Two faulty strings in several independently

Rakhirandiseo · Post by **Rakhirandiseo** » Thu Feb 13, 2025 4:15 am

"In this case, developed Kerberos implementations resulted in metadata being extracted not from the authenticated and encrypted KDC response, from the certificate, but from unauthenticated plaintext," the researchers explained. They did not provide details on how the Orpheus Lyre bug was exploited, but noted that an attacker positioned between the client and the server could impersonate some services to the client.

"If the client presents a certificate and an authenticator, and if the service is able to decrypt the certificate, extract the session key from it, and use that key to decrypt the authenticator, then the client becomes the one the certificate claims to be, since it possessed the cryptographic key with which the authenticator was produced," the researchers said.

The error can only be fixed by patching end-user systems, not servers.
Analysts compare damage from global cyberattacks to natural disasters
Sergey Stelmakh | 07/19/2017
Analysts at Lloyd's of London estimate that a major singapore whatsapp data cyberattack could cause economic losses of $53 billion, comparable to the damage caused by natural disasters such as Hurricane Sandy, which hit the United States in 2012. The study, conducted jointly with risk assessment company Cyence, looked at the potential economic losses from a hypothetical hack of cloud service providers and cyberattacks on computer systems running businesses around the world, Reuters reports.

Lloyd's of London notes that during an attack on cloud services, hackers may well hack the hypervisor that controls the infrastructure and leave the entire world without access to the data stored in the clouds. By bringing down just one large virtual storage, they will cause damage to companies in the amount of at least $4.6 billion. If the collapse affects several such services at once, then the damage from the cyberattack will amount to tens of billions. Moreover, the size of the losses to the global economy will depend on how long hackers can resist protective measures.