Cybersecurity Weekly: Emergency alert system, semiconductor ransomware, Slack password hashing bug fixed

August 8, 2022 by Ryan Miner

Emergency alert system vulnerable to hacking, semiconductor producer suffers ransomware hack, and Slack exposed salted password hashes. All these and more in this week’s edition of Cybersecurity Weekly.

1. “Huge flaw” threatens US emergency alert system, DHS researcher warns

Hackers can disrupt legit warnings or issue fake ones of their own, leading to dangerous situations for those receiving them.
Read more »

2. German semiconductor giant Semikron says hackers encrypted its network

The German manufacturer, producer of semiconductors for electric vehicles and industrial automation systems, confirmed likely ransomware attack.
Read more »

3. FCC warns of steep rise in phishing over SMS

SMS phishing, otherwise known as smishing or robotexts (FCC’s own terminology), is a form of phishing that attempts to trick people into handing over their personally identifiable information (PII) and/or money using SMS instead of email.
Read more »

4. A ransomware explosion fosters thriving dark web ecosystem

For the right price, threat actors can get just about anything they want to launch a ransomware attack — even without technical skills or any previous experience.
Read more »

5. Slack resets passwords after exposing hashes in invitation links

Slack notified roughly 0.5% of its users that it reset their passwords after fixing a bug exposing salted password hashes when creating or revoking shared invitation links for workspaces.
Read more »

Posted: August 8, 2022
Ryan Miner
View Profile