QLNX: il nuovo implant Linux silenzioso che saccheggia la supply chain del software

https://insicurezzadigitale.com/qlnx-il-nuovo-implant-linux-silenzioso-che-saccheggia-la-supply-chain-del-software/

Ich glaube, es hackt!: Lebst du? Oder zockst du noch?

In dieser Folge sprechen Tobi und Rüdiger über:

Warum #Kinder heute keine Telefonnummern mehr auswendig kennen
Die #Android-Spionageplattform „#KidsProtect“
Warum geklaute, entsperrte #iPhone besonders wertvoll sind
#KI-Systeme, die nach mehrfacher Nachfrage plötzlich verbotene Inhalte verraten
Einen #Hackerkrieg zwischen #Microsoft und einem #Sicherheitsforscher
Eine mögliche #BitLocker-#Backdoor namens „Yellow Key“
#Honeypot-Fallen in Webformularen
Iranische Hacker an US-Tankstellen
#Apple-Sicherheitsfunktionen vs. #KI
Die absurdeste #Senioren-Story des Monats: #Polizei-Einsatz wegen #Gaming

Webseite der Episode: https://igeh.podigee.io/123-lebst-du-oder-zockst-du-noch

Mediendatei: https://audio.podigee-cdn.net/2497387-m-73b6aa186b34eb534f3c33c389deaa00.mp3?source=feed

-- Links zur Folge: https://podcast.ichglaubeeshackt.de/

Chinese APT Campaign Targets Entities with Updated FDMTP Backdoor

Pulse ID: 6a0bf450e61c502ece1b6b84
Pulse Link: https://otx.alienvault.com/pulse/6a0bf450e61c502ece1b6b84
Pulse Author: Tr1sa111
Created: 2026-05-19 05:25:36

Be advised, this data is unverified and should be considered preliminary. Always do further verification.

#BackDoor #Chinese #CyberSecurity #InfoSec #OTX #OpenThreatExchange #bot #Tr1sa111

Chinese APT Campaign Targets Entities with Updated FDMTP Backdoor

Beginning in late September 2025, multiple affected hosts were observed making requests to domains impersonating content delivery networks (CDNs), including infrastructure masquerading as Yahoo- and Apple-affiliated services. Across these cases, Darktrace identified a consistent behavioral execution pattern: the retrieval of legitimate binaries alongside malicious Dynamic Link Libraries (DLLs), enabling sideloading and execution of a modular .NET-based Remote Access Trojan (RAT) framework.

Pulse ID: 6a0b6898afd39bdd2dd6f142
Pulse Link: https://otx.alienvault.com/pulse/6a0b6898afd39bdd2dd6f142
Pulse Author: AlienVault
Created: 2026-05-18 19:29:26

Be advised, this data is unverified and should be considered preliminary. Always do further verification.

#BackDoor #CDN #Chinese #CyberSecurity #DNS #Darktrace #InfoSec #NET #OTX #OpenThreatExchange #RAT #RemoteAccessTrojan #SideLoading #Trojan #bot #AlienVault

macOS Stealer Spoofs Apple, Google, and Microsoft in a Single Attack Chain

A new variant of SHub Stealer dubbed 'Reaper' targets macOS users through fake WeChat and Miro installers, employing sophisticated multi-stage delivery chains that spoof Apple, Google, and Microsoft services. The malware leverages the applescript:// URL scheme to bypass Terminal-based defenses, conducting extensive fingerprinting and anti-analysis checks before execution. Reaper harvests browser credentials, cryptocurrency wallets, developer configurations, iCloud data, and Telegram sessions. It includes an AMOS-style document theft module targeting files under 150MB with chunked uploads. The variant establishes persistence through a fake Google Software Update LaunchAgent and installs a backdoor for remote code execution. The infection specifically avoids CIS regions and employs extensive anti-analysis techniques including WebGL fingerprinting, VM detection, and DevTools interference.

Pulse ID: 6a0b51f39a34872f37d37c9f
Pulse Link: https://otx.alienvault.com/pulse/6a0b51f39a34872f37d37c9f
Pulse Author: AlienVault
Created: 2026-05-18 17:52:51

Be advised, this data is unverified and should be considered preliminary. Always do further verification.

#AMOS #BackDoor #Browser #Cloud #CyberSecurity #Google #InfoSec #Mac #MacOS #Malware #Microsoft #OTX #OpenThreatExchange #RAT #RemoteCodeExecution #Telegram #bot #cryptocurrency #AlienVault

⋅ A security researcher says Microsoft secretly built a backdoor into BitLocker, releases an exploit to prove it

− https://www.techspot.com/news/112410-security-researcher-microsoft-secretly-built-backdoor-bitlocker-releases.html

#InfoSec #CyberSec #Microsoft #Backdoor

Cisco: Noch ein Zero-Day mit „perfekter 10“

Im Februar wurde eine weltweite Warnung verbreitet, weil Cisco SD-WAN Produkte Sicherheitslücken enthielten, die bereits seit mindestens 2023 für Angriffe ausgenutzt wurden (Zero-Day). Cisco hat Updates veröffentlicht, mit denen diese Sicherheitslücken geschlossen werden sollten. Jetzt kommt der Witz. Forscher des Sicherheitsunternehmens Rapid7 haben die Sicherheitslücke CVE-2026-20127 weiter untersucht und dabei eine weitere Sicherheitslücke gefunden! Sie hat die Nummer CVE-2026-20182 und die Risiko-Einstufung 10 von 10 bekommen. Auch diese Sicherheitslücke wird bereits für Angriffe ausgenutzt

https://www.pc-fluesterer.info/wordpress/2026/05/18/cisco-noch-ein-zero-day-mit-perfekter-10/

#Allgemein #Empfehlung #Hintergrund #Warnung #0day #cybercrime #exploits #hersteller #hintertr #spionage #UnplugTrump #backdoor

A #security researcher says #Microslop secretly built a #backdoor into #BitLocker, releases an #exploit to prove it

#YellowKey exploit bypasses BitLocker full volume #encryption via USB stick and WinRE

https://www.techspot.com/news/112410-security-researcher-microsoft-secretly-built-backdoor-bitlocker-releases.html

#Microsoft #Windows11 #technology #privacy #surveillance

RE: https://social.lansky.name/@hn50/116590412269573921

"Microsoft built a #Bitlocker backdoor"

I do not have enough knowledge to determine if this is true or not. What is your opinion?

#security #encryption #backdoor