SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast)
SANS ISC Stormcast Feb 4th 2025: Crypto Scam; Mediatek and D-Link Patches; Microsoft ends VPN Service
Feb 4, 2025
Discover how a YouTube spam scam tricks users into losing money on crypto wallet fees, while their private keys remain safe. Learn about critical patches from Mediatek addressing serious vulnerabilities in WLAN products. D-Link faces challenges with older routers that will no longer receive updates, leaving users with the need to upgrade. Finally, Microsoft announces the discontinuation of its VPN service, prompting discussions about online security practices.
06:13
AI Summary
AI Chapters
Episode notes
Podcast summary created with Snipd AI
Quick takeaways
- A sophisticated crypto wallet scam tricks users into depositing gas fees for promised access to locked funds, while their private keys remain secure.
- MediaTek has released critical patches for vulnerabilities in WLAN products, while Microsoft has decided to discontinue its VPN service, urging users to seek reliable alternatives.
Deep dives
Understanding the Crypto Wallet Scam
A notable scam is exploited through the manipulation of crypto wallet transactions, particularly involving users who inadvertently disclose their seed phrases. The scam operates by enticing victims to transfer cryptocurrency from their wallets, promising access to funds if they first deposit a small amount for transaction fees. However, the seed phrase provided by the victim does not grant sufficient authority to transfer the funds, leaving them vulnerable to losing additional money. The scam predominantly advertises the OKX wallet, which may lack clarity regarding the necessary signatures required to execute transactions, increasing the likelihood of users falling prey to this scheme.
Remember Everything You Learn from Podcasts
Save insights instantly, chat with episodes, and build lasting knowledge - all powered by AI.
