LeChiffre, Ransomware Ran Manually
2016-01-23
LeChiffre is yet another ransomware that recently has been observed to cause some major damage (in Mumbai – read more here). Not much material about it is available, so weRead More →
Web Reconnaissance Attack Infects 3,500 Websites, Possibly WordPress
2016-01-23
Attackers are adding unauthorized code at the top of infected websites, over 3,500 8sites already infected. Alarms are ringing in Symantec’s offices, as its research team has discovered a massiveRead More →
Trojan.DNSChanger circumvents Powershell restrictions
2016-01-23
In recent variants of the infamous DNS-changer adware we have found that the coders use a particularly interesting method to bypass the default restrictions imposed for executing Powershell scripts. ExecutionRead More →
TorMail hack, FBI surgical operation, or dragnet surveillance?
2016-01-23
In 2013 the FBI agents seized TorMail, now new information are emerging on the operations. Someone believes it was a surgical ops others accuse Feds of dragnet surveillance. In 2013 theRead More →
Chinese Group Trying to Exploit Old Fortinet SSH Backdoor
2016-01-22
Scans for Fortinet devices have intensified. An unknown group has been scanning the Internet for old Fortinet equipment that includes a secret SSH backdoor account that can be exploited to takeRead More →
Don’t open that Facebook email attachment — it could be malware
2016-01-22
Two weeks ago, the Comodo Threat Research Lab discovered a malware campaign aimed at businesses and consumers using the WhatsApp mobile messaging service. That attack used official looking emails masqueradingRead More →
FBI May Have Hacked Innocent TorMail Users
2016-01-22
Back in 2013, the FBI seized TorMail, one of the most popular dark web email services, and shortly after started to rifle through the server’s contents. At the time, researchersRead More →
Media devices sold to feds have hidden backdoor with sniffing functions
2016-01-22
Highly privileged account could be used to hack customers’ networks, researchers warn. A company that supplies audio-visual and building control equipment to the US Army, the White House, and otherRead More →
British Government Has Already Created a Data Encryption Protocol Complete With a Backdoor
2016-01-22
GCHQ insists on shooting itself in the foot with backdoored VoIP encryption protocol, developed in-house by CESG. Britain’s intelligence agency, GCHQ (Government Communications Headquarters), has already developed a phone encryptionRead More →
MSN Home Page Drops More Malware Via Malvertising
2016-01-21
Malvertisers are once again abusing ad technology platform AdSpirit and exposing visitors of the MSN homepage to malware. These attacks appeared to have been primarily focused on Germans users viaRead More →
iOS cookie theft bug allowed hackers to impersonate users
2016-01-21
Apple fixes vulnerability 2.5 years after receiving private report. Apple has squashed a bug in its iOS operating system that made it possible for hackers to impersonate end users whoRead More →
TeslaCrypt Decrypted: Flaw in TeslaCrypt allows Victim’s to Recover their Files
2016-01-21
For a little over a month, researchers and previous victims have been quietly helping TeslaCrypt victims get their files back using a flaw in the TeslaCrypt’s encryption key storage algorithm. The information thatRead More →
Trojan Found Pre-Installed on the Firmware of Some Phillips s307 Android Smartphones
2016-01-21
Nasty trojan found in the Android OS system loader. Some Phillips s307 Android smartphones come with a pre-installed trojan (Android.Cooee.1) that shows ads and animations on the user’s main screen, andRead More →
Intel Fixes Security Bug to Prevent Attackers From Hijacking the Driver Update Process
2016-01-21
Intel-powered laptops are safe again. So are desktops. Intel has released version 2.4 of the Intel Driver Update Utility, fixing a critical security flaw (CVE-2016-1493) that enabled attackers to interceptRead More →
Asacub Evolves from Simple Spyware to Full-On Android Banking Trojan
2016-01-20
Cyber-crooks secretly develop new Asacub Android malware, deploy it for the first time this Christmas. Over the past six months, security experts from Kaspersky have observed the slow evolution of theRead More →
Hot Potato exploit mashes old vulns into Windows System ‘sploit
2016-01-20
Exploit takes a long time to cook Windows, but gives hackers a menu of evil options. Shmoocon Foxglove Security bod Stephen Breen has strung together dusty unpatched Windows vulnerabilities toRead More →
Chrome Extensions Steal Your Steam Inventory
2016-01-20
Steam scammer caught red-handed by Panda Security researcher. A crafty Steam user created four Chrome extensions that would empty out his victim’s Steam inventory and send all their game perks toRead More →
Facebook Android App Gets Built-in TOR Support But Still Needs Your Real Name
2016-01-20
Short Bytes: If you are interested in increasing the security and privacy of your network traffic, here’s a great news for you. Facebook has just rolled out experimental TOR supportRead More →
Android and Linux Zero-Day Gives Attackers Root Access
2016-01-20
A new zero-day vulnerability allows Android or Linux applications to escalate privileges. Security researchers have discovered a new zero-day vulnerability in Linux kernel that affects both the Linux operating system and theRead More →
A new archive of US voting records appeared on the Dark Web
2016-01-20
A new archive containing alleged voting records of millions of US citizens is available on a hidden service on the dark web. Joseph Fox from Motherboard discovered alleged voting recordsRead More →
