all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

When Your Smart ID Card Reader Comes With Malware

Add to bookmarks
May 18, 2022, 1:07 a.m. | BrianKrebs

Krebs on Security krebsonsecurity.com

Millions of U.S. government employees and contractors have been issued a secure smart ID card that enables physical access to buildings and controlled spaces, and provides access to government computer networks and systems at the cardholder's appropriate security level. But many government employees aren't issued an approved card reader device that lets them use these cards at home or remotely, and so turn to low-cost readers they find online. What could go wrong? Here's one example.

a little sunshine card cc cert id malware reader smart the coming storm u.s. general services administration will dormann

Visit resource

More from krebsonsecurity.com / Krebs on Security

Man Who Mass-Extorted Psychotherapy Patients Gets Six Years 1 day, 8 hours ago | krebsonsecurity.com
antii kurittu coldfusion botnet convicted hacking +15
FCC Fines Major U.S. Wireless Carriers for Selling Customer Location Data 2 days, 1 hour ago | krebsonsecurity.com
access amp att carriers +25
Russian FSB Counterintelligence Chief Gets 9 Years in Cybercrime Bribery Scheme 1 week, 2 days ago | krebsonsecurity.com
alexander kovalev a little sunshine artem zaitsev bribe +28
Who Stole 3.6M Tax Records from South Carolina? 2 weeks, 1 day ago | krebsonsecurity.com
account aleksandr ermakov associated press bank +34
Crickets from Chirp Systems in Smart Lock Key Leak 2 weeks, 2 days ago | krebsonsecurity.com
a little sunshine august.com can chirp systems +22
Why CISA is Warning CISOs About a Breach at Sisense 2 weeks, 6 days ago | krebsonsecurity.com
agency a little sunshine breach business +28
Twitter’s Clumsy Pivot to X.com Is a Gift to Phishers 3 weeks ago | krebsonsecurity.com
april change com domain +15
April’s Patch Tuesday Brings Record Number of Fixes 3 weeks, 1 day ago | krebsonsecurity.com
adobe after effects april azure azure ai +38
Fake Lawsuit Threat Exposes Privnote Phishing Sites 3 weeks, 6 days ago | krebsonsecurity.com
alexandr ermakov a little sunshine andrey sokol breadcrumbs +26

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Azure DevSecOps Cloud Engineer II

@ Prudent Technology | McLean, VA, USA
View on infosec-jobs.com

Security Engineer III - Python, AWS

@ JPMorgan Chase & Co. | Bengaluru, Karnataka, India
View on infosec-jobs.com

SOC Analyst (Threat Hunter)

@ NCS | Singapore, Singapore
View on infosec-jobs.com

Managed Services Information Security Manager

@ NTT DATA | Sydney, Australia
View on infosec-jobs.com

Senior Security Engineer (Remote)

@ Mattermost | United Kingdom
View on infosec-jobs.com

Penetration Tester (Part Time & Remote)

@ TestPros | United States - Remote
View on infosec-jobs.com
View more jobs