Sensitive information about the location and staffing of military bases and spy outposts around the world has been revealed by a fitness tracking company. The details were released by Strava in aRead More →
Ploutus is one of the most advanced ATM malware families we’ve seen in the last few years. Discovered for the first time in Mexico back in 2013, Ploutus enabled criminals to emptyRead More →
Over 2,000 WordPress sites are infected with a malicious script that can deliver both a keylogger and the in-browser cryptocurrency miner CoinHive. Researchers at Sucuri who made the discovery, said theRead More →
Another day, another cryptocurrency exchange under cyber attack – This time Coincheck, Japanese cryptocurrency exchange has been hacked and lost $534 million in NEM tokens. One of Japan’s and Asia’s largest cryptocurrency exchange Coincheck has sufferedRead More →
At the recent Black Hat Europe conference, Positive Technologies researchers Mark Ermolov and Maxim Goryachy spoke about the vulnerability in Intel Management Engine 11, which opens up access to most ofRead More →
I’m on a plane again…this time flying home from one of my favorite hacker cons: ShmooCon! I was stoked to give a talk about auditing on macOS. Yah, I know that doesn’tRead More →
Ad campaign lets attackers profit while unwitting users watch videos. YouTube was recently caught displaying ads that covertly leach off visitors’ CPUs and electricity to generate digital currency on behalfRead More →
Fixing the chip security holes Meltdown and Spectre will take a long, long time, but Linus Torvalds and Intel developers are slowly moving to answers for Linux. Spectre and MeltdownRead More →
A study into the security of hardware license tokens. In the past years, the problem of vulnerabilities in industrial automation systems has been becoming increasingly important. The fact that industrial controlRead More →
Just five days before a three-year old Bitcoin puzzle was set to expire, a PhD student cracked the code. A three-year old Bitcoin mystery came to an end last weekRead More →
Electron, a popular web application writing platform underlying some extremely widespread software including Skype and Slack, is vulnerable to a critical remote code execution vulnerability. Apps are only vulnerable if they run onRead More →
Forced redirects from Zirconium group push phony malware and fake Flash updates. Last year brought a surge of sketchy online ads to the Internet that tried to trick viewers intoRead More →
MOTIVATION Soon after releasing the build for the Budget Cracking Rig, I received a lot of community feedback. Most feedback circled around one main issue: Cost. Reality is that not many smallRead More →
Officials leaving their smartphones at home on foreign trips. Government officials in the Netherlands are leaving their own smartphones at home when traveling to other countries, switching instead to an old-schoolRead More →
The 21-year-old has been jailed for running a botnet and selling malware in the Dark Web. A 21-year-old has been jailed for two years after being convicted of launching DDoSRead More →
“There is no need for a novelty 2FA if it doesn’t actually serve a purpose. Uber has ignored a security bug that can allow an attacker to hack into userRead More →
Cloudflare is a service that acts as a middleman between a website and its end users, protecting it from various attacks. Unfortunately, those websites are often poorly configured, allowing anRead More →
The company put a hold on payments through its site after fraud reports emerged. OnePlus has confirmed that its systems have been breached, following reports of credit card fraud from customersRead More →
Forcepoint Security Labs have recently observed a peculiar email campaign distributing a variant of the Dridex banking trojan. The campaign used compromised FTP sites instead of the more usual HTTP link asRead More →
What you don’t see won’t hurt you, must have been the reasoning of the threat actors who created the latest batch of extensions that make these browser hijackers even more difficult toRead More →
