Sanctuary Dark Web Market Hacked by Cipher0007
2017-05-31
A hacker that goes by the nickname of Cipher0007 has hacked the Sanctuary Dark Web marketplace. The hacker announced the breach a few hours ago and also posted proof ofRead More →
Motorcycle Gang Busted for Hacking and Stealing Over 150 Jeep Wranglers
2017-05-31
The FBI has arrested members of a motorcycle gang accused to have hacked and stolen over 150 Jeep Wranglers from Southern California, which they later crossed the border into MexicoRead More →
FreeRADIUS allows hackers to log in without credentials
2017-05-30
The security researcher Stefan Winter has discovered a TLS resumption authentication bypass in FreeRADIUS, the world’s most popular RADIUS Server. The security researcher Stefan Winter from the Luxembourg’s high-speed academic network RESTENARead More →
The Shadow Brokers Announce Details About Upcoming Monthly Dump Service
2017-05-30
In a message posted online early this morning, the Shadow Brokers — the cyber-espionage group believed to have stolen hacking tools from the NSA — announced new details about theirRead More →
Split Tunnel SMTP Exploit Allows an Attacker to Inject Payloads Into Email Servers
2017-05-30
There is a way to inject malicious content into email servers running email encryption appliances, a technique that allows attackers to go around email security products. Email encryption appliances (EEAs)Read More →
Filesystem Bug Hangs or Crashes Windows 7 and Windows 8.1
2017-05-26
A bug in Microsoft’s NTFS file system technology allows pranksters to hang or crash computers running Windows Vista, Windows 7, and Windows 8.1 just by tricking the user to accessRead More →
Building Searchable Encrypted Databases with PHP and SQL
2017-05-26
This question shows up from time to time in open source encryption libraries’ bug trackers. This was one of the “weird problems” covered in my talk at B-Sides Orlando (titledRead More →
Millions of Android devices potentially exposed to the Cloak and Dagger attack
2017-05-26
Researchers at Georgia Institute of Technology have discovered a new attack against Android OS, dubbed ‘Cloak and Dagger,’ millions of devices at risk. Security researchers at Georgia Institute of TechnologyRead More →
Security Firm Releases Windows XP Patch for NSA Exploit ESTEEMAUDIT
2017-05-25
Cyber-security firm enSilo has released a patch for Windows XP and Windows Server 2003 that will protect against attacks via ESTEEMAUDIT, a hacking tool dumped online by the Shadow BrokersRead More →
Apple iCloud, Android Nvidia driver N-day exploit details revealed
2017-05-25
Kernels can be exploited and iCloud account user information leaked due to the security flaws. Zimperium has released the public details of security vulnerabilities affecting both the Android and iOSRead More →
A wormable code-execution bug has lurked in Samba for 7 years. Patch now!
2017-05-25
Comparisons to the Windows flaw WCry exploited are exaggerated, but only a little. Maintainers of the Samba networking utility just patched a critical code-execution vulnerability that could pose a severeRead More →
Canadian Teen Allegedly Behind Notorious Dark Web Hacking Forum
2017-05-24
Ping, the administrator of the Hell hacking forum, is allegedly a young boy who supposedly tried to phish teachers. On the dark web, no one knows who you really are.Read More →
Post-exploitation: Mounting vmdk files from Meterpreter
2017-05-24
Whenever I get a shell on a Windows system with VMware installed I feel a certain frustration at not being able to access the filesystem of the available virtual machines.Read More →
Samsung Galaxy S8 Iris Scanner Fooled by a Photo
2017-05-24
A photo of a person’s eye taken at a medium distance is more than enough to trick a Samsung Galaxy S8 smartphone, according to researchers from the Chaos Computer ClubRead More →
New firmware for Netgear routers includes a data collection feature
2017-05-22
A new firmware released for NightHawk R7000 Netgear routers includes a remote data collection feature, here’s how to turn off it. In December, a researcher who used the online moniker AceW0rmRead More →
Yahoo retires ImageMagick library after 18-byte exploit leaks user email content
2017-05-22
The simple line of code made it possible for attackers to view private Yahoo Mail images. Yahoo has decided to retire the use of the ImageMagick library following a researcher’sRead More →
SSD Drives Vulnerable to Attacks That Corrupt User Data
2017-05-22
NAND flash memory chips, the building blocks of solid-state drives (SSDs), include what could be called “programming vulnerabilities” that can be exploited to alter stored data or shorten the SSD’sRead More →
The ultimate Linux Trojan horse: Windows Subsystem for Linux
2017-05-20
Fedora, openSUSE and Ubuntu are now available in the Windows Store, making life easier for Windows-dominant organizations to run open source software. I’m a Linux user. And, as the oldRead More →
DaFont Site Hacked, Almost 700K Accounts Exposed
2017-05-20
Hackers got access to usernames, email addresses, and plaintext passwords thanks to improper hashing. DaFont.com was hacked earlier this month, the company announced, exposing its entire database of almost 700,000Read More →
More people infected by recent WCry worm can unlock PCs without paying ransom
2017-05-20
A tool released on Friday decrypts PCs running a fuller suite of Windows versions. New hope glimmered on Friday for people hit by last week’s virulent ransomware worm after researchersRead More →
