-- Leo's gemini proxy
-- Connecting to gemini.tuxmachines.org:1965...
-- Connected
-- Sending request
-- Meta line: 20 text/gemini;lang=en-GB
Tux Machines
Posted by Roy Schestowitz on Mar 26, 2023,
updated Mar 26, 2023
> Engines in OpenSSL have a long history of providing new algorithms (Russian GOST hash/signature etc) but they can also be used to interface external crypto tokens (pkcs#11) or even key managers like my own TPM engine. I’ve actually been using my TPM2 engine for nearly a decade so that I no longer have to have an unprotected private keys anywhere on my laptops (including for ssh). The purpose of this post is to look at the differences between Providers and Engines and give advice on the minimum necessary Provider implementation to give back all the Engine functionality. So this post is aimed at Engine developers who wish to convert to Providers rather than giving user advice for either.
> The hijacking of YouTube accounts to promote bogus cryptocurrency schemes is nothing new. At Netcraft, we’ve previously blogged about the scale of cryptocurrency scams, and we saw attacks on at least 2,000 distinct IP addresses every month in the past year. Cryptocurrency-themed attacks remain popular with cybercriminals, but yesterday we had the opportunity to observe the recent high-profile attack on LinusTechTips as it unfolded.
> a well faked Mail Attachment.pdf.zip was opened by a team member, infecting a (Windows 10?) PC in the background browser login tokens in the form of cookies & browser passwords were exfiltrated mail attachments are STILL the #No1 threat...
> In case you don't have enough to worry about, people are hiding explosives--actual ones--in USB sticks:
> Software maker Fortra told its corporate customers that their data was safe — even when it wasn’t — following a ransomware attack on its systems, TechCrunch has learned.
> … TechCrunch has heard from two victim organizations that only learned that data had been exfiltrated from their GoAnywhere systems after they each received a ransom demand. Both organizations had been previously told by Fortra that their data was unaffected by the ransomware attack.
> Hackers have managed to steal $500,000 worth of tokens from layer-2 scaling solution Arbitrum’s March 23 airdrop. The theft was carried out through the use of vanity addresses, customized cryptocurrency addresses that contain specific words or phrases chosen by the user to make them more personal and identifiable. While vanity addresses offer a level of personalization and identification, their safety is questionable, as they can compromise the security of users’ private keys.
> The hacker compiled vanity addresses that were eligible to receive ARB tokens and generated similar addresses using vanity address generators. This allowed them to redirect the airdropped tokens to their own addresses, making it impossible for the original owners to claim their ARB tokens. Several crypto users have expressed sadness about their stolen ARB tokens, with many being unaware of the reason behind the loss and having no idea what to do about it.
> Some United States Postal Service workers in the eastern North Carolina and Jacksonville area are missing paychecks due to a cyber attack.
> The mail service is conducting an investigation, but employees are unhappy with the outcome so far, they said.
> Larisa Covington, from Jacksonville, said in February she was expecting her direct deposit to hit her account and realized her banking information had changed to one she had never heard of.
> An affidavit by FBI Special Agent John Longmire in support of the criminal complaint against Conor Fitzpatrick, aka “Pompompurin” (Pom), the owner of BreachForums, states that since “on or around March 2022,” HHS-OIG investigated an administrator and certain members of BreachForums. The affidavit does not explain why HHS-OIG started investigating Pom or some of the new forum’s members. There had never been any public statement suggesting that HHS-OIG had been involved in investigating or seizing RaidForums, BreachForum’s predecessor, which had been seized in February. So why did HHS-OIG start investigating Pom and some BreachForum members in March 2022?
-- Response ended
-- Page fetched on Thu Jun 13 09:21:06 2024