FBI warns of time-traveling hackers
Cybercriminals always find new ways to scam you, whether it's mimicking a government agency, creating a fake website or delivering malware disguised as a software update. Just when you think you've seen it all, they come up with a new trick.
This time, the FBI has issued an alert: Hackers are using a "time-traveling" technique to bypass your device's security measures. No, we're not talking about actual time travel (though wouldn't that be something?). This is a sophisticated cyberattack where hackers manipulate a system's internal clock to sneak past security defenses.
Join The FREE "CyberGuy Report": Get my expert tech tips, critical security alerts and exclusive deals, plus instant access to my free "Ultimate Scam Survival Guide" when you sign up.
The concept of "time-traveling hackers" refers not to literal time travel but to a sophisticated cyberattack technique where hackers manipulate a system's internal clock to bypass security measures. This attack is reportedly tied to the Medusa ransomware gang.
In this type of attack, hackers exploit expired security certificates by altering the system date on a targeted device to a time when those certificates were still valid. For example, a security certificate that expired in, say, 2020 could be made usable again if the system's clock is set back to 2019. This allows malicious software signed with these outdated certificates to be recognized as legitimate by the system, effectively "traveling back in time" from a security perspective.
This technique was notably used in the Medusa ransomware attacks, which targeted critical infrastructure and prompted an FBI cybersecurity advisory (AA25-071A) earlier in 2025. The campaign has affected over 300 critical infrastructure targets. The attackers combined this method with social engineering and exploited unpatched vulnerabilities, amplifying the threat.
The FBI has warned that such attacks pose a significant risk, as they can disable modern security protections like Windows Defender by tricking the system into accepting outdated drivers or software.
Traditional search and rescue tools, like rigid robots and specialized cameras, often struggle in disaster zones. Cameras follow only straight paths, forcing teams to cut through debris just to see further in. Rigid robots are vulnerable in tight, unstable spaces and expensive to repair when damaged. And manual probing is slow, exhausting and risks responder safety.
1) Use strong antivirus software: A strong antivirus isn't just for catching old-school viruses anymore. It can detect phishing links, block malicious downloads and stop ransomware before it gets a foothold. Since the Medusa gang uses fake updates and social engineering to trick users, having strong antivirus software adds a critical layer of protection against threats you might not see coming. Get my picks of the best 2025 antivirus protection winners for your Windows, Mac, Android and iOS devices.
2) Enable two-factor authentication (2FA): The FBI specifically recommends enabling 2FA across all services, especially for high-value targets like webmail accounts, VPNs and remote access tools. 2FA makes it significantly harder for attackers to break in, even if they've managed to steal your username and password through phishing or other tactics.
3) Use strong, unique passwords: Many ransomware groups, including Medusa, rely on reused or weak passwords to gain access. Using a strong password (think long, random and unique to each account) greatly reduces that risk. A password manager can help you generate and store complex passwords so you don't have to remember them all yourself. Get more details about my best expert-reviewed password managers of 2025 here.
4) Monitor for suspicious system time changes: The core of this "time-traveling" attack is clock manipulation: Hackers roll back a device's clock to a time when expired security certificates were still valid. This allows outdated and potentially malicious software to appear trustworthy. Be alert to unexpected system time changes, and if you're managing an organization, use tools that flag and log these types of configuration shifts.
5) Keep systems updated and patch known vulnerabilities: The Medusa ransomware campaign has a track record of exploiting unpatched systems. That means old software, outdated drivers and ignored security updates can all become entry points. Regularly installing updates for your OS, applications and drivers is one of the most effective ways to stay protected. Don't put off those system notifications; they exist for a reason.
The Medusa attack is a good example of how cybercriminals are shifting tactics. Instead of relying on traditional methods like brute force or obvious exploits, they are targeting the basic logic that systems depend on to function. In this case, it is something as simple as the system clock. This kind of strategy challenges the way we think about security. It is not just about building stronger defenses but also about questioning the default assumptions built into the technology we use every day.
How do you think technology companies can better support individual users in protecting their data and devices? Let us know by writing us at Cyberguy.com/Contact.
For more of my tech tips and security alerts, subscribe to my free CyberGuy Report Newsletter by heading to Cyberguy.com/Newsletter.
Follow Kurt on his social channels:
Answers to the most-asked CyberGuy questions:
New from Kurt:
Copyright 2025 CyberGuy.com. All rights reserved.
Try Our AI Features
Explore what Daily8 AI can do for you:
Comments
No comments yet...
