MetaMask Launches Blockchain-Based Debit Card MetaMask, a popular Ethereum crypto wallet, is launching a blockchain-based debit card developed in partnership with Mastercard and Baanx. The card will initially be available in a limited edition to users in the European Union and the United Kingdom. The card will allow users to make purchases directly with digital assets stored in the MetaMask wallet. This means that users will be able to spend their cryptocurrencies such as USDC, USDT, and wETH with the card, while maintaining control of their funds until the moment of payment. MetaMask aims to make shopping easier and more secure for self-custody wallet users, bringing financial services to anyone with a mobile phone. MetaMask sees significant opportunities in this project to expand the use of digital assets in everyday life, especially in regions where access to banking services is limited.
- 0 replies
- 0 recasts
- 2 reactions
LockBit's Legacy Is Falling Apart: The FBI Broke the RADAR/DISPOSSESSOR Empire The FBI, together with partners from the UK and Germany, carried out an operation to eliminate the servers and websites of the RADAR/DISPOSSESSOR hacker group. 24 servers and several domains that were used for attacks and creating fake news platforms were confiscated. Since August 2023, the group, led by a cybercriminal named Brain, has been attacking small and medium-sized businesses in various countries, including the US, Germany, and Australia. The hackers penetrated networks through vulnerabilities and weak passwords, stole data, and encrypted devices. The group used the LockBit 3.0 ransomware, which increased the scale of their attacks. The attackers also distributed the stolen data through fake news and video platforms to put pressure on the victims. The FBI urged all victims to contact the Internet Crime Complaint Center (IC3) or the FBI hotline for further investigation and recovery of the stolen data.
- 0 replies
- 0 recasts
- 0 reactions
Hacker hacked LSASS protection in Windows One method is to use vulnerable libraries (BYOVDLL), which allows you to load a vulnerable version of the DLL into LSASS and return the vulnerability to work. Orange Cyberdefense specialist has discovered a way to bypass Microsoft security and execute arbitrary code in the LSASS process. He focused on the CNG Key Isolation (KeyIso) service and downloaded a vulnerable version of the keyiso.dll library by changing the registry settings and the path to the library. However, the system did not recognize the DLL digital signature, which prevented the download. In search of a solution, the researcher turned to file directories containing cryptographic hashes to authenticate files in Windows. After installing the desired directory on the test machine, the system recognized the signature of the vulnerable library and managed to load it into the protected LSASS process. Then the author registered a new key provider using a vulnerable version of the ncryptprov.dll library.
- 1 reply
- 0 recasts
- 0 reactions