Browsing category
The recent hack of fembot dating extramarital affairs website Ashley Madison, which resulted in data from millions of accounts being dumped online, has one more salutary yet familiar lesson to deliver: even very well encrypted stupid passwords are still stupid. While plenty of aspects of Ashley Madison’s business and operations have raised eyebrows, the firm did apparently use robust and respected encryption for its […]
Jonathan Petit, security researcher at Security Innovation, Inc., has revealed he can easily fool the LiDAR sensors on any self-driving car to slow down or abruptly stop by sending it a simple laser pulse. LiDAR stands for Light Detection and Ranging and is a sensing technology that can measure the distance of an object by […]
A man credited with helping to create the infamous Gozi banking malware has pled guilty in a US court. Deniss Calovskis, 30, of Latvia was arrested November 2012 and spent 10 months in the Baltic state’s cooler before being extradited to the USA where he’s been behind bars ever since. Last Friday Calovskis appeared in […]
UNSW staff had to scramble to contain an embarrassing outbreak of undergraduate humour, after the university’s Facebook page was hacked on its annual open day. As the university prepared to showcase its faculties and grounds to thousands of potential students, its Facebook page was infiltrated by images of scantily clad women, cleavages and bare backsides, causing concern among […]
While working on some forthcoming research on cryptographic backdoors i came across an interesting asymmetric backdoor designed to subvert RSA key generation algorithms by Ryan Castellucci. The backdoor is particularly interesting because unlike backdoors which subvert key generation by weakening the composite public modulus (eg. choosing prime numbers too close to eachother, choosing a common […]
G DATA security experts published their latest research in which they’ve analyzed top Chinese Android smartphone models and found that a large number of them ship with pre-installed malware and spyware. According to G DATA’s team, their interest in this matter was first sparked when in 2014, the Star N9500 smartphone was found to be […]
Six weeks after hackers revealed vulnerabilities in a 2014 Jeep Cherokee that they could use to take over its transmission and brakes, Chrysler has pushed out its patch for that epic exploit. Now it’s getting another round of criticism for what some are calling a sloppy method of distributing that patch: On more than a […]
A new strain of Android ransomware disguised as a video player app uses a means of communication unseen in other similar malware. Most of the victims are in the United States and the mobile crypto-ransomware scam seems to be profitable according to researchers at Check Point Software Technologies, who said that tens of thousands of […]
The hack revealed the inner workings of the studio, as well as the personal information of more than 47,000 celebrities, freelancers, and current and former Sony employees. Sony Pictures has reached a settlement agreement with nine former employees who sued the studio claiming their personal information was stolen in a hack last year related to […]
CoreBot is a new malware that steals user credentials and have the ability to cause a great amount of trouble. This stealer malware is specifically designed with ample strength that it is quite easy to steal data from targeted victim and have the capability to control the computer, reveals a security report published by IBM. […]
Worried about Windows 10’s deep-reaching user tracking? Some of it’s coming to Windows 7 and 8, too. Windows 10 is a deliciously good operating system, all things considered, but its abundant user-tracking has prompted many privacy-minded individuals to stay pat with older versions of Windows. Now, Microsoft’s providing those concerned individuals a reason to upgrade. […]
Cyber-attackers launch Distributed Denial of Service (DDoS) violation on law enforcement agency in apparent revenge for previous arrests. Cyber-attackers have taken down the website of the National Crime Agency (NCA) in apparent revenge for arrests made last week. The NCA website was temporarily down on Tuesday morning, four days after six teenagers were released on […]
A brand-new advanced banking Trojan discovered in the wild has been named “Shifu” by IBM Security X-Force, after the Japanese word for thief. The malware appears to have been active since as early as April 2015; it was unearthed by IBM Security antifraud platforms through continuous protection of customer endpoints all over the world. Shifu currently […]
Security experts at Sensecy have uncovered ORX-Locker, a Darknet Ransomware-as-a-service platform that could allow everyone to become a cyber criminal. It is becoming even easier to become a cyber-criminal thanks to the model of sale known as malware-as-a-service that offers off-the-shelf malware for rent or sale. Recently malware authors started to offer also Ransomware-as-a-Service (RaaS), […]
The Electronic Frontier Foundation (EFF) has issued an alert, urging users to watch out for a spear phishing email campaign that’s infecting victims with the Sednit malware. This was brought to EFF’s attention by Google’s security team, after the electronicfrontierfoundation.org domain was flagged in one of their routine scans. The official EFF domain name is […]
ussian-speaking hackers have breached 97 websites, mostly dating-related, and stolen login credentials, putting hundreds of thousands of users at risk. Many of the websites are niche dating ones similar to Ashley Madison, according to a list compiled by Hold Security, a Wisconsin-based company that specializes in analyzing data breaches. A few are job-related sites. Batches […]
British police have today announced the arrest of six people in connection with distributed denial-of-service (DDoS) attacks that attempted to bring down websites belonging to – amongst others – a national newspaper, a school and a number of online retailers. The link between the attacks is that they all appear to have been conducted using […]
A website domain has been discovered by Google’s cyber-security team to be impersonating the Electronic Frontier Foundation (EFF). Registered on August 4, 2015, electronicfrontierfoundation.org has since been targeting unknown victims with a spear phishing attack and spreading malware into their systems. [must url=”https://www.hackread.com/fake-bbc-website-lures-victims-with-charlie-hebdo-misinfo/”]Fake BBC Website lures victims with Charlie Hebdo misinformation[/must] Unfortunately, the domain seems […]
The former FireEye intern that was arrested during the Darkode forum FBI crackdown has pleaded guilty and is now facing up to 10 years in prison and a fine of $250,000 / €217,000. Morgan Culbertson, a student at Carnegie Mellon University, had landed between May 2014 and August 2014 an internship at FireEye, a famous […]
It’s the third bug of the year for Facebook bounty hunter Laxman Muthiyah. At the start of 2015 he noticed that if you could view a photo album on Facebook, you could probably delete it as well, with or without permission. Simply put, as long as you were authenticated by Facebook to delete somephotos, you […]
Six teenagers, including an 18-year-old from West Yorkshire, have been arrested on suspicion of launching cyber attacks using a service created by a notorious hacking group which previously targeted Xbox and PlayStation networks. The male suspects, who are aged between 15 and 18, were held during an operation targeting alleged users of a tool known […]