Risky Business #674 -- "Free money" exploit spawns $150m blockchain feeding frenzy

It's the modern equivalent of the townsfolk raiding the crashed armoured car...
03 Aug 2022 » Risky Business

On this week’s show Patrick Gray and Adam Boileau discuss the week’s security news, including:

  • Taiwan tensions fail to conjure the cyber apocalypse
  • Crypto bridge exploit results in $150m feeding frenzy
  • Chainalysis evidence to be challenged in court
  • Post-quantum NIST candidate algorithm gets smoked
  • DSIRF’s Russia links
  • Much, much more

This week’s sponsor interview is with Jerrod Chong from Yubico. He’s joining the show to talk about why consumer-focussed implementations of Webauthn like Apple’s Passkeys aren’t a great enterprise solution.

Links to everything that we discussed are below and you can follow Patrick or Adam on Twitter if that’s your thing.

Show notes

Taiwanese websites hit with DDoS attacks as Pelosi begins visit
'Frenzied mob' steals more than $156 million from crypto platform Nomad - The Record by Recorded Future
Bitcoin Fog Case Could Put Cryptocurrency Tracing on Trial | WIRED
Post-quantum encryption contender is taken out by single-core PC and 1 hour | Ars Technica
Federal court system suffered previously undisclosed breach, congressional committee says
Australian police charge man with developing spyware used by more than 14,500 people - The Record by Recorded Future
Risky Biz News: Microsoft puts the limelight on another spyware maker—DSIRF from Austria
Eavesdropping probe finds Israeli police exceeded authority | AP News
Hacker use of Microsoft macros plummeted after default block: report - The Record by Recorded Future
On security researcher's newsletter, exposing cybercriminals behind ransomware
Luxembourg energy companies struggling with alleged ransomware attack, data breach - The Record by Recorded Future
At least 34 healthcare orgs affected by alleged ransomware attack on OneTouchPoint - The Record by Recorded Future
American Dental Association says April cyberattack involved ransomware - The Record by Recorded Future
Ransomware group demands £500,000 from British schools, citing cyber insurance policy - The Record by Recorded Future
Hackers stole passwords for accessing 140,000 payment terminals | TechCrunch
Experts warn of hacker claiming access to 50 U.S. companies through breached MSP - The Record by Recorded Future
German prosecutors issue warrant for Russian government hacker over energy sector attacks - The Record by Recorded Future
The commercial satellite boom is leaving space vulnerable to hackers - The Record by Recorded Future
Report to Congress of the U.S.-China Economic and Security Review Commission - U.S.-China Economic and Security Review Commission - Google Books
Spanish police arrest two accused of hacking radioactivity alert system - The Record by Recorded Future
SUBSCRIBE NOW:
Risky Business main podcast feed:
Listen on Apple Podcasts Listen on Overcast Listen on Pocket Casts Listen on Spotify Subscribe with RSS
Our extra podcasts feed:
Listen on Apple Podcasts Listen on Overcast Listen on Pocket Casts Listen on Spotify Subscribe with RSS
Subscribe to our newsletters: