How do hackers hide their IP address?
2017-05-06
How do hackers hide their IP address from prying eyes. Hackers are known for breaking into most impregnable web servers around the world and still avoid being caught. One ofRead More →
How to remote hijack computers using Intel’s insecure chips: Just use an empty login string
2017-05-06
Exploit to pwn systems using vPro and AMT. Code dive You can remotely commandeer and control computers that use vulnerable Intel chipsets by sending them empty authentication strings. You readRead More →
Windows Defender ATP thwarts Operation WilySupply software supply chain cyberattack
2017-05-05
Several weeks ago, the Windows Defender Advanced Threat Protection (Windows Defender ATP) research team noticed security alerts that demonstrated an intriguing attack pattern. These early alerts uncovered a well-planned, finelyRead More →
Dark Web Marketplace Shut Down in Slovakia
2017-05-05
Law enforcement in Slovakia has arrested two individuals for their involvement in drugs and weapons trafficking, among which, one is suspected of operating the Dark Web marketplace known as Bloomsfield.Read More →
Leaked: The UK’s secret blueprint with telcos for mass spying on internet, phones – and backdoors
2017-05-05
Real-time full-blown snooping with breakable encryption. The UK government has secretly drawn up more details of its new bulk surveillance powers – awarding itself the ability to monitor Brits’ liveRead More →
WordPress Zero-Day Could Expose Password Reset Emails
2017-05-05
Polish security expert Dawid Golunski has discovered a zero-day in the WordPress password reset mechanism that would allow an attacker to obtain the password reset link, under certain circumstances. TheRead More →
PowerShell Injection with Diskless Payload Persistence and Bypass Techniques
2017-05-04
PowerShell continues to be the tool of choice for defenders, IT administrators, and hackers. The extensibility, support, and ability to have a full-fledged programming language at your fingertips provides aRead More →
Some Twitter Dude Is Trying to Take Credit for the Google Docs Phishing Attack
2017-05-04
A Twitter user by the name @EugenePupov is trying to take credit for the massive phishing attack that hit Gmail users last night, and which attempted to trick users intoRead More →
Watch Researchers Hack an Industrial Robot and Sabotage Production
2017-05-04
There is an insane amount of industrial robots connected to the Internet, and even worse, thousands are left with no form of user authentication whatsoever, open to attack from anyoneRead More →
Hundreds of privacy-invading apps are using ultrasonic sounds to track you
2017-05-04
Apps are using ad-tracking audio signals that your phone can hear, but you can’t. A new privacy-busting technique that tracks consumers through the use of ultrasonic tones may have onceRead More →
Thieves drain 2fa-protected bank accounts by abusing SS7 routing protocol
2017-05-04
The same weakness could be used to eavesdrop on calls and track users’ locations. A known security hole in the networking protocol used by cellphone providers around the world playedRead More →
Facebook enters war against “information operations,” acknowledges election hijinx
2017-05-03
Facebook Security has revealed more of how the company has begun to combat the spread of propaganda and “fake news,” acknowledging for the first time that the company tracked aRead More →
Chinese TA459 APT exploits CVE-2017-0199 flaw to target Financial firms
2017-05-03
Malware researchers at security firm ProofPoint reported the Chinese TA459 APT has exploited the CVE-2017-0199 vulnerability to target Financial firms. The notorious cyber espionage group tracked as TA459 APT has targeted analystsRead More →
Information Security Practices of Aadhaar – 135 Million Indian government payment card details leaked
2017-05-03
A CIS study estimated number of Aadhaar numbers leaked through 4 gov portals could be around 135 million and 100M bank account numbers. The Aadhaar is the world’s largest biometric ID system,Read More →
Behold, the spear phish that just might be good enough to hook you
2017-05-03
Attackers are coming up with creative ways to trick you into opening malicious files. To understand why Carbanak is one of the Internet’s most skilled and successful criminal groups, considerRead More →
New Shodan Tool Can Find Malware Command and Control (C&C) Servers
2017-05-02
Shodan and Recorded Future have launched today a search engine for discovering malware command-and-control (C&C) servers. Named Malware Hunter, this new tool is integrated into Shodan, a search engine forRead More →
Hyundai Patches Mobile App Flaws That Allow Hackers to Steal Cars
2017-05-02
Hyundai has patched a security flaw in the Blue Link mobile application that exposed sensitive information, which hackers could have used to track down, unlock, and start Hyundai cars. Rapid7Read More →
NSA announces it will stop surveillance activities on emails, texts and other internet communications
2017-05-02
NSA announces a change in its surveillance activities, it will no longer spy on citizens’ emails, texts, and other Internet communications. It is official, the US NSA announced it will noRead More →
IBM Warns Customers That Some of Its USB Flash Drives May Contain Malware
2017-05-02
IBM has issued a security alert last week, warning customers that some USB flash drives shipped with IBM Storwize products may contain malicious code. The USB flash drive is saidRead More →
Intel Fixes 9-Year-Old CPU Flaw That Allows Remote Code Execution
2017-05-02
Intel’s security team released a series of patches yesterday that fix a remote code execution (RCE) bug found in the Intel Management Engine (ME). The RCE bug affects Intel MERead More →
