The hacker says this demonstrates that when organizations make hacking tools, those techniques will eventually find their way to the public. In January, Motherboard reported that a hacker had stolenRead More →
The Russia-linked cyber espionage group known as Turla has been using a new piece of JavaScript malware to profile victims, Kaspersky Lab reported on Thursday. Turla is the name ofRead More →
As part of a vulnerability research project for our Sucuri Firewall (WAF), we have been auditing multiple open source projects looking for security issues. While working on WordPress, we discoveredRead More →
Twitter is now the target of a phishing attack that uses methods to trick brand managers and social influencers into fake account verification. Security firm Proofpoint discovered the phishing attack,Read More →
Downloading and trying to open Windows DRM-protected files can deanonymize Tor Browser users and reveal their real IP addresses, security researchers from Hacker House have warned. Attacks using DRM-protected multimediaRead More →
The Pentagon has known about the problem for 8 months. The U.S. Department of Defense could be at risk of being attacked by hackers quite easily, one security researcher warns.Read More →
Ubuntu users are being urged to update their operating systems to address a handful of recently patched OpenSSL vulnerabilities which affect Ubuntu and its derivatives. Developers with Canonical, the company that oversees theRead More →
Zimperium, the mobile security company that discovered the Stagefright bug in the summer of 2015, announced yesterday its intention to buy fully-working exploits for former Android and iOS zero-days. Zero-daysRead More →
A group of researchers from the University Alliance Ruhr has found a cross-site printing bug in the old PostScript language. Popular printer models manufactured by Dell, Brother, Konica, Samsung, HP, and LexmarkRead More →
An unidentified hacker reportedly breached the XBOX 360 and PlayStation Portable ISO forums compromising 2.5 million gamer accounts. The breaches occurred approximately around September 2015 and compromised email addresses, accountRead More →
Malicious Word document with ‘Russian doll’ technique targets NATO countries. Security researchers have identified a hacking campaign seemingly targeted at NATO members, which employs a sophisticated method to infect victimsRead More →
Religious beliefs, political leanings, and medical conditions are up for grabs. OAKLAND, Calif.—In the beginning, people hacked phones. In the decades to follow, hackers turned to computers, smartphones, Internet-connected securityRead More →
Thousands of internet-connected printers could allow an attacker to steal sensitive data, as well as passwords that could allow further compromise of a network. New research published by academics hasRead More →
An iPhone serial number hack could explain why Apple killed its iCloud Activation Lock checker. Apple’s decision to remove its Activation Lock status checker from iCloud may have been becauseRead More →
Today, at the USENIX Enigma conference, Facebook engineers announced a new mechanism for recovering access to lost online accounts, which relies on the cooperation between different online services. Called DelegatedRead More →
In the past week, two security firms, Dr.Web and Emsisoft, suffered DDoS attacks at the hands of cyber-criminals who attempted to bring down their websites as payback for meddling withRead More →
Programming blunders allow miscreants to snatch home gateways’ admin passwords. Researchers are warning of a serious security hole that can be exploited to hijack potentially hundreds of thousands of NetgearRead More →
I have previously recommended a course entitled Software Exploits by Open Security Training, and similarly, a book “called The Shellcoder’s Handbook: Discovering and Exploiting Security Holes”. Using some of the examples presented in theRead More →
Hackers infected 70 percent of storage devices that record data from D.C. police surveillance cameras eight days before President Trump’s inauguration, forcing major citywide reinstallation efforts, according to the policeRead More →
SVG has all the makings of a great malware distribution medium, and crooks are bound to migrate to this new file format, now that Google has moved to ban .jsRead More →
