Following an investigation by Pen Test Partners, British Telecom (BT) has released a firmware upgrade for their popular range of Wi-Fi extenders. The investigation uncovered vulnerabilities within the firmware whenRead More →
Supposedly hacked data surfaced on underground website for sale in August. In August, a dealer in stolen data who goes by the online moniker “Peace”—the person or persons who previously soldRead More →
Malware is infesting a growing number of IoT devices, but their owners may be completely unaware of it. Malware targeting the Internet of Things (IoT) has come of age andRead More →
A Check Point report suggests organisations’ security hasn’t kept pace to meet a ninefold rise in malicious software. An exponential rise in malware means employees are at their highest-ever riskRead More →
Last week, KrebsOnSecurity detailed how BackConnect Inc. — a company that defends victims against large-scale distributed denial-of-service (DDoS) attacks — admitted to hijacking hundreds of Internet addresses from a EuropeanRead More →
Hacking SQL servers is fun. Early this year, I blogged about hacking SQL servers without a password. I used Ettercap to perform a man-in-the-middle attack between a Microsoft SQL serverRead More →
Terbium Labs’ software can now be used to detect when data belonging to companies is being flogged in the underground. Terbium Labs has announced the release of Dark Web dataRead More →
The website for Just For Men, a company that sells various products for men as its name implies, was serving malware to its visitors. Our automated systems detected the drive-byRead More →
InfoArmor has identified a special tool used by cybercriminals to distribute malware by packaging it with the most popular torrent files on the Internet. The bad actors have analyzed trendsRead More →
In the past, we’ve seen superuser rights exploit advertising applications such as Leech, Guerrilla, Ztorg. This use of root privileges is not typical, however, for banking malware attacks, because moneyRead More →
