CISA Has a New Road Map for Handling Weaponized AI
In its plans to implement a White House executive order, CISA aims to strike a balance between promoting AI adoption for national security and defending against its malicious use.
Security / Cyberattacks and Hacks
The Mirai Confessions: Three Young Hackers Who Built a Web-Killing Monster Finally Tell Their Story
Netflix, Spotify, Twitter, PayPal, Slack. All down for millions of people. How a group of teen friends plunged into an underworld of cybercrime and broke the internet—then went to work for the FBI.
Sandworm Hackers Caused Another Blackout in Ukraine—During a Missile Strike
Russia’s most notorious military hackers successfully sabotaged Ukraine’s power grid for the third time last year. And in this case, the blackout coincided with a physical attack.
This Cheap Hacking Device Can Crash Your iPhone With Pop-Ups
Plus: SolarWinds is charged with fraud, New Orleans police face recognition has flaws, and new details about Okta’s October data breach emerge.
This Cryptomining Tool Is Stealing Secrets
Plus: Details emerge of a US government social media-scanning tool that flags “derogatory” speech, and researchers find vulnerabilities in the global mobile communications network.
Okta’s Latest Security Breach Is Haunted by the Ghost of Incidents Past
A recent breach of authentication giant Okta has impacted nearly 200 of its clients. But repeated incidents and the company’s delayed disclosure have security experts calling foul.
They Cracked the Code to a Locked USB Drive Worth $235 Million in Bitcoin. Then It Got Weird
Stefan Thomas lost the password to an encrypted USB drive holding 7,002 bitcoins. One team of hackers believes they can unlock it—if they can get Thomas to let them.
The 23andMe User Data Leak May Be Far Worse Than Believed
Plus: IT workers secretly funnel money to North Korea, a court in the US upholds keyword search warrants, and WhatsApp gets a passwordless upgrade on Android
HTTP/2 Rapid Reset: A New Protocol Vulnerability Will Haunt the Web for Years
Dubbed “HTTP/2 Rapid Reset,” the flaw requires issuing patches to virtually every web server around the world before the problem can be eradicated.
How the FTX Thieves Have Tried to Launder Their $400 Million Haul
Whoever looted FTX on the day of its bankruptcy has now moved the stolen money through a long string of intermediaries—including a service owned by FTX itself.