BrickerBot Author Claims He Bricked Two Million Devices
2017-04-21
Just like Wifatch and Hajime, the BrickerBot malware is the work of a vigilante grey-hat, who goes online by the name of Janit0r, a nickname he chose on the HackRead More →
Vulnerabilities in Linksys routers allow attackers to hijack dozens of models
2017-04-21
Cyber security experts disclosed the existence of 10 unpatched security flaws in dozens of Linksys routers widely used today. The IOActive senior security consultant Tao Sauvage and the independent securityRead More →
Malware Author Uses Tweets to Control His Lame DDoS Botnet
2017-04-21
A Russian malware author is using codified tweets to start and stop DDoS attacks against desired targets. The DDoS attacks are launched from the computers of infected users using aRead More →
ANALYZING THE DOUBLEPULSAR KERNEL DLL INJECTION TECHNIQUE
2017-04-20
Like many in the security industry, we’ve been busy investigating the implications of the Shadow Brokers leak, with the DOUBLEPULSAR payload in particular attracting our attention. Like many in theRead More →
Windows bug used to spread Stuxnet remains world’s most exploited
2017-04-20
Code-execution flaw is triggered by plugging a booby-trapped USB into vulnerable PCs. One of the Microsoft Windows vulnerabilities used to spread the Stuxnet worm that targeted Iran remained the mostRead More →
Ambient Light Sensors Can Be Used to Steal Browser Data
2017-04-20
Sensors used to detect the level of ambient light can be used to steal browser data, according to privacy expert Lukasz Olejnik. Over the past decade, ambient light sensors haveRead More →
Homograph Phishing Attacks are almost impossible to detect on major browsers
2017-04-20
The Chinese security Xudong Zheng is warning of Homograph Phishing Attacks are “almost impossible to detect” also to experts. The Chinese security researcher Xudong Zheng has devised a phishing techniqueRead More →
InterContinental Hotels Group reveals ‘how it minimized recent malware attack’
2017-04-19
The InterContinental Hotels Group (IHG) claims the implementation of its Secure Payment Solution (SPS) has helped to minimize a recent data breach that may have affected as many as 1,000Read More →
Vigilante botnet infects IoT devices before blackhats can hijack them
2017-04-19
Hajime battles with Mirai for control over the Internet of poorly secured things. Mirai, the botnet that threatened the Internet as we knew it last year with record-setting denial-of-service attacks,Read More →
Meet PINLogger, the drive-by exploit that steals smartphone PINs
2017-04-19
Sensors in phones running both iOS and Android reveal all kinds of sensitive info. Smartphones know an awful lot about us. They know if we’re in a car that’s speeding,Read More →
New Open Source RAT Uses Telegram Protocol to Steal Data from Victims
2017-04-19
Someone has created a new Remote Access Trojan (RAT) that uses the Telegram protocol to steal user data from infected devices. The RAT is written in Python and is currentlyRead More →
LOW-COST RANSOMWARE SERVICE DISCOVERED
2017-04-18
A new ransomware as a service (RaaS) called Karmen has been discovered by security researchers at Recorded Future. This service allows anyone, including novices, to set up an account andRead More →
Shoney’s Hit By Apparent Credit Card Breach
2017-04-18
It’s Friday, which means it’s time for another episode of “Which Restaurant Chain Got Hacked?” Multiple sources in the financial industry say they’ve traced a pattern of fraud on customerRead More →
Email Tracking Pixels Used for Pre-Hack Info Gathering
2017-04-18
A simple email marketing trick is also abused by cyber-criminals, who are employing a technique known as “pixel tracking” to gather information on possible targets or to improve the efficiencyRead More →
WAVE OF JAVA-BASED RATS TARGET TAX FILERS
2017-04-18
Spammers are spreading Java-based remote access Trojans, known as jRATs, targeting tax filers with attachments named “IRS Updates.jar” and “Important_PDF.jar” that, if executed, give attackers access to compromised endpoints. Zscaler, which isRead More →
Malware Reaches Play Store as Google Wages War Against BankBot Trojan
2017-04-18
The BankBot Android banking trojan is giving Google engineers headaches, as this particular piece of malware has a knack for avoiding Google’s security scans and reaching the official Play StoreRead More →
Robert Taylor, Innovator Who Shaped Modern Computing, Dies at 85
2017-04-17
Like many inventions, the internet was the work of countless hands. But perhaps no one deserves more credit for that world-changing technological leap than Robert W. Taylor, who died onRead More →
SQL Injection & more via XSS in pgAdmin 4
2017-04-17
This is the story of how I found and exploited XSS (content injection) in the pgAdmin4 1.3 desktop client. (Before I get too much further if you use pgAdmin 4Read More →
Chrome, Firefox, and Opera Vulnerable to Undetectable Phishing Attack
2017-04-17
Browsers such as Chrome, Firefox, and Opera are vulnerable to a new variation of an older attack that allows phishers to register and pass fake domains as the websites ofRead More →
Somebody just hacked Ex-Premier League star Anthony Stokes lover Eilidh Scott’s iCloud account and leaked 240+ explicit images
2017-04-17
Somebody just hacked Ex-Premier League star Anthony Stokes lover Eilidh Scott’s iCloud account and leaked 240+ explicit images. Unknown Hackers hacked into Ex-Premier League star Anthony Stokes lover Eilidh Scott’sRead More →
