“To read the purported PDF document, victims are persuaded to click a URL containing a list of steps to register their Windows system. The registration link urges them to launch PowerShell as an administrator and copy/paste the displayed code snippet into the terminal, and execute it.”
This is not new, nor is it newsworthy.
Yeah this article is complete garbage. Who upvotes this stuff?
Wow Forbes cybersecurity reporting is absolute dog shit. So much text to say absolutely nothing useful.
Anyway, this is just an AITM redirection onto a malicious site in the middle that pretends to be the MFA portal and intercept the session cookie.
Yeah I was terrified of the headline at first, but after reading the article came to the same basic conclusion as you.
At first I thought they were going to find a way to trade our 401(k)s without our consent like the mortgage-backed securities from pre-2008.
Probably the 9950x3d. And we’ve known for a while now that the cache would only be on one CCD.
Yeah you really need a password or TPM PIN protector to protect from cold boot attacks if that is in your threat model.
Bitlocker is extra vulberable because it stores the key in the TPM and requires no password to boot. An attacker can extract the key even if the computer is off when they get it.
This is not true.
You would additionally need to bypass Secure Boot with a separate exploit such as the one in this article (which is mitigated by disabling USB boot) or LogoFAIL to put the TPM PCRs in a state where the keys can be released.
LUKS2 is no different here as either can be TPM-only or require a separate PIN.
Adversary
deleted by creator
Least-capable, maybe. I don’t know about worst.
The Kuva Bramma in Warframe. Just rains cluster bombs.