News list for " on security"
Former voting machine auditor Michal Pospieszalski has warned that there are still serious security bugs in the US election system that have been discovered since 2006 but have not been fixed. As CEO of blockchain security firm MatterFi, he points out that current voting machines lack end-to-end encryption proofs to prevent votes from being double-counted or verify their legitimacy. Pospieszalski recommends a solution based on David Chaum encryption, adding an anonymous serial number to each bal...
Slow Mist Technology Chief Information Security Officer 23pds said on the X platform that Bybit attackers took away safe owner privileges in a forged signature attack. It is speculated that more than one macOS or Windows computer must have been charged, and the attacker may have stayed on the intranet for a while, able to monitor internal chat, transfer time and other information.
Slow Mist Technology Chief Information Security Officer 23pds issued a warning that the latest version of Phantom wallet may have security bugs, and the victim has explained the risk of Phantom Profile: when a user imports a mnemonic from an unknown source, if the mnemonic has been associated with Phantom Profile, the wallet will automatically log in to the account system, putting the user's assets at risk of theft. According to the victim's description, when a user who does not open the Phantom...
In response to 23pds, the chief information security officer of Slow Mist Technology, reminding the trading tool DeBot to upgrade the security level, the DeBot team responded that the emergency upgrade has been completed as soon as possible. Previously reported, the SlowMist CISO said it recommended that the trading tool Debot upgrade its security level.
Slow Mist Technology's chief information security officer 23pds said on the X platform that the private key of the trading tool Debot was directly "streaking" in the data package, and it was recommended to upgrade the security level.
On January 17, 23pds, the chief information security officer of Slow Mist Technology, said on the X platform that it had recently detected a data breach of a third-party service used by a leading trading platform, involving a large amount of employee information, including email, password and other sensitive data. The relevant situation has been synchronized to the relevant parties for processing. The end of the year is approaching, reminding everyone to be vigilant and pay attention to the safe...
Slow Mist Chief Information Security Officer @im23pds posted a warning on social media, recently monitoring that the Lazarus organization no longer relies solely on video conferencing tools such as Zoom and Meeting as a means of attack, but instead turns to Trojan software disguised as the Willo-Talent recruitment video platform to trick recruiters into downloading and running malicious programs.
SlowMist Chief Information Security Officer @im23pds posted a warning on social media that the email address leaked in 2024 due to the attack on the OpenSea email service provider has been fully disclosed after multiple broadcasts. Please be aware of the relevant risks and be alert to phishing emails and other potential cyber attacks, including email addresses including CZ. Previously reported, on June 30, 2024, according to OpenSea official news, the NFT trading market disclosed its email deliv...
The National Network and Information Security Information Reporting Center has discovered a number of foreign malicious websites and malicious IPs, which are used by foreign hacker organizations to continuously launch cyber attacks against China and other countries. These malicious websites and IPs are closely related to a specific Trojan or Trojan program control terminal. A malicious address is associated with a Nanocore virus family sample, which can be expanded to achieve various malicious f...
Slow Mist Chief Information Security Officer 23pds said on the X platform that in the past two months, North Korean hackers have continued to impersonate Hack VC, SevenX Ventures and other institutions or individuals to commit conference fraud. Please be vigilant against the risks.
