Browsing tag
If you have an account on XKCD forum change its password right now. The popular webcomic XKCD has been hacked. Apparently, unknown hackers were able to breach the XKCD forum and manage to steal personal data of over 562,000 users. The breach took place last month while the stolen data was identified by Adam Davies, […]
The prime suspect of the DDoS attack is China. An online forum used by activists behind the ongoing Hong Kong protests has suffered a DDoS attack forcing its servers to go offline for a short period of time. The targeted website called LIHKG, is a popular platform in Hong Kong often referred to as Reddit’s […]
The French law enforcement agency, National Gendarmerie, today announced the successful takedown of one of the largest wide-spread RETADUP botnet malware and how it remotely disinfected more than 850,000 computers worldwide with the help of researchers. Earlier this year, security researchers at Avast antivirus firm, who were actively monitoring the activities of RETADUP botnet, discovered […]
Why nothing is working in cyber security? Cyber Securities Book of Revelations. I spend a fair amount of time in my current role thinking about future cyber-attacks. Some folks may call this “threat modeling” or even “cyber threat intelligence.” I recently had several revelations about cyber security which although not as nearly as spectacular as […]
DumpsterFire is an open-source tool made by blue team member to edit create and control dumpster payloads in order to create surface attacks and also facilitate the blue team process, its main purpose is to enable users to create their own attack simulations for blue teams to respond to. Usage Installation DumpsterFire Support Python version […]
SniffAir is an open source tool made for sophisticated wireless attacks and data capture, it handle all types of pcap files and analyze traffic through the network interface whilst looking for potential security flaws with prebuild queries. It also allows users to create custom queries for analyzing wireless data with its prebuild SQL database Installation […]
A new family of Android Ransomware dubbed Android/Filecoder.C distributed various online forums and further uses the victim’s contact list to SMS with a malicious link. ESET detected the ransomware activity since July 12th, 2019, “Due to narrow targeting and flaws in both execution of the campaign and implementation of its encryption, the impact of this […]
Researchers discovered a new campaign with Zegost info stealer malware that believed to be originated from Chinese based threat actors who is targeting government networks in China. Zegost uncovered back to 2011 since then attackers updated with various new functionalities and added new persistence capabilities, exploits to maintain the access. Researchers believe that the malware only […]
Yesterday, some residents of Johannesburg, the largest city in South Africa, were left without electricity after the city’s power company got attacked by a ransomware virus. City Power, the company responsible for powering South Africa’s financial capital Johannesburg, confirmed Thursday on Twitter that it had been hit by a Ransomware virus that had encrypted all […]
MegaCortex ransomware was discovered in May this year. iNSYNQ, a United States-based Cloud hosting provider has been hit by a massive ransomware attack crippling its cyberinfrastructure preventing customers from accessing their accounting data. It must be noted that iNSYNQ provides cloud-based QuickBooks accounting software and services. The ransomware attack, according to iNSYNQ, took place on […]
The hackers stole the data and shared it with another hacking group who was involved in the hacking of another FSB contractor. On Saturday, 13 July 2019, a group of hackers going by the online handle of 0v1ru$ hacked and defaced the official website of SyTech, a high-profile contractor working for Russian intelligence agency FSB […]
If you use Slack, a popular cloud-based team collaboration server, and recently received an email from the company about a security incident, don’t panic and read this article before taking any action. Slack has been sending a “password reset” notification email to all those users who had not yet changed passwords for their Slack accounts […]
Security researchers have discovered a rare piece of Linux spyware that’s currently fully undetected across all major antivirus security software products, and includes rarely seen functionalities with regards to most Linux malware, The Hacker News learned. It’s a known fact that there are a very few strains of Linux malware exist in the wild as […]
An estimated 2 million cyberattacks took place in 2018 costing more than $45 billion in damages worldwide. The worse part is that while cyberattacks are surging authorities are struggling to tackle the growing threat, said study released on Tuesday. Ransomware attacks According to the Internet Society’s Online Trust Alliance (OTA), which compiles data from the […]
After fining British Airways with a record fine of £183 million earlier this week, the UK’s data privacy regulator is now planning to slap world’s biggest hotel chain Marriott International with a £99 million ($123 million) fine under GDPR over 2014 data breach. This is the second major penalty notice in the last two days […]
Security researchers at Microsoft have released details of a new widespread campaign distributing an infamous piece of fileless malware that was primarily being found targeting European and Brazilian users earlier this year. Dubbed Astaroth, the malware trojan has been making the rounds since at least 2017 and designed to steal users’ sensitive information like their […]
Spear-Phishing Even with the number of messaging apps available now, companies still use email. On average, a person receives over a hundred emails a day from bosses and companies. Because of this, hackers have created a dangerous phishing method called “spear-phishing.” What is phishing and spear-phishing? Phishing is a popular cyber-attack method created in the […]
The cybercriminal was also involved in several other cybercrimes including swatting and deleting databases of targeted websites. Austin Thompson, a DDoS attacker going by the online handle of Derp Trolling has been sentenced to 2.25 years (27 months) in prison for conducting DDoS attacks on gaming giants back in 2013 to 2014. In November last […]
An unknown hacker yesterday successfully managed to hack into the official GitHub account of Canonical, the company behind the Ubuntu Linux project and created 11 new empty repositories. It appears that the cyberattack was, fortunately, just a “loud” defacement attempt rather than a “silent” sophisticated supply-chain attack that could have been abused to distribute modified […]
Story of an Advanced Persistent Threat attack against a large corporation that started with a series of blank emails. Advanced persistent threats (APTs) are increasingly targeting enterprise networks nowadays. This article highlights a recent attack against a large, well-protected Australian organization that entailed a major data breach. It’s Monday, 12:55 p.m. In Sydney, Olivia Wilson […]
A 23-year-old hacker from Utah who launched a series of DDoS attacks against multiple online services, websites, and online gaming companies between December 2013 and January 2014 has been sentenced to 27 months in prison. Austin Thompson, a.k.a. “DerpTroll,” pledged guilty back in November 2018 after he admitted to being a part of DerpTrolling, a […]