Browsing category
Google released a bunch of Android patches today, covering off some previously-disclosed issues including the worrying Quadrooter bugs that affected 900 million phones. But another, previously-unknown critical weakness has been covered too and you’ll want to download the patch now because the hack can be delivered hidden inside an innocuous-looking photo in a social media or chat app. […]
LuaBot is the latest addition to the Linux malware scene. A trojan coded in Lua is targeting Linux platforms with the goal of adding them to a global botnet, security researcher MalwareMustDie! has reported today. For an operating system with a minuscule 2.11 percent market share, this is our third story on Linux malware in the […]
Even during August’s holiday season, if you type ‘hacktivists’ in Google News – just for the last week you will get more than 300 news reports mentioning attacks conducted byfamous hacktivists and hacking groups. However, not all of them are actually launched by the original “brand” owners. Several weeks ago, a financial company contacted High-Tech […]
Rambler.ru, Russia’s Yahoo, suffered a data breach in 2012. Rambler.ru, a website nicknamed Russia’s Yahoo, suffered a data breach in 2012 at the hands of unknown hackers, who managed to steal nearly 100 million user records, data breach index service LeakedSource reports. According to data found inside the Rambler.ru data dump files, the incident took place […]
Two Hong Hong government departments were targeted by Chinese hackers belonging the APT3 group just before the legislative elections. Security experts from FireEye have discovered a new cyber espionage campaign launched by the Chinese APT3 group against Hong Kong Government before upcoming parliamentary elections that are to be held today September 4. The hackers targeted two Hong Kong government departments […]
This teenager hacked Sri Lankan President’s website to try to get the exam cancelled. As kids, we have done many things to avoid the exams like feigning stomachache or headache but none of us would have done what this kid did. A 17-year-old teenager reportedly hacked into his country’s president’s websites so that he could get […]
Short Bytes: Adam Laurie is a security researcher who works in the field of RFID technology. He hacks RIFD devices to look for any vulnerability which could be used to compromise them. In a video, he demonstrates how simple it is to clone a passport or a plastic credit card. Hacking a passport is buttery […]
While Last.fm informed users in 2012, passwords were easily cracked. The contents of a March 2012 breach of the music tracking website Last.fm have surfaced on the Internet, joining a collection of other recently leaked “mega-breaches” from Tumblr, LinkedIn, and MySpace. The Last.fm breach differs from the Tumblr breach, however, in that Last.fm knew about the […]
In my previous blog about password stealing malware, we discussed how Pony malware steals passwords and is as big and rampant across the internet as any single ransomware family. Now along comes Betabot to capitalize on the current craze of using weaponized documents for distribution. Betabot has been around for years in multiple forms as […]
Recently I wrote about a supposedly new ransomware called Fairware that was targeting Linux servers. When a server was hacked by Faireware, it would delete various data folders and create a ransom note in the /root folder stating that the files were encrypted and that a victim needs to pay two bitcoins to get them back. Based on a new […]
Hackers have stolen over 60 million account details for online cloud storage platform Dropbox. Although the accounts were stolen during a previously disclosed breach, and Dropbox says it has already forced password resets, it was not known how many users had been affected, and only now is the true extent of the hack coming to […]
Last month ESET researchers wrote an article about a new OS X malware called OSX/Keydnap, built to steal the content of OS X’s keychain and maintain a permanent backdoor. At that time of the analysis, it was unclear how victims were exposed to OSX/Keydnap. To quote the original article: “It could be through attachments in […]
Tech support scams coming as phishing pages that contain fake alerts urging you to call for immediate assistance are common place these days. We collect hundreds of such URLs each day and have observed countless tricks to fool users. In this post we examine a couple of sneaky techniques targeting Google Chrome users. The fake address bar This is an interesting […]
KimDotcom’ Megaupload, the popular website seized by feds 5 years ago and currently managed by the FBI is serving adult content. Sometimes really bizarre things happen and it is difficult to explain them. Is it possible that the FBI hosts a porn website? The first thing that I have is that the FBI might run […]
New WiKey attack can compromise passwords via WiFi signals. It is theoretically possible to accurately detect keystrokes using the Wi-Fi signals from a plain router, scientists from Michigan State University and the Nanjing University in China have discovered. Researchers say that, in environments with minimal signal interference, an attacker could use the disruptions in the router’s […]
Opera, which recently agreed to sell its browser business to a Chinese consortium, has reset user passwords for one of its services after its servers were breached by hackers this week. The company revealed that attackers gained access to Opera Sync, a service that lets users synchronize their browser data and settings across multiple platforms. It is investigating the incident, […]
New MIME confusion attack mitigations added to Firefox 50. Starting with Firefox 50, the browser will feature improved mitigation against MIME confusion attacks, preventing a threat actor from disguising malicious code as other files, mostly images. Whenever the browser receives a file from the server, Firefox will check the server response for the Content-Type header, which […]
Thailand – A gang of foreign criminals stole millions of baht by hacking ATMs in the country. The gang is linked the one that hacked ATMs in Taiwan. Hackers belonging to a cybercrime gang from Eastern Europe have stolen over 12 Million Baht (approximately US$346,000) from a 21 ATMs in Thailand. The crooks have targeted […]
Victims of a ransomware campaign aimed at Dutch speakers don’t have to pay hackers after the No More Ransom project cracked its cipher. Victims of the Wildfire ransomware can get their encrypted files back without paying hackers for the privilege, after the No More Ransom initiative released a free decryption tool. No More Ransom runs […]
We are not sure if this is going to be a new trend among browser hijackers, but it seems more than a coincidence that we found two browser hijackers using a very similar approach to reach their goal of taking victims to the sites of their choice. Both are using one of their own files […]
Researchers said a new variant of the Hancitor downloader has shifted tactics and adopted new dropper strategies and obfuscation techniques on infected PCs. Researchers at Palo Alto Networks are currently tracking the biggest push of the Hancitor family of malware since June that it says has shifted away from H1N1 downloader and now distributes the Pony and Vawtrak executables. […]