Phones such as Samsung’s Galaxy S4 ship with Near Field Communication chips built in – and many companies hope to use these for payment systems. But snooper devices may be able to “listen in” as payment apps are used, researchers warn.
Some models of the popular routers made by D-Link contain a “backdoor” which could allow a remote attacker access to settings and private data, a researcher has warned.
The “picture passwords” used in Windows 8 machines are more vulnerable than Microsoft hoped, a research team claims. An analysis of more than 10,000 picture passwords found that a significant percentage could be cracked by algorithms.
Apps with a hidden “dark side” could sneak past Apple’s approval process, according to researchers at Georgia Tech. The researchers proved this theory using a malicious app which was approved and downloaded via App Store in March this year.
Up to 900 million devices running Android could be affected by a new vulnerability which would allow cybercriminals “full control” over affected handsets, Bluebox Labs has warned.
Future malware attacks could be triggered by music or even lighting – allowing cybercriminals to command and control large numbers of infected devices in the same area, according to Alabama researchers.
Earlier I updated readers with latest vulnerabilities that were found on IndiaTimes and ASK.com by a Pakistani security researcher Danish Tariq, this time he is back with couple of more vulnerabilities. Danish claims to have found critical cross site scripting vulnerability (XSS) on Brazzers.com, leaving the paid customer to loose thousands of dollars in few seconds. Brazzers.com […]
An independent security researcher from Pakistan, going with the name of Danish Tariq has claimed to found cross site scripting vulnerability (XSS) on the websites of IndiaTimes and Ask.com. Indiatimes (www.indiatimes.com) is the Internet subsidiary of The Times of India Group, under which, some of the largest websites in India – The Times of India, The […]
A 15 years old independent security researcher from India, going with the name of Indrajeet Bhuyan has claimed to found cross site scripting vulnerability (XSS) on Photobucket.com; known for its image hosting, video hosting, slideshow creation and photo sharing services. For security reasons Indrajeet did not provided further details of vulnerability but explained that this venerability can be used for further damage. […]
A new Global Center for Cyber Security at the University of Oxford will coordinate international work on cyber threats and cyber security. The Center will receive £500,000 ($766,000) in UK government funding every year.
Have you ever thought of your digital SLR acting as a spy on you? Well, this wasn’t true before until two German found a weakness in a wifi-enabled Canon EOS-1D X. According to them, through this vulnerability the SLR can be used as a form of drone. The researchers Daniel Mende and Pascal Turbing showed this aspect of SLR […]
A prototype multi-cursor system designed to improve the security of on screen password entry has been posted onto DigInfo, the Tokyo based news site that promotes cutting edge technology from Japan.
A coal firm in Indonesia named as Bumi has faced heavy crisis in the recent past, but, firm’s physical performance wasn’t the reason behind the crisis. It was through hacking, it all happened, the crisis that the firm is facing now is of such intensity that firm is now beginning to get offers to sell its current […]
The official website of Syrian Higher Commission for Scientific Research was breached and in result more then 350+ login information was leaked by @Gevolus. The hacker who is a member of Brazilian Cyber Army, announced the breach on his official Twitter account where breaches from other government domains were also posted. The hacker left the dump on Pastebin which […]
In a study conducted by the researchers at Germany’s Leibniz University, nearly 13,500 which is 8 percent of famous Android apps can be tricked into leaking user’s personal data. BBC News reports that at least 183 million app users are at high risk of personal identity theft including emails, social media passwords and confidential bank details because the tested Android apps failed […]
Nasa, that is known for its poor security is again under attack. This time Nasa’s Ames Research Center database was hacked and leaked on pastebin by a hacker Zyklon B. Leak database contains official tables, names, emails, username and encrypted passwords. Zyklon B also posted screenshots of of database access: http://i.imgur.com/pRQYG.png http://i.imgur.com/v9EME.png While the database can be […]
Here are some recently released podcasts by ESET Rearchers, addressing current topics such as the recent VeriSign hacks, the takedown of MegaUpload, and the problems with using good malware to catch the bad guys: 1. VeriSign, Credit Card Processor, Hacked Multiple Times 2. Mega Upload Website Shutdown by U.S. Department of Justice 3. Is The
…Andrew Lee conducted a fun but disquieting thought experiment in the course of an amusing and informative presentation on user education at the recent Virus Bulletin Seminar…
Surprised to find annual cybercrime damage spread somewhere between 300 million and 54 BILLION? So is the Director of National Intelligence. Today Brian Krebs of the Washington Post and Krebsonsecurity.com detailed a strong push for mandatory disclosure of cyber intrusion to include account hijacking and online identity theft.
The fifth IEEE eCrime Researchers Summit 2010 once again will be held in conjunction with the 2010 APWG General Meeting between October 18-20, 2010 at Southern Methodist University in Dallas, TX. See http://ecrimeresearch.org.
We know that spam works: well, it works well enough for spammers to keep devoting time and money into pumping sewage into the arteries of the internet. The interesting question is why does it work? The Messaging Anti-Abuse Working Group (MAAWG), a global coalition of network operators and messaging providers who do some vital work