North Korea’s biggest ever crypto heist: $1.4B stolen from Bybit

Three Buddy Problem – Episode 35: Juanito is live from DistrictCon with notes on discussion of an elusive iOS zero-day by a company called QuaDream and Apple’s controversial removal of iCloud backup end-to-end encryption in the UK. We also cover a staggering $1.4 billion hack by the Lazarus Group against Bybit, new angles in NSA-linked cyber-espionage against China’s top universities, Chinese hacking gangs moonlighting as ransomware criminals, and Russian APTs abusing Signal’s “linked devices” feature. Plus, Costin explains Microsoft’s quantum computing breakthrough.

Cast: Juan Andres Guerrero-Saade, Costin Raiu and Ryan Naraine.

Links:

• Transcript (unedited, AI-generated)
• DistrictCon: Dissecting a QuaDream iOS zero-day
• Unpacking the UK government's secret iCloud backdoor demand
• U.K. orders Apple to let it spy on users’ encrypted accounts
• Apple Pulls Advanced Data Protection for New UK Users Amid Backdoor Demand
• Bybit Sees Over $4 Billion ‘Bank Run’ After Crypto’s Biggest Hack
• ByBit CEO explains crypto heist
• iVerify on Pegasus infections
• Is there a Pangu Team/i-SOON connection?
• Russian hackers actively targeting Signal Messenger
• How Russian APTs abuse Signal 'linked devices' for real-time spying
• Cisco Talos: In the midst of a Typhoon
• Satya Nadella: Reflections on a quantum computing breakthrough
• Taiwan wants to ban Fortinet, Zoom
• Pangu Team Bvp47 report