RAMBleed Steals Crypto Keys; Yubikeys Recalled - ThreatWire (AUDIO ONLY) (Patreon)

 EARLY Access to the episode!

US Infrastructure is Targeted by attackers, RAMBleed can steal cryptokeys, and Yubikeys get recalled! All that coming up now on ThreatWire.  #threatwire #hak5

Links:

Support me on alternative platforms! https://snubsie.com/support

https://www.youtube.com/shannonmorse --  subscribe to my new channel!

Hacking Power Grids:

https://dragos.com/blog/industry-news/threat-proliferation-in-ics-cybersecurity-xenotime-now-targeting-electric-sector-in-addition-to-oil-and-gas/

https://dragos.com/wp-content/uploads/TRISIS-01.pdf

https://www.zdnet.com/article/this-most-dangerous-hacking-group-is-now-probing-power-grids/

https://www.cyberscoop.com/trisis-xenotime-us-electric-sector/

https://www.wired.com/story/triton-hackers-scan-us-power-grid/

https://arstechnica.com/information-technology/2019/06/hackers-behind-dangerous-oil-and-gas-intrusions-are-probing-us-power-grids/

Yubikeys Vulnerable:

https://www.yubico.com/support/security-advisories/ysa-2019-02/

https://www.zdnet.com/article/yubico-to-replace-vulnerable-yubikey-fips-security-keys/

https://www.yubico.com/replaceorder/

RAMBleed, shoutout to CypherDragon:

https://access.redhat.com/articles/1377393

https://rambleed.com/

https://rambleed.com/docs/20190603-rambleed-web.pdf

https://arstechnica.com/information-technology/2019/06/researchers-use-rowhammer-bitflips-to-steal-2048-bit-crypto-key/

https://threatpost.com/rambleed-side-channel-privileged-memory/145629/

https://thehackernews.com/2019/06/rambleed-dram-attack.html

Photo credit:

https://live.staticflickr.com/6179/6173837649_2d77becc9b_b.jpg