This episode focuses on a vulnerability within the industrial sector that is essentially a product of progress. The enhanced data sharing capabilities and operational efficiencies that have been realized in establishing an estimated 20 billion device connections in manufacturing enterprises around the globe have come at a price for some.
In the sector’s zeal to push forward with digital transformation plans and realize the benefits of automation, software and data-driven production schemes, all of these connection points offer a soft spot for hackers to probe and pinpoint in launching various types of attacks.
Joining us to discuss this evolving situation and offer some in-depth analysis from his company’s recent report – The API Security Disconnect – is Filip Verloy, Technical Evangelist at Noname Security.
For more information on the work Noname Security does, you can go to nonamesecurity.com.
To catch up on past episodes, you can also check Security Breach out wherever you get your podcasts, including Apple, Amazon and Overcast.
https://spinsafe.com/wp-content/uploads/2022/10/ep21tn.634efa4b7be15.png6731200SecureTechhttps://spinsafe.com/wp-content/uploads/2024/01/SS-Logo.svgSecureTech2022-10-22 05:30:082022-10-22 05:30:08Security Breach: The Hack You Helped Create
Rhonda Kampert (left) used her recovered Bitcoin to help her daughter, Megan, through university
Rhonda Kampert was an early adopter.
She bought six Bitcoins in 2013, when they cost about $80 (£60) each, and were the chatter of niche corners of the internet.
“I used to listen to a radio talk show and they started talking about crypto and Bitcoin so I got interested,” she says.
“Back then buying it was so complicated but I fumbled my way through the process and bought my coins.”
Rhonda, who lives in the US state of Illinois, spent some of her digital money over the next year or so, then forgot about it.
But when she saw headlines late in 2017 announcing that the value of Bitcoin had risen to nearly $20,000 she excitedly went to her computer to log in and cash out.
‘It was awful’
Except there was a problem. She was missing some of the login details for her Bitcoin wallet – a computer program or device that stores a set of secret numbers, or private keys.
“I realised then that my printout had missed some digits on the end of my wallet identifier. I had a piece of paper with my password but no idea what my wallet ID was,” Rhonda says.
“It was awful. I tried everything for months but it was hopeless. So I kind of gave up.”
Fast forward to last spring and the value of Bitcoin soared above $50,000 – more than 600 times what Rhonda had paid eight years earlier.
Filled with a renewed determination to find her coins, she hit the internet and came across father and son crypto treasure hunters Chris and Charlie Brooks.
Charlie and Chris Brooks say they have recovered Bitcoins worth a seven-figure sum in the past year
“After talking to the guys online for a while I trusted them enough to hand over all the details I could remember. Then I waited,” she says.
“Eventually we sat down together on a video call and watched everything happen. Chris opened the wallet and there it was. I just felt so relieved!”
Rhonda’s wallet of three-and-a-half Bitcoin was at that point worth $175,000.
“I gave Chris and Charlie their 20%, then the first thing I did was take out $10,000 worth of my coins to help my daughter Megan through college.”
She says she’s keeping the rest locked away in a hardware wallet – a…
https://spinsafe.com/wp-content/uploads/2022/02/f03dc331e5852ee095858a4d9a063478.jpeg549976SecureTechhttps://spinsafe.com/wp-content/uploads/2024/01/SS-Logo.svgSecureTech2022-02-10 07:30:072022-02-10 07:30:07‘Hackers helped me find my lost Bitcoin fortune’
Loujain al-Hathloul, a prominent Saudi political activist who pushed to end a ban on women driving in her country, is suing three former U.S. intelligence and military officials she says helped hack her cellphone so a foreign government could spy on her before she was imprisoned and tortured.
The nonprofit Electronic Frontier Foundation announced Thursday that it had filed a lawsuit in U.S. federal court on al-Hathloul’s behalf against former U.S. officials Marc Baier, Ryan Adams and Daniel Gericke, as well as a cybersecurity company called DarkMatter that has contracted with the United Arab Emirates.
In the lawsuit, al-Hathloul alleges that the trio oversaw a project for DarkMatter that hacked into her iPhone to track her location and steal information as part of broader surveillance efforts targeting dissidents within the UAE and its close ally Saudi Arabia. She said the hacking of her phone led to her “arbitrary arrest by the UAE’s security services and rendition to Saudi Arabia, where she was detained, imprisoned, and tortured.”
