Tags → #stories

A new keylogger attributed to the North Korean group Andariel has been disclosed, targeting U.S. organizations and employing sophisticated techniques to log keystrokes and mouse activity.

pdf-parser.py is a command-line utility designed for parsing and analyzing PDF documents, essential for digital forensic analysis and cybersecurity investigations.

A recent dissertation by Tiancheng Xie from UC Berkeley presents four new zero-knowledge proof protocols—Libra, deVirgo, Orion, and Pianist—designed to improve the efficiency and scalability of proof generation for privacy-preserving transactions.

The Big Sleep team, a collaboration between Google Project Zero and Google DeepMind, has discovered a real-world vulnerability in the SQLite database engine, marking the first instance of an AI agent identifying an exploitable memory-safety issue in widely used software.

The Cybersecurity and Infrastructure Security Agency (CISA) is inviting public feedback on its upcoming Product Security Bad Practices guidance, which aims to enhance software security in critical infrastructure.

The Colorado Department of State is updating voting system passwords following the accidental online posting of a spreadsheet containing partial passwords, with no immediate security threat identified.

A recent analysis has revealed a cultural divide between IT and OT cybersecurity organizations in critical infrastructure, highlighting the need for improved collaboration and understanding of unique challenges faced by operational technology systems.

Guardio Labs has discovered a significant vulnerability in the Opera browser that allows malicious extensions to exploit Private APIs, potentially leading to actions such as screen capturing and account hijacking.

Concerns regarding the privacy practices of Internet Service Providers (ISPs) have arisen as they may collect and sell user data, track internet usage, and collaborate with government agencies, prompting users to consider alternatives like personal routers for enhanced security.

Microsoft has issued a warning about the Quad7 botnet, linked to Chinese threat actors, which is primarily used for password-spray attacks targeting online accounts and various devices.