No Comments

A Blockchain Primer and Bored Ape Headscratcher – Podcast – Threatpost

Newsletter
Join thousands of people who receive the latest breaking cybersecurity news every day.
The administrator of your personal data will be Threatpost, Inc., 500 Unicorn Park, Woburn, MA 01801. Detailed information on the processing of personal data can be found in the privacy policy. In addition, you will find them in the message confirming the subscription to the newsletter.

The administrator of your personal data will be Threatpost, Inc., 500 Unicorn Park, Woburn, MA 01801. Detailed information on the processing of personal data can be found in the privacy policy. In addition, you will find them in the message confirming the subscription to the newsletter.
Share this article:
Mystified? Now’s the time to learn about cryptocurrency-associated risks: Listen to KnowBe4’s Dr. Lydia Kostopoulos explain blockchain, NFTs and how to stay safe.
Why in the world would a collection of nonfungible token (NFT) gorilla avatars called the Bored Ape Yacht Club (BAYC), run by 30-somethings using aliases like “Emperor Tomato Ketchup” and “No Sass” and adored by celebrities, spiral on up to a multibillion-dollar valuation (…and, by the way, how can you yourself get stinking crypto-rich?!)?
Image of Bored Ape Yacht Club NFT.
If you don’t have a clue, you might be one of the crypto-newbies for whom the New York Times recently pulled together its Latecomer’s Guide to Crypto and whom mutual funds companies are trying to ease into the brave new world.
Infosec Insiders Newsletter
You also might have a thousand questions that go beyond cartoon apes and get into the nitty-gritty of how cryptocurrency and blockchain technologies work and how to sidestep the associated cybersecurity risks.
Those risks are big, throbbing realities. The latest: Ronin, an Ethereum-linked blockchain platform for NFT-based video game Axie Infinity, on Tuesday put up a blog post advising that 173,600 ether tokens and 25.5 million USD coins – valued at nearly $620 million as of Tuesday – had been drained from its platform after an attacker used hacked private keys to forge two fake withdrawals last week.
According to Forbes, blockchain analytics firm Elliptic pegs it as the second-biggest hack ever.
Cryptocurrency and related technologies may be shiny new concepts, but the techniques crooks are using to drain them aren’t necessarily newfangled. As of its Wednesday update, Ronin said that it looks like the breach was pulled off with old-as-the-hills social engineering:
“While the investigations are ongoing, at this point we are certain that this was an external breach. All evidence points to this attack being socially engineered, rather than a technical flaw.” —3/30/22 Ronin alert.
Dr. Lydia Kostopoulos, senior vice president of emerging tech insights at KnowBe4, stopped by the Threatpost podcast to give us an overview of this brave new world of blockchain: a landscape of new technologies that are making wallets swell and shrink and hearts to flutter in dismay when such things as the Ronin hack transpire.
She shared her insights into everything from how such technologies work to what the associated cybersecurity risks are, including:
You’ve heard it a thousand times before, but Dr. Kostopoulos says it’s real: Blockchain technology is transformative. Look out for state-backed currencies and blockchain-enabled voting that can’t be tampered with, for starters. Look for NFT invitations to artists’ performances that keep giving as those artists reward their ticket holders with future swag. And for the love of Pete, don’t lose your cold wallets if you want to keep your crypto safe.
If you don’t yet know what a cold wallet is, definitely have a listen!
You can download the podcast below or listen here. For more podcasts, check out Threatpost’s podcast site.

Moving to the cloud? Discover emerging cloud-security threats along with solid advice for how to defend your assets with our FREE downloadable eBook, “Cloud Security: The Forecast for 2022.” We explore organizations’ top risks and challenges, best practices for defense, and advice for security success in such a dynamic computing environment, including handy checklists.
Share this article:
Four months after the critical flaw was discovered, attackers have a massive attack surface from which they can exploit the flaw and take over systems, researchers found.
A campaign by APT37 used a sophisticated malware to steal information about sources , which appears to be a successor to Bluelight.
How to use zero-trust architecture effectively in today’s modern cloud-dependent infrastructures.



This site uses Akismet to reduce spam. Learn how your comment data is processed.
Join thousands of people who receive the latest breaking cybersecurity news every day.
Connections show #cybercriminal teams from Conti & Diavol working together, signaling shifts in their respective ta… https://t.co/VnuHvu7dcB
2 weeks ago
Get the latest breaking news delivered daily to your inbox.
The First Stop For Security News
Infosec Insider content is written by a trusted community of Threatpost cybersecurity subject matter experts. Each contribution has a goal of bringing a unique voice to important cybersecurity topics. Content strives to be of the highest quality, objective and non-commercial.
Sponsored Content is paid for by an advertiser. Sponsored content is written and edited by members of our sponsor community. This content creates an opportunity for a sponsor to provide insight and commentary from their point-of-view directly to the Threatpost audience. The Threatpost editorial team does not participate in the writing or editing of Sponsored Content.

source

You might also like

More Similar Posts

Leave a Reply

Your email address will not be published.

Fill out this field
Fill out this field
Please enter a valid email address.
You need to agree with the terms to proceed

This site uses Akismet to reduce spam. Learn how your comment data is processed.

Menu