March 7, 2025
March 7, 2025
Multi-factor authentication works. From the indictment: 1 of the Chinese hacking teams was unsuccessful in breaking into email accounts of Defense Intelligence Agency & Commerce employees. The indictment listed MFA as a factor in the Commerce case:https://t.co/BRoS7jlxAZ
— Sean Lyngaas (@snlyngaas) March 6, 2025
A few interesting details from @Mandiant report on @safe wallet hack leading to @Bybit_Official breach.
— Tal Be'ery (@TalBeerySec) March 6, 2025
1. The initial access seems to be a social engineering a developer to "help" with a Docker FinTech project, as described by @SlowMist_Team @im23pds https://t.co/tqv9YAcVh3 pic.twitter.com/2G6EAYU1PJ
https://www.theregister.com/2025/03/05/apple_reportedly_ipt_complaint/
Weekly Research Round-Up 🗞️ EC #62@Grimdoomer drops his Xbox 360 exploit
— exploits.club (@exploitsclub) March 6, 2025
Deterministic iOS exploitation from @alfiecg_dev @Doyensec continues hacking while cruising
Nginx exploitation notes
+ new job postings and MORE 👇https://t.co/l43FBb2UG0
this bit is interesting as well
— J⩜⃝mie Williams (@jamieantisocial) March 6, 2025
"This functionality allows threat actors to monitor browsing activity and interact with an active browser instance. These files can also open sensitive data files, indicating their role in facilitating post-exploitation activities." https://t.co/e0akPTAqga pic.twitter.com/sJWLr2wato
DOGE thought that "black site" was code for a DEI project. https://t.co/QYaue4MmfY
— Robert A. George (@RobGeorge) March 6, 2025
— Safe.eth (@safe) March 6, 2025
Here are the Q's I put in the eth security community! pic.twitter.com/tBKAKA5HBS
— AndrewMohawk⁽ⁿᵘˡˡ⁾ (@AndrewMohawk) March 6, 2025
Threat actor used an open webcam as a bounce into a network and deployed ransomware via SMB.
— thaddeus e. grugq (@thegrugq) March 7, 2025
I’m still waiting for this to happen with smart lightbulbs or toasters.
Internet Of Threats https://t.co/RftPc6VRGg
Reason #2305928 why @ThinkstCanary works.
— haroon meer (@haroonmeer) March 7, 2025
Because attackers on your network give you a strong, clear signal when they are there... https://t.co/SWcyOXhES5