Florida man sentenced for espionage, Rockstar 2FA bypasses auth, Unofficial Windows micropatches

The Daily Decrypt

00:00 /

Video Episode: https://youtu.be/rUrdudQf16Y

In today’s episode, we discuss the sentencing of U.S. citizen Ping Li for conspiring to act as a spy for China’s Ministry of State Security while working at Verizon and Infosys, as well as the broader implications of cyber espionage within the context of the ongoing tensions with China. We also explore the emergence of the Rockstar 2FA phishing-as-a-service toolkit used in adversary-in-the-middle attacks targeting Microsoft 365 users. Additionally, we cover the release of unofficial patches for a critical zero-day vulnerability in Windows Server 2012, highlighting ongoing cybersecurity threats.

Sources:
1. https://thehackernews.com/2024/11/us-citizen-sentenced-for-spying-on.html
2. https://thehackernews.com/2024/11/phishing-as-service-rockstar-2fa.html
3. https://www.bleepingcomputer.com/news/security/new-windows-server-2012-zero-day-gets-free-unofficial-patches/

Music: https://youtu.be/B4gk5tWMvyY?si=q_JjohozMBH7XPNe

1. What are today’s top cybersecurity news stories?
2. What is the latest on U.S. espionage cases linked to China?
3. How does phishing-as-a-service impact Microsoft 365 users?
4. What are the implications of AI-generated disinformation campaigns?
5. What recent vulnerabilities have been discovered in Windows Server?
6. How are Chinese intelligence agencies recruiting U.S. citizens?
7. What strategies are being used in Operation Undercut?
8. How does the Rockstar 2FA toolkit operate in phishing attacks?
9. What are the consequences of cyber espionage on national security?
10. How can businesses protect themselves from emerging cyber threats?

espionage, China, national security, intelligence, AI, disinformation, Operation Undercut, Social Design Agency, Rockstar 2FA, phishing-as-a-service, Microsoft 365, credentials, Windows Server 2012, 0patch, vulnerabilities, micropatches,