Experimental News Clipping Site

Tag: Private Keys

  • Rekt: Moby Trade – Rekt

    by

    Kurt Seifried
    in

    Source URL: https://www.rekt.news/mobytrade-rekt Source: Rekt Title: Moby Trade – Rekt Feedly Summary: When your private keys become the white whale, who’s really hunting whom? Moby Trade loses roughly $1 million to a compromised key, while white hats rescue $1.47M from the depths. Some lessons of the sea only need to be learned once. AI Summary…

  • Rekt: Orange Finance – Rekt

    by

    Kurt Seifried
    in

    Source URL: https://www.rekt.news/orange-finance-rekt Source: Rekt Title: Orange Finance – Rekt Feedly Summary: First significant hack of 2025. Orange Finance got squeezed for $843.5k after their ‘multi-sig’ turned out to be uni-sig. Their contract is no longer Orange, their security was never golden. Another private key leaks, another protocol rots. AI Summary and Description: Yes Summary:…

  • The Register: Microsoft won’t let customers opt out of passkey push

    by

    system automation
    in

    Source URL: https://www.theregister.com/2024/12/18/microsoft_passkey_push/ Source: The Register Title: Microsoft won’t let customers opt out of passkey push Feedly Summary: Enrolment invitations will continue until security improves Microsoft last week lauded the success of its efforts to convince customers to use passkeys instead of passwords, without actually quantifying that success.… AI Summary and Description: Yes **Short Summary…

  • Wired: The Simple Math Behind Public Key Cryptography

    by

    system automation
    in

    Source URL: https://www.wired.com/story/how-public-key-cryptography-really-works-using-only-simple-math/ Source: Wired Title: The Simple Math Behind Public Key Cryptography Feedly Summary: The security system that underlies the internet makes use of a curious fact: You can broadcast part of your encryption to make your information much more secure. AI Summary and Description: Yes Summary: The text discusses public key cryptography as…

  • Slashdot: Yearlong Supply-Chain Attack Targeting Security Pros Steals 390,000 Credentials

    by

    system automation
    in

    Source URL: https://it.slashdot.org/story/24/12/13/2220211/yearlong-supply-chain-attack-targeting-security-pros-steals-390000-credentials?utm_source=rss1.0mainlinkanon&utm_medium=feed Source: Slashdot Title: Yearlong Supply-Chain Attack Targeting Security Pros Steals 390,000 Credentials Feedly Summary: AI Summary and Description: Yes Summary: The text discusses a sophisticated supply-chain attack targeting security personnel through Trojanized open-source software, revealing significant vulnerabilities in software distribution methods. This ongoing campaign is notable for its multi-faceted approach, including the…

  • The Register: Solana blockchain’s popular web3.js npm package backdoored to steal keys, funds

    by

    system automation
    in

    Source URL: https://www.theregister.com/2024/12/05/solana_javascript_sdk_compromised/ Source: The Register Title: Solana blockchain’s popular web3.js npm package backdoored to steal keys, funds Feedly Summary: Damage likely limited to those running bots with private key access Malware-poisoned versions of the widely used JavaScript library @solana/web3.js were distributed via the npm package registry, according to an advisory issued Wednesday by project…

  • Slashdot: Backdoor in Compromised Solana Code Library Drains $184,000 from Digital Wallets

    by

    system automation
    in

    Source URL: https://news.slashdot.org/story/24/12/05/1848223/backdoor-in-compromised-solana-code-library-drains-184000-from-digital-wallets?utm_source=rss1.0mainlinkanon&utm_medium=feed Source: Slashdot Title: Backdoor in Compromised Solana Code Library Drains $184,000 from Digital Wallets Feedly Summary: AI Summary and Description: Yes Summary: The Solana JavaScript SDK experienced a supply chain attack where malicious code was injected to steal cryptocurrency private keys. This incident highlights the vulnerabilities associated with software supply chains in…

  • Hacker News: HashML-DSA Considered Harmful

    by

    system automation
    in

    Source URL: https://keymaterial.net/2024/11/05/hashml-dsa-considered-harmful/ Source: Hacker News Title: HashML-DSA Considered Harmful Feedly Summary: Comments AI Summary and Description: Yes Summary: The text discusses the complexities surrounding prehashing in digital signature schemes, particularly in the context of recent NIST standards. It offers insights on how to effectively manage private key exposure while facilitating remote signing processes, highlighting…

  • The Register: Scumbag puts ‘stolen’ Nokia source code, SSH and RSA keys, more up for sale

    by

    system automation
    in

    Source URL: https://www.theregister.com/2024/11/06/nokia_data_theft/ Source: The Register Title: Scumbag puts ‘stolen’ Nokia source code, SSH and RSA keys, more up for sale Feedly Summary: Data pinched from pwned outside supplier, thief says IntelBroker, a notorious peddler of stolen data, claims to have pilfered source code, private keys, and other sensitive materials belonging to Nokia.… AI Summary…

  • Rekt: Tapioca DAO – Rekt

    by

    system automation
    in

    Source URL: https://www.rekt.news/tapioca-dao-rekt Source: Rekt Title: Tapioca DAO – Rekt Feedly Summary: Another day, another private key theft, another protocol rekt. Tapioca DAO on Arbitrum suffers a roughly $4.4 million loss in a private key compromise. Some funds have been recovered, though the full extent of the damage remains to be seen. AI Summary and…