Related Articles
Yahoo
an hour ago
- Yahoo
Mom wants answers after Miami rapper gunned downed in Memphis
MEMPHIS, Tenn. — The mother of a rising rapper who was gunned down in Memphis wants to know why he was killed and wants police to catch all the people responsible. Toya Redwing is talking for the first time about her son's death on March 22 near the FedEx Forum. 1 dead, 1 injured in shooting downtown Letorian Hunt, 27, also known as Sayso P, was shot and killed outside the Westin Hotel. Houston Rapper Sauce Walka, whose real name is Albert Walker Mondane, was also wounded when at least three people jumped out of a white Charger and opened fire. Redwing said her son was born and raised in Memphis but lived in Miami. He was in town to visit a sick relative and had been looking forward to coming home. He had only been at the hotel a couple of days before the shooting. 'I want to know who did this. I want to know who sent them. This is what I told the detectives. These boys didn't do this on their own, at least I don't think so,' said Redwing. 'I don't think he was the intended target.' Shortly after the shooting, the 2021 Dodge Charger 392 Scat Pack was recovered, and police issued a warrant for Jayden Dandridge, 21, for first-degree murder and first-degree attempted murder. Last week, Dandridge was found dead in Houston. His death was ruled a homicide. 'I was pretty much numb. I didn't cry or grieve for him. He killed my son, and I still want answers,' Redwing said. 'I can't get to the bottom of it if they are all dead.' Redwing said her son wanted to leave Memphis because of the violence. She said he had opened a recording studio in Miami and recently signed a distribution deal with Sauce Walka's record label. Suspect in downtown Memphis shooting found dead in Houston: MPD She said Hunt was kind and generous, always had a smile on his face, and was finally realizing his dreams. Redwing said her son was her best friend, and the pain of his loss has been unlike anything she has experienced before. 'The fact that he won't ever have children. I won't know what my grandkids look like. I won't know if he will have beautiful little daughters or little boys,' said Redwing. 'Watching his growth from a young boy to the man he had become was amazing.' Redwing said Memphis police are currently outmanned and outgunned. She hopes the FBI will step in, as promised, to help, but believes people in the community also need to get involved to stop the crime. The rapper's mom said she would like to start a foundation to help other mothers dealing with the same kind of grief. She also wants to provide resources to young people who are falling through the cracks and committing these acts of violence. 'I've heard, why do you care about them. Screw them. Those people killed your kid,' said Redwing. 'I can't say that with a straight face and be me. They need to be held accountable, but I do know a lot of these kids want a way out.' Redwing said she wants to do something to keep her son's memory alive and show that his life mattered. Hunt was buried at sea in Miami. Copyright 2025 Nexstar Media, Inc. All rights reserved. This material may not be published, broadcast, rewritten, or redistributed.
Yahoo
2 hours ago
- Yahoo
FBI Chief Kash Patel Stuns Joe Rogan With Swatting Admission
FBI Director Kash Patel left podcast bro Joe Rogan virtually speechless as he casually revealed that his house had been swatted. 'What?' asked a stunned Rogan. 'The head of the FBI gets swatted?' 'These people play, it's the ultimate hypocrisy. They have two sets of rules: One against you, and one for them,' Patel said, having just lit a cigar, during an episode of the Joe Rogan Experience published Friday. Patel did not specify who he meant by 'these people,' but instead stoked fears that broader corrupt actors in the government were attempting to snuff out his 'mission' to 'put out the truth.' Patel added that he was committed to 'congressional oversight' as he used most of the interview to stir the same claims of government corruption and 'bad actors' outlined in his 2024 book, Government Gangsters: The Deep State, the Truth, and the Battle for Our Democracy—which Rogan plugged. Patel also backed up President Donald Trump's allegations that he was being spied on as part of an investigation into Russian election interference. Patel alleged that former FBI director Andrew McCabe and then-Deputy Attorney General Rod Rosenstein as privy to the scheme, and he claimed they lied to cover it up. However, Patel claimed that he 'caught' them because they were 'arrogant' enough to 'write everything down.' 'Why would they write everything down?' Rogan asked. 'They are so arrogant. They think, 'No one is gonna catch us. I'm going to write everything down. We are gonna put it in a vault, and no one is gonna find it,'' claimed Patel. 'Well, you know what? I found the vault.' Patel claimed they had committed 'illegal activity' by pushing a 'disinformation campaign.' Patel cryptically added with a grin, 'And now I'm going to work.' The Daily Beast has contacted both McCabe and Rosenstein for comment. Rogan, taking Patel's word that crimes had been committed, asked, 'Is there a statute of limitations on these crimes?' Patel said 'generally' there is a five-year statute of limitations on what are known as 'process' crimes. 'But if you can tie them to an overarching conspiracy, there is no statute of limitations,' claimed Patel. 'So if there was more egregious conduct that no one knew about before that we are just finding, then we will have to relook at it.' Yet Patel promised, 'The one thing we will do is put out all that information to the American public.' He added, 'And if we can work with our partners at the DOJ to come up with a prosecution, that will be their decision.' The Daily Beast has contacted Patel for further comment.
