Browsing category
A new ransomware has been spotted called 7ev3n that encrypts your data and demands 13 bitcoins to decrypt your files. A 13 bitcoin ransom demand is the largest we have seen to date for this type of infection, but that is only just one of the problems with this ransomware. In addition to the large ransom […]
Linux. BackDoor.Xunpes trojan lets cyber-crooks take control and execute commands on your Linux machine. Threats to Linux computers are now appearing on a regular basis, and what was once dubbed a “no-virus zone” has started being targeted by malware authors. The latest of such threats is a trojan with backdoor capabilities named Linux.BackDoor.Xunpes, discovered by Dr.Web security […]
Casey Smith recently shared his research on twitter, which is to reverse HTTP Shell by using JavaScript. I found it rather interesting and further analyzed this technique. 0x01 Introduction Observing the above screenshot, we’ll learn how to use this technique. Use rundll32.exe to load the JavaScript code in cmd and a HTTP Shell is returned […]
In 2013 the FBI agents seized TorMail, now new information are emerging on the operations. Someone believes it was a surgical ops others accuse Feds of dragnet surveillance. In 2013 the FBI agents seized TorMail, at the time the most popular dark web email services. The US law enforcement agency seized the TorMail database during in concomitants of the […]
Back in 2013, the FBI seized TorMail, one of the most popular dark web email services, and shortly after started to rifle through the server’s contents. At the time, researchers suspected the agency had also deployed a network investigative technique (NIT)—the FBI’s term for a hacking tool—to infect users of the site. Now, confirmation of […]
GCHQ insists on shooting itself in the foot with backdoored VoIP encryption protocol, developed in-house by CESG. Britain’s intelligence agency, GCHQ (Government Communications Headquarters), has already developed a phone encryption protocol that contains a backdoor, as the government has been recently asking companies to provide. During the past year, both the US and UK governments […]
If you visit MSN.com there is a chance your PC has been affected with a malware — Outlook users should also check for it as upon signing out from their email they are redirected to MSN home page. Once again, Microsoft becomes the victim of malicious malvertising, and the culprit behind these misleading ads is […]
For a little over a month, researchers and previous victims have been quietly helping TeslaCrypt victims get their files back using a flaw in the TeslaCrypt’s encryption key storage algorithm. The information that the ransomware could be decrypted was being kept quiet so that that the malware developer would not learn about it and fix the flaw. Since […]
Exploit takes a long time to cook Windows, but gives hackers a menu of evil options. Shmoocon Foxglove Security bod Stephen Breen has strung together dusty unpatched Windows vulnerabilities to gain local system-level access on Windows versions up to 8.1. The unholy zero-day concoction, reported to Microsoft in September and still unpatched, is a reliable […]
Short Bytes: If you are interested in increasing the security and privacy of your network traffic, here’s a great news for you. Facebook has just rolled out experimental TOR support for its Android app. Well, Facebook still needs your real name and information — how is that a way to stay anonymous? These are the […]
A new archive containing alleged voting records of millions of US citizens is available on a hidden service on the dark web. Joseph Fox from Motherboard discovered alleged voting records of millions of American citizens on a website in the dark web. The data were published on a website linked to a notorious cybercrime forum, […]
A new Linux malware has been discovered which aims to help criminals steal data and spy on the PCs of infected users. The renowned IT security software developers Dr.Web from Russia have discovered a new malware targeting Linux users with the ability to embed itself with JPEG file format and send a screenshot of user’s […]
The computer networks installed at the main airport in Kiev, Ukraine, have been identified as containing malware. The discovery was made public by a report from Reuters. The report stated that the IT network of Boryspil International Airport, which is located nearby Kiev, has been infected by malware. As per the report, the IT network […]
Walmart-owned store patches hole, but it was open for nearly 2 years. Retailer Asda dragged its heels for nearly two years before finally this week tackling a set of security vulnerabilities reported to it by a UK consultant. Asda has acknowledged the flaws – which Paul Moore, who discovered them, argues offer up an account […]
A new variant of the infamous Tinba banking trojan has emerged in the wild and is targeting financial institutions in the Asia Pacific region. Even small threats can scare the giants, this is the case of Tinba, a small malware that continues to create serious problems for financial institutions. Tinba is a popular financial trojan, the fifth version is […]
This is how a $30 D-Link webcam can be converted into a backdoor. Researchers at US security firm Vectra Networks have hacked a ‘tiny’ D-Link web camera and demonstrated how it can be abused by cybercriminals and turned into a medium to steal data or for sending additional commands. In other words, they have shown how the […]
In the summer of 2014, anonymous hackers flooded the internet with private nude photos of major (and minor) celebrities. Two years later, new details show the FBI thinks they identified Jennifer Lawrence’s hacker. But no one’s facing charges. Last year, Gawker reported that the FBI had raided the Chicago home of Emilio Herrera, alleging that […]
New interesting revelation about the Stuxnet attack published by The New York Times, a must read for experts. The popular cyber security expert Mikko Hypponen has published an interesting blog post on the Stuxnet malware. Recently The New York Times has published a detailed article on an Israeli test on worm crucial to interfere and […]
This article looks at how an attacker can intercept and read emails sent from one email provider to another by performing a DNS MX record hijacking attack. While our research on the state of email delivery securityindicates that this attack is less pervasive than the TLS downgrade attack, it is equally effective at defeating email […]
Over the years, I have written many articles here on Null Byte chronicling the many the hacks of the NSA, including the recent hack of the Juniper Networks VPN. (By the way, my speculation in that article has proven to be correct. The NSA did embed a backdoor on those devices.) Many readers here have […]
THE DEPARTMENT OF Transportation and its automotive safety branch, the National Highway Traffic and Safety Administration, are waking up to the threat of hackable vulnerabilities in Internet-connected cars and trucks. Now they’re nudging the auto giants that make those vehicles to wake up, too—starting with a mandate to listen more closely to the security researchers […]