This week on Lock and Code, we discuss the top security headlines generated right here on Labs and around the Internet. In addition, we talk to Samy Kamkar, chief security officer and co-founder of Open Path, about the digital vulnerabilities in our physical world.
If you look through a recent history of hacking, you'll find the clear significance of experimentation. In 2015, security researchers hacked a Jeep Cherokee and took over its steering, transmission, and brakes. In 2019, researchers accessed medical scanning equipment to alter X-ray images, inserting fraudulent, visual signs of cancer in a hypothetical patient.
Experimentation in cybersecurity helps us learn about our vulnerabilities.
Today, we're discussing one such experiment—a garage door opener called “Open Sesame," developed by Kamkar himself.
Tune in to hear about the "Open Sesame," how it works, what happened after its research was presented, and how the public should navigate and understand a world rife with potential vulnerabilities on the latest episode of Lock and Code, with host David Ruiz.
We cover our own research on:
- Scammers banking on the KnowBe4 security awareness training brand to get people to hand over their work credentials and other personally identifiable information (PII).
- Sandboxing—what it is, what should we know about it, and why its an essential tool in malware detection and analysis.
- Taurus, a recently developed credential stealer now being spread through malvertising campaigns.
Other cybersecurity news:
- Threat intelligence researchers from Group-IB has outed a new Russian-speaking ransomware gang called OldGremlin, and it has been targeting big companies in Russia. (Source: CyberScoop)
- Tyler Technologies, a product vendor of US states and counties during election seasons, recently admitted that an unknown party has hacked their internal systems. (Source: Reuters)
- Graphika unearthed a campaign they called Operation Naval Gazing, which is aimed at supporting China’s territorial claim in the South China Sea. (Source: TechCrunch)
- As the US elections draw near, the FBI and CISA warn voters against efforts and interference from foreign actors potentially spreading disinformation regarding election results. (Source: The Internet Crime Complaint Center (IC3))
- Activision, the video game publisher for Call of Duty (CoD), denied that it had been hacked after reports that more than 500,000 accounts have had their login information leaked. (Source: Dexerto)
Stay safe, everyone!