Exploiting vulnerabilities in Cellebrite UFED and Physical Analyzer from an app's perspective

Cellebrite makes software to automate physically extracting and indexing data from mobile devices. They exist within the grey - where enterprise branding joins together with the larcenous to be called "digital intelligence." Their customer list has included authoritarian regimes in Belarus, Russi...

Signal Messenger

Cyber Statecraft Initiative - Atlantic Council

Cybersecurity impacts everyone through systems we interact with everyday, from the most innocuous ATM to the latest iPhone. The Cyber Statecraft Initiative, housed within the Scowcroft Center for Strategy and Security, matches exceptional academic insight and practitioner experience with practical policy solutions to move the levers of contemporary debate in DC and beyond.

Atlantic Council

Russian Foreign Intelligence Service Exploiting Five Publicly Known Vulnerabilities to Com

The National Security Agency (NSA), the Cybersecurity and Infrastructure Security Agency (CISA), and the Federal Bureau of Investigation (FBI) jointly released a Cybersecurity Advisory, " Russian SVR Targets U.S. and Allied Networks," today to expose ongoing Russian Foreign Intelligence Service (SVR) exploitation of five publicly known vulnerabilities.

National Security Agency Central Security Service

Codecov hackers breached hundreds of restricted customer sites: sources

SAN FRANCISCO (Reuters) - Hackers who tampered with a software development tool from a company called Codecov used that program to gain restricted access to hundreds of networks belonging to the San Francisco firm's customers, investigators told Reuters.


Sanctioned Firm Accused of Helping Russian Intelligence Was Part of Microsoft's Early Vuln Access Program - MAPP

A Moscow-based firm that the U.S. Treasury Department put on a sanctions list on Thursday for helping Russian intelligence agencies engage in offensive hacking operations, has long been a partner in a controversial Microsoft program that gives private security vendors advance access to information about vulnerabilities in Microsoft products.


Russian intelligence agency SVR sets up dark web whistleblowing platform | The Record by Recorded Future

The SVR, Russia's main intelligence service, has deployed a system similar to the SecureDrop whistleblowing platform to allow Russians living abroad to safely send anonymous tips via the Tor network about national security threats.

The Record by Recorded Future

The $1 billion Russian cyber company that the US says hacks for Moscow

The hackers at Positive Technologies are undeniably good at what they do. The Russian cybersecurity firm regularly publishes highly-regarded research, looks at cutting edge computer security flaws, and has spotted vulnerabilities in networking equipment, telephone signals, and electric car technology. But American intelligence agencies have concluded that this $1 billion company-which is headquartered in Moscow,...

MIT Technology Review

Vulnerability Spotlight: Remote code execution vulnerabilities in Cosori smart air fryer

Dave McDaniel of Cisco Talos discovered this vulnerability. Blog by Jon Munshaw. Cisco Talos recently discovered two code execution vulnerabilities in the Cosori smart air fryer. The Cosori Smart Air Fryer is a WiFi-enabled kitchen appliance that cooks food with a variety of methods and settings.


U.S. Department of the Treasury

WASHINGTON - Today, the U.S. Department of the Treasury's Office of Foreign Assets Control (OFAC) took sweeping action against 16 entities and 16 individuals who attempted to influence the 2020 U.S. presidential election at the direction of the leadership of the Russian Government.


Nearly half of malware now use TLS to conceal communications

Transport Layer Security has been one of the greatest contributors to the privacy and security of Internet communications over the past decade. The TLS cryptographic protocol is used to secure an ever-increasing portion of the Internet's web, messaging and application data traffic.

Sophos News