Browsing tag
Now security researchers have discovered that the camera can be silenced and frozen from a script run from any machine within Wi-Fi range, reports News. That means a consumer watching a delivery will only see a closed door, even if someone reopens the door and goes inside a vulnerability that may provide rogue dispatchers to rob customers’ […]
A series of recently disclosed critical Bluetooth flaws that affect billions of Android, iOS, Windows and Linux devices have now been discovered in millions of AI-based voice-activated personal assistants, including Google Home and Amazon Echo. As estimated during the discovery of this devastating threat, several IoT and smart devices whose operating systems are often updated […]
What is Amazon Echo? Amazon Echo is a popular hands-free smart speaker that you can control using your voice. As it’s “smart,” it can do a variety of tasks apart from the regular chore of playing music. Just like me, you can use it to make calls, send and receive messages, get information from the […]
It’s another day with yet another Amazon Web Services (AWS) bucket exposing sensitive user data to the public. IT security researchers at Kromtech Security discovered an unprotected Amazon Web Services (AWS) bucket available for public access. The bucket contained personal and sensitive data of more than 150,000 patients from Patient Home Monitoring (PHM) healthcare firm (Lafayette, Louisiana, United States) […]
On September 17th, 2017, Chris Vickery, director of Cyber Risk Research at UpGuard discovered a trove of highly sensitive data exposed online without any security or login credentials. The data belonged to one of the world’s largest corporate consulting and management firms Accenture PLC based in Dublin, Ireland. The data was left exposed on four Amazon Web […]
AWSBucketDump is a tool to quickly enumerate AWS S3 buckets to look for loot. It’s similar to a subdomain bruteforcer but is made specifically for S3 buckets and also has some extra features that allow you to grep for delicious files as well as download interesting files if you’re not afraid to quickly fill up […]
Over Half a Million Vehicle Records from SVR Tracking Leaked Online – Thanks to Amazon Web Services Bucket. SVR Tracking, a renowned vehicle tracker devices manufacturer, has become the latest victim of data exposure. According to Kromtech Security Centre’s research, login data of more than half a million records of SVR Tracking was leaked online […]
Database on Amazon Web Services Containing Sensitive Data of Viacom Is Publicly Available. Amazon Web Services S3 is in the news for all the wrong reasons as its Cloud storage has been found leaking massive amounts of data. A few days back we informed our readers about the findings of Kromtech Security Research Center in […]
Kromtech’s security researchers have identified two point-of-sale (POS) malware strains namely AlinaPOS and JackPOS hosted on more than 4,000 ElasticSearch servers. It is the same platform that was targeted in the MongoDB ransomware campaign. In total there are over 15,000 servers on ElasticSearch that don’t possess any authentication and password protection while the POS malware […]
Mainstream Voice Assistants Including Siri and Alexa Plagued with Serious Vulnerability. Voice assistant apps are not as reliable as we deemed them to be. According to a group of researchers from Zhejiang University, the most popular of all voice assistants namely Siri and Alexa both contain a critical flaw. It must be noted that these […]
Another day another trove of data goes public – This time, personal and sensitive data of American citizens who applied for jobs at North Carolina-based Private Military Contractor (mercenary and security firm) TigerSwan and hundreds of those claiming “Top Secret” US government security clearances. According to Chris Vickery, director of cyber risk research at security firm UpGuard; Resumé […]
Taking over an IoT (Internet of Things) device is nothing new for hackers, but since users have become increasingly dependent on smart devices, the vulnerabilities have increased as well. Recently, a security researcher has discovered that Amazon Echo or Echo, a smart speaker developed by Amazon is vulnerable to physical hack attack. In this attack, an attacker with physical access […]
Another day another massive data leak – This time it is being reported that personal details of 14 million Verizon Wireless customers have been exposed online due to a misconfigured cloud-based file repository on behalf of a third-party vendor in Israel known as Nice system. The data repository, an Amazon Web Services S3 bucket was being administered by […]
A Smart Home device essentially saved a life in New Mexico as it listened to a heated dispute between a couple and subsequently called 911. The authorities rushed in and broke off the confrontation in the spur of the moment. Smart Home becomes the hero As you may know, a Smart Home is a smart […]
CopyCat, apparently a variant of a much larger family of malware, infected around 14 million Android devices with adware and rooted 8 million of them, making it impossible to remove the malware. Adware generates revenue for the attackers According to CheckPoint, the malware generated a revenue of $1.5 million through installing fake ads and apps. […]
World Wrestling Entertainment, Inc. (WWE) has announced that the company is investigating an incident in which an unprotected database of more than 3 million registered users was discovered by a Bob Dyachenko of cyber security firm Kromtech. According to Dyachenko, the database was discovered unprotected on Amazon Web Services S3 (AWS) containing personal details of users including […]
A marketing firm that was employed by the Republican National Committee accidentally exposed data belonging to 200 million US citizens. That is around 62% of the entire population of the US. The exposed data includes information like home addresses, political views, phone numbers and even birthdays. All of it is available publicly – The said data was […]
Accidents happen to everyone but according to a recent report, this one is a pretty big one. Apparently, some of the confidential data related to the US military project was simply left completely unprotected on a server belonging to Amazon. The data included over 60,000 files with some of the very sensitive info publicly accessible […]
A new wave of cybercrime was reported on the biggest online marketplace, Amazon. Hackers have started using third-party sellers to scam buyers and other merchants to steal thousands of dollars by offering nonexistent goods and by changing the bank account details. In the last several weeks, more and more cases of hacking attacks have been […]
The predominant net outage across America earlier this week turned into no longer due to any virus or malware or country-sponsored cyber assault, as a substitute, it turned into the result of a simple TYPO.Amazon on Thursday admitted that an incorrectly typed command at some stage in a routine debugging of the company’s billing gadget […]
Amazon Web Service (AWS) went through outage for four hours around three days back, which took the internet security community by surprise. All sorts of speculations and rumors started spreading about the reasons behind the service outage. However, the company has now publicly announced that the actual reason behind the breakdown of its internet service […]