Dark mode: ON

Infosec Decoded Season 3 #27: China Seethes

With @kaitlynguru@infosec.exchange and @sambowne@infosec.exchange

Apr 4, 2023

Kaitlyn Handelman

Australian government bans TikTok on government devices

Novel social engineering attacks soar 135% amid uptake of generative AI

Fake Friends: Leak Reveals Israeli Firms Turning Social Media Into Spy Tech

Sam Bowne

'A cautionary tale of success': Taking stock of the latest massive hack (3CS) (no paywall)
North Korean hackers attacked voice-over IP software provider 3CX, in a “supply chain attack.” The number of companies affected by the harmful code remains unclear, but the supply-chain element of the hacking campaign has been effectively “neutered.” While cyber officials believe North Korea is improving its cyber capabilities, they’re not as sophisticated as the Russian hackers allegedly behind the SolarWinds campaign.

Ethereum Bot Gets Attacked for $20M as Validator Strikes Back
Since Ethereum moved to Proof-of-Stake, transactions are validated by "validator" services. They make money through MEV, "maximal extractable value," which is a method validators use to try to maximize their profits when they validate transactions by including, excluding or changing the order of transactions in a block. The attack happened all within one Ethereum block--a validator appeared to force a series of transactions into the block to steal funds the bot had planned to gain by front-running.

China seethes as US chip controls threaten tech ambitions
China has its own chip foundries, but they supply only low-end processors used in autos and appliances. The U.S. government is cutting off access to a growing array of tools to make chips for computer servers, AI and other advanced applications. China’s loudest complaint: It is blocked from buying a machine available only from a Dutch company, ASML, that uses ultraviolet light to etch circuits into silicon chips on a scale measured in nanometers, or billionths of a meter. Without that, Chinese efforts to make transistors faster and more efficient by packing them more closely together on fingernail-size slivers of silicon are stalled.

The opaque $70 million scheme that could make Trump the next president
No Labels, the purportedly non-partisan organization that supports Republicans and conservative Democrats, is making preparations to promote a third-party presidential ticket in 2024. It's raised $70 million, but not revealed any of its donors. The No Labels strategy appears focused on siphoning off votes from the Democratic candidate.

Grumpy Trumpy Felon from Jamaica in Queens! - A Randy Rainbow Song Parody