#Blackhat

Blackhat

VoIP Gone Haywire: The Tale of a Cryptographic Key Fiasco

8 months ago

AudioCodes VoIP phones made a classic cybersecurity blunder by using a hard-coded cryptographic key, leaving them open to attacks. Unveiled at BlackHat USA, the gaffe reminded us that even in 2023, the classics never go out of style.
Blackhat

Hot Take: AudioCodes VoIP Phones Caught with their Security Pants Down!

8 months ago

AudioCodes VoIP Phones have been found vulnerable due to a hard-coded cryptographic key. This amusing, yet alarming, situation demonstrates how even tech-savvy entities can make grade-school mistakes, putting sensitive data at risk.
Blackhat

VoIP Phones: The Unassuming Villain in Your Office

8 months ago

Once celebrated as the next big thing in enterprise environments, AudioCodes VoIP phones have been found to harbor malicious firmware, thanks to a lax checksum validation process. The glitch was discovered by cybersecurity experts, Matthias Deeg and Moritz Abrell, who used Python scripting to expose the vulnerability.
Blackhat

Beware of the Phishing Evolution: From Nigerian Princes to QR Code Werewolves

8 months ago

No longer confined to sketchy emails, phishing has evolved. From Cyrillic characters and clever pop-ups to deceptive QR codes, today's phishing threats are smarter, stealthier, and more diverse. But worry not, because with advanced security solutions, prevention strategies, and a little bit of savvy, you can keep these cyber predators at bay.
Blackhat

When Sherlock Met Codesys: Microsoft Unveils 16 Security Flaws

8 months ago

Microsoft pulls a Sherlock on Codesys, unearthing 16 grave security vulnerabilities in its automation software. These flaws could lead to DoS attacks, remote code execution and potentially, a hacker's gala in your device.
Blackhat

Mobb Rules: Startup Spotlight Winner at Black Hat USA 2023

8 months ago

Mobb, the vulnerability remediation startup, steals the spotlight at Black Hat USA 2023, showcasing the importance of fixing security loopholes in a world obsessed with AI. A glimpse into the future of cybersecurity startups.
Blackhat

AI Teens: The Troubled Adolescence of Generative AI Models

8 months ago

The rise of generative AI models is likened humorously to the troublesome teenager phase. As businesses grapple with the pros and cons, Microsoft's investment in AI technology accelerates the pace, potentially leading to an unpredictable business landscape.
Blackhat

Unmasking Cybersecurity: The White House’s Call to Tech Heroes

8 months ago

In an ambitious move, the White House is rallying the tech community to bolster open source software security. The initiative, part of the National Cybersecurity Strategy, aims for secure-by-design software, reducing reliance on patching routines.
Blackhat

Love in the Time of Cyberattacks: An Unusual Romance between Cybersecurity and Insurance

8 months ago

In an odd turn of events, cybersecurity and insurance are trying to navigate their relationship. Disagreements arise over cyber insurance premium calculations, while threat actors are upping their game by improving their English skills. Ransomware, business email compromise, and funds transfer fraud are impacting insurance policies, and unsupported software is under scrutiny.
Blackhat

The Spy Game: How Belarus-Linked APT Group Hacked Embassies Through ISPs

8 months ago

The Belarus-linked APT group, MoustachedBouncer, is suspected of spying on embassy staff through local ISPs using tailor-made malware. Despite the operation's sophistication, the group managed to stay undetected for nearly a decade due to its targeted, low-volume attacks.