Each week I publish interesting articles and ways to improve your understanding of cybersecurity.

Projects

• TryHackMe – Windows Powershell – Complete
• TryHackMe – Linux Shells – In Progress

Videos

Articles

• A US Treasury Threat Intelligence Analysis Designates DOGE Staff as ‘Insider Threat’ – An internal email reviewed by WIRED calls DOGE staff’s access to federal payments systems “the single greatest insider threat risk the Bureau of the Fiscal Service has ever faced.”
• Hacker pleads guilty to SIM swap attack on US SEC X account – Today, an Alabama man pleaded guilty to hijacking the U.S. Securities and Exchange Commission (SEC) account on X in a January 2024 SIM swapping attack.
• Toll booth bandits continue to scam via SMS messages – North American drivers are continuing to be barraged by waves of scam text messages, telling them that they owe money on unpaid tolls.
• Arizona woman pleads guilty to running laptop farm for N. Korean IT workers, faces 9-year sentence – A U.S. citizen pleaded guilty, Tuesday to playing a role in a wide-ranging scheme that allowed multiple North Korean nationals to collect paychecks from more than 300 U.S. companies.
• Data Leaks Happen Most Often in These States — Here’s Why – State-led data privacy laws and commitment to enforcement play a major factor in shoring up business data security, an analysis shows.
• Indiana Man Sentenced to 20 Years in Prison for Hacking, $37 Million Crypto Theft – Evan Light was sentenced to 20 years in federal prison for hacking an investment holdings company and stealing $37 million in cryptocurrency.
• Scammers clone Italian defence minister’s voice with AI in ransom scheme – Entrepreneurs in Italy were targeted by scammers posing as Defence Minister Guido Crosetto, asking for money to free kidnapped journalists.
• Astaroth Phishing Kit Bypasses 2FA to Hijack Gmail and Microsoft Accounts – New Astaroth Phishing Kit bypasses 2FA (two-factor authentication) to steal Gmail, Yahoo and Microsoft login credentials using a reverse proxy, real-time credential capture, and session hijacking.
• Scarlett Johansson warns of “1000-foot AI wave” following viral deepfake – Scarlett Johansson has had enough of non-consensual videos and images created using artificial intelligence (AI) and is urging legislators to clamp down on unauthorized AI usage.
• RansomHub Becomes 2024’s Top Ransomware Group, Hitting 600+ Organizations Globally – The threat actors behind the RansomHub ransomware-as-a-service (RaaS) scheme have been observed leveraging now-patched security flaws in Microsoft Active Directory and the Netlogon protocol to escalate privileges and gain unauthorized access to a victim network’s domain controller as part of their post-compromise strategy.

Podcasts

• Smashing Security 404: Podcast not found