Collaborate Disseminate
Nemesis Market, a notorious corner of the darknet beloved by cybercriminals and drug dealers, has been suddenly shut down after German police seized control of its systems.
Read more in my article on the Tripwire State of Security blog. Continue reading Notorious Nemesis Market zapped by video game-loving German police
Context
I’m designing a P2P network with a central Discovery Service (providing core info about every platform in the network) but no centralised Auth server.
OAuth 2.0 and OpenID Connect will be used for authorisation between platforms in… Continue reading Discovery Service as a Trust Anchor for P2P Network?
The widely reported story last week that 1.5 million smart toothbrushes were hacked and used in a DDoS attack is false.
Near as I can tell, a German reporter talking to someone at Fortinet got it wrong, and then everyone else ran with it without readin… Continue reading No, Toothbrushes Were Not Used in a Massive DDoS Attack
We thought it was all over… but a Swiss newspaper has come out fighting, blaming Fortinet for spreading untruths about a toothbrush botnet.
Will Fortinet return for Round 4, or is this a knockout punch? Continue reading Round 3 in the toothbrush DDoS debacle!
After hundreds of media outlets worldwide repeated the false claim that a botnet of three million toothbrushes attacked a Swiss company, the cybersecurity firm at the centre of the story has now issued a statement. Continue reading Tooth be told: Toothbrush DDoS attack claim was lost in translation, says Fortinet
No, three million smart toothbrushes didn’t launch a DDoS attack against a Swiss company. Continue reading The toothbrush DDoS attack: How misinformation spreads in the cybersecurity world
China-sponsored attacks likened to “placing bombs in water treatment facilities, and power plants”.
Is it just me, or does this sound like the plot of a Mission Impossible movie? Continue reading China is hacking Wi-Fi routers for attack on US electrical grid and water supplies, FBI warns
Fancy a high-profile cybersecurity job? Here’s one for you.
Role: Cyber Security Manager.
Location: Buckingham Palace. Continue reading Be the Royal Family’s Cybersecurity Manager, and get a cut-price honey dipper!
I am trying to understand the implication of CVE-2023-40791. The CVE reads:
"Linux kernel before 6.4.12 fails to unpin pages in certain situations".
NetApp says this could lead to modification of data or denial of service. Is t… Continue reading What are the security concerns from failing to unpin memory?
As we know, a deauth (de-authentication) attack is an attack in which an attacker crafts a forged deauthentication frame, and sends it to the client as if coming from the Access Point, and then the client (victim) will be deauthenticated, … Continue reading Is the Wi-Fi deauthentication attack in the wikipedia article correct? [closed]