prime minister’s office still insists that the resignation and the spyware allegations are not connected. “In any case, it has nothing to do with Predator (spyware), which neither he nor the government have any connection with, as has been stated,” it said in a statement. Father.
Remember a few months ago when everyone went crazy with DuckDuckGo? Good, the thing that you were angry about now fixed (mostly), by company. In May, security researcher Zach Edwards discovered that DuckDuckGo’s privacy browsers — not its search engine, for which the company is better known — allow certain tracking scripts Microsoft’s third party. DuckDuckGo, which has a partnership with Microsoft, says it has expanded 3rd party tracker load protection includes 21 more domains, thus blocking the majority of Microsoft tracking scripts on websites accessed through its mobile DuckDuckGo Privacy Browser or while using the Privacy Essentials extension, Can be used with all major browsers. However, DuckDuckGo will still allow advertisers to track clicks from DuckDuckGo through scripts from the bat.bing.com domain. Is it perfect? No — even DuckDuckGo admits it. But it’s still a privacy improvement over mainstream browsers and search engines.