Saudi women’s rights activist Loujain al-Hathloul is seen in this undated handout picture.
Handout . / REUTERS
“Companies that peddle their surveillance software and services to oppressive governments must be held accountable for the resulting human rights abuses,” said EFF Civil Liberties Director David Greene.
DarkMatter assigned her the codename of “Purple Sword,” the lawsuit says, citing a 2019 investigation by Reuters that first detailed the hacking of al-Hathloul.
The lawsuit is the latest legal challenge to the secretive private cyber-surveillance industry, which often sells pricey hacking services to authoritarian governments that are used to secretly break into phones and other devices of activists, journalists, political opponents and others. Tech giant Apple filed a lawsuit last month against Israel’s NSO Group seeking to block the world’s most infamous hacker-for-hire company from breaking into Apple’s products, like the iPhone.
Baier, Adams and Gericke admitted in September to providing sophisticated computer hacking…
https://spinsafe.com/wp-content/uploads/2021/12/2021-12-09t192533z-1551442202-rc27br9yrwxy-rtrmadp-3-uae-spy-lawsuit.jpg6301200SecureTechhttps://spinsafe.com/wp-content/uploads/2024/01/SS-Logo.svgSecureTech2021-12-10 13:00:052021-12-10 13:00:05Saudi activist Loujain al-Hathloul files lawsuit claiming 3 former U.S. officials helped hack her iPhone before she was imprisoned, tortured
New Delhi: The Intelligence Fusion and Strategic Operations (IFSO) unit of the Delhi Police has busted a “module” that has allegedly been taking online IT certification exams on behalf of students and professionals aiming to boost their career prospects in IT companies. So far, the police have arrested three people in connection with the money-for-marks scheme.
According to the police, the masterminds of the high-tech cheating racket are a father-and-son duo, Rajesh Kumar Shah and Deep Shah, who run an IT coaching institute in Ahmedabad, Gujarat. The two allegedly hired a Delhi-based technical expert, Aklakh Alam, to take the exams remotely for clients.
“We received intel that several services are available on the dark web, in which hackers claim they can get the desired score by hacking into the device used by the examinee,” Deputy Commissioner of Police (DCP) K.P.S. Malhotra told ThePrint. Another police source said that the accused charged around Rs 9,000-10,000, and gave exams for about 200 clients.
The trio apparently specialised in cracking various online tech certification exams. Getting a high score in these competitive exams can help IT aspirants get better placements, DCP Malhotra told ThePrint.
“Various international certifications are prerequisites to upgrade technical skills. These certifications are being provided by a number of reputed organisations — there are certifications from Cisco, CompTIA, EC-Council… these play a crucial role in the selection and pay grade of a candidate in the IT sector as well in other industries,” the officer said. He added that high scores in these competitive exams can make a big difference to the career progress of IT aspirants.
“These certifications are taken up worldwide, by huge IT companies like Microsoft, Google etc and higher packages are given to the aspirants,” another police source said.
“They have been running this scam since the Covid-19 outbreak, as all examinations shifted to an online mode. The latest intel we received was [about the] Pearson IT certification,” the source added.
https://spinsafe.com/wp-content/uploads/2021/11/AARhW0r.img.jpeg6301200SecureTechhttps://spinsafe.com/wp-content/uploads/2024/01/SS-Logo.svgSecureTech2021-11-30 15:00:072021-11-30 15:00:07How father-son duo helped techies ‘hack exams’, earn top scores for big payday
![](https://www.bing.com/news/{"default":{"load":"default","w":"80","h":"45","src":"//img-s-msn-com.akamaized.net/tenant/amp/entityid/AARhW0r.img?h=450&w=799&m=6&q=60&o=f&l=f&x=508&y=241"},"size3column":{"load":"default","w":"62","h":"35","src":"//img-s-msn-com.akamaized.net/tenant/amp/entityid/AARhW0r.img?h=351&w=624&m=6&q=60&o=f&l=f&x=508&y=241"},"size2column":{"load":"default","w":"62","h":"35","src":"//img-s-msn-com.akamaized.net/tenant/amp/entityid/AARhW0r.img?h=351&w=624&m=6&q=60&o=f&l=f&x=508&y=241"}})