Yahoo
2 hours ago
- Yahoo
Enrique Tarrio and other freed January 6 convicts sue over prosecutions
Enrique Tarrio, the former national leader of the far-right Proud Boys group, and four other members convicted of orchestrating the deadly 6 January 2021 US Capitol attack are suing the federal government for allegedly violating their rights. A lawsuit filed on Friday in federal court in Florida alleges that FBI agents and prosecutors acted with personal malice when they investigated and charged the five, who were all granted pardons or commutations when Donald Trump returned to office in January. Tarrio and fellow plaintiffs Zachary Rehl, Ethan Nordean, Joseph Biggs and Dominic Pezzola are seeking unspecified compensatory damages, plus $100m each in punitive damages, according to the lawsuit filed in US district court in Orlando. Tarrio received a 22-year prison sentence in September 2023 for his part in organizing the attack, even though he was not present when Trump's supporters overran the Capitol building bent on keeping him in power after his defeat to Joe Biden in the 2020 presidential election. Related: Former Capitol attack prosecutor slams Trump pardons of January 6 defendants Nordean, Biggs and Rehl were convicted of seditious conspiracy after the same trial – which lasted almost four months – and given lengthy prison terms. Pezzola was acquitted of seditious conspiracy but handed a 10-year sentence for convictions including destruction of government property. All four, along with 10 others, had their sentences commuted following Trump's sweeping action in January that also granted full and unconditional pardons for about 1,500 people involved in the violence, which was linked to several deaths and the injuries of about 140 law enforcement officers. Trump's order referred to the Capitol attack convicts as 'hostages' and stated: 'This proclamation ends a grave national injustice that has been perpetrated upon the American people over the last four years and begins a process of national reconciliation.' According to the Wall Street Journal (WSJ), which reported the lawsuit development on Friday, the plaintiffs claim the government lacked probable cause to raid their homes after they turned themselves in in connection with their indictments – and that FBI employees reviewed privileged communications with their attorneys. 'Through the use of evidence tampering, witness intimidation, violations of attorney-client privilege, and placing spies to report on trial strategy, the government got its fondest wish of imprisoning the [January 6] defendants, the modern equivalent of placing one's enemies' heads on a spike outside the town wall as a warning to any who would think to challenge the status quo,' the lawsuit states. The document also complains that the men were poorly treated during their time in detention, held for an extended pre-trial period without bond, and held in solitary confinement without cause. 'The plaintiffs themselves did not obstruct the proceedings at the Capitol, destroy government property, resist arrest, conspire to impede the police, or participate in civil disorder, nor did they plan for or order anyone else to do so,' the lawsuit continues, contesting evidence presented by prosecutors at their trial. 'Rather, mere statements of approval, agreement, and enthusiasm are apparently enough to form a criminal conspiracy, provided the points of view are offensive enough to employees of the Federal Bureau of Investigation and the Department of Justice, no matter how attenuated from criminal action they may have been.' Neither the FBI nor the justice department immediately responded to requests for comment. Both are now controlled by close Trump allies: Kash Patel, the FBI director, and Pam Bondi, the attorney general. Tarrio was arrested in Washington DC within a month of his release for allegedly striking a woman who was protesting against a gathering attended by Proud Boys members that received pardons. Two days later, he was captured in a video taken in the lobby of a Washington hotel haranguing officers who were injured during the insurrection as they attended a conference. In May, it was reported that the Trump administration had reached a $5m wrongful death settlement with the family of Ashli Babbitt, a Trump supporter who was fatally shot by a police officer as she attempted to break through a door into the speaker's lobby at the Capitol while participating in the attack. Tarrio, from Miami, told the WSJ in an interview on Friday that he believed the legal environment had changed since Trump's re-election. He said he had finally been able to find a law firm to take his compensation case after failing to find lawyers in Florida to represent him in legal action against social media companies and banks he said had 'deplatformed' people for their political beliefs.
