Exploiting Recursion in the Linux Kernel
2016-06-21
On June 1st, I reported an arbitrary recursion bug in the Linux kernel that can be triggered by a local user on Ubuntu if the system was installed with homeRead More →
AGGRESSIVE TRIADA, HORDE VARIANTS UP MOBILE MALWARE THREAT
2016-06-21
Two mobile variants of Triada and Horde malware have been spotted in the wild by Check Point Software Technologies researchers who warn the latest samples have adopted dangerous new techniques includingRead More →
Hacker breached the Canadian Quebec Liberal Party’s video conferencing software
2016-06-20
An unnamed hacker hacked the video conferencing software used by the Quebec Liberal Party and shared the news with the media. Politicians are a privileged target of hackers, in manyRead More →
T-Mobile insider steals customer data to make a quick koruna
2016-06-20
The employee tried to cash in by stealing and selling the data of up to 1.5 million Czech customers. T-Mobile’s arm in the Czech Republic has uncovered an employee’s intentionsRead More →
GoToMyPC Remote Desktop Service Under Attack, Resets User Passwords
2016-06-20
Incident seems to be another ATO (account takeover) attack.GoToMyPC decided to reset user passwords after attackers tried to hack into customer accounts over the weekend using what the company callsRead More →
You Acer holes! PC maker leaks payment cards in e-store hack
2016-06-20
Lost info includes names, addresses, numbers and security codes. Acer’s insecure customer database spilled people’s personal information – including full payment card numbers – into hackers’ hands for more than aRead More →
Tor Browser Integrates Tool to Fend Off Deanonymization Exploits
2016-06-20
Selfrando is an alternative to ASLR memory randomization. At the start of June, the Tor Project released version 6.5a1 of the Tor Browser, but compared to previous releases, this one alsoRead More →
Fund Based on Digital Currency Ethereum to Wind Down After Alleged Hack
2016-06-18
DAO had just raised $150 million in record crowdfunding effort. A futuristic technology experiment appears to have fallen prey to a common technological risk, as operators of a new investment fundRead More →
FBI’s facial recognition system can access 411 million photos including foreigners
2016-06-18
Today the federal Government Accountability Office (GAO) finally published its exhaustive report on the FBI’s face recognition capabilities. The takeaway: FBI has access to hundreds of millions more photos thanRead More →
The Pirate Bay Co-Founder Slapped $395,000 Fine By Finnish Court
2016-06-18
The Pirate Bay cofounder Peter Sunde says ‘Bullying is the new Black’ after being fined $395,000 in damages to media companies The Pirate Bay co-founder Peter Sunde has been orderedRead More →
Why Ransomware Works: Tactics and Routines Beyond Encryption
2016-06-18
How do companies regardless of size and industry prepare for ransomware attacks? A recent study revealed that businesses are considering saving up Bitcoins, just in case they get hit by theseRead More →
The Ded Cryptor Ransomware thinks you have been Naughty this Year
2016-06-18
A new EDA2 ransomware was discovered by Michael Gillespie called Ded Cryptor. This ransomware has been around for quite a while and targets both Russian and English speaking victims. When installed, the victimsRead More →
Advisory: HTTP Header Injection in Python urllib
2016-06-17
Python’s built-in URL library (“urllib2” in 2.x and “urllib” in 3.x) is vulnerable to protocol stream injection attacks (a.k.a. “smuggling” attacks) via the http scheme. If an attacker could convinceRead More →
Unsupported TeamViewer Versions Exploited For Backdoors, Keylogging
2016-06-17
Users of the TeamViewer remote-access service have beencomplaining in recent weeks about how their systems have been hacked into, unauthorized purchases made on their cards, their bank accounts emptied. Initially itRead More →
Intel x86 CPUs Come with a Secret Backdoor That Nobody Can Touch or Disable
2016-06-17
Intel x86 CPUs Come with a Secret Backdoor That Nobody Can Touch or Disable. Hardware security expert Damien Zammit says that recent Intel x86 CPUs come with a secret subsystemRead More →
GitHub attacker launched massive login campaign using stolen passwords
2016-06-17
Repository’s own account data not breached, affected passwords reset. On June 14, someone using what appears to have been a list of e-mail addresses and passwords obtained from the breach ofRead More →
Microsoft OLE Abused to Embed Malicious Code in Office Docs, Similarly to Macros
2016-06-16
Sysadmins should disable OLE object execution. Malware coders have found a macro-like infection method that abuses the Microsoft Object Linking and Embedding (OLE) system to trick users into running malicious scripts.Read More →
Windows ‘BadTunnel’ Attack Hijacks Network Traffic
2016-06-16
A researcher in China has discovered a design flaw in Microsoft Windows that affects all versions of the operating system—including Windows 10—and lets an attacker hijack a victim organization’s networkRead More →
Mossack Fonseca IT Worker Arrested in Switzerland, Suspected Panama Papers Leak
2016-06-16
Man arrested after Mossack Fonseca filed official complaint. An IT manager for Panamanian law firm Mossack Fonseca was arrested yesterday in Geneva, Switzerland, on suspicion of data theft, Swiss newspaper LeRead More →
Hacking Facebook Accounts with just a phone number through the SS7 protocol
2016-06-16
Even where users have chosen strong passwords and taken extrasecurity measures, their Facebook FB -0.29% accounts are not safe from hackers. Researchers have proven just that by taking control of a FacebookRead More →
