Researchers: Vulnerabilities Could Allow Remote Code Execution, Files Access
Researchers at CyberMDX have uncovered two significant vulnerabilities in certain Dell Wyse thin client devices that, if exploited, could allow threat actors to remotely run malicious code and access files on affected devices.
EU Launches Decryption Tool for Law Enforcement
Move Seen as Alternative to Weakening Encryption
Europol, the European Union’s law enforcement agency, and the European Commission are launching a new decryption platform to help law enforcement agencies decrypt data that has been obtained as part of a criminal investigation, a move seen as an alternative to weakening encryption.
Other Tech Firms Back Facebook’s Lawsuit Against NSO Group
Microsoft, Google, Cisco and VMware File a Brief in Spyware Case
Several tech giants, including Microsoft, Google, Cisco and VMware, have filed a brief backing Facebook’s lawsuit against Israel-based spyware firm NSO Group, which has been accused of hacking into Facebook-owned WhatsApp’s instant messaging app to enable spying by the company’s clients.
Police Dismantle Cybercrime ‘Bulletproof Hosting Service’
Authorities Shut Down VPN That Supported Illegal Operations
The FBI, Europol and other law enforcement agencies shut down a virtual private network Tuesday that was providing a “bulletproof hosting service” that allowed cybercriminals to conduct illegal operations, including ransomware attacks, while remaining hidden from police.
Investigating the Navalny Poisoning
Bellingcat has investigated the near-fatal poisoning of Alexey Navalny by the Russian GRU back in August. The details display some impressive traffic analysis. Navalny got a confession out of one of the poisoners, displaying some masterful social engineering.
Lots of interesting opsec details in all of this.
Hong Kong’s Hutchison Group, which runs mobile carrier ‘3’, protests as USA puts it on new China ban list
Trump administration is behind the times: used old name for Chinese company Hutchison sold ages ago
The CK Hutchison Group, the Hong-Kong-based conglomerate that operates the “3” mobile brand and maintains plenty of other telecoms investments, wants to clear its name after it appeared on a new list of companies the USA designates as military end users to which US companies cannot export.…
After 11 years, Australia declares its national broadband network is ‘built and fully operational’
Those 35,000 connections that aren’t built? Celebrate the 11.86 million that were, says Minister
Australia has declared its national broadband network (NBN) is “built and fully operational”, ending a saga that stretches back to the mid-2000s.…
SolarWinds Campaign Focuses Attention on ‘Golden SAML’ Attack Vector
Adversaries that successfully execute attack can achieve persistent anytime, anywhere access to a victim network, security researchers say.