Post

Visualizzazione dei post da Marzo, 2017

Point-and-pwn tool for posers dumbs down ransomware spreading

The Clever ‘DoubleAgent’ Attack Turns Antivirus Into Malware

WONTFIX: No patch for Windows Server 2003 IIS critical bug – Microsoft

Detecting and mitigating elevation-of-privilege exploit for CVE-2017-0005

Potent LastPass exploit underscores the dark side of password managers

Hackers suben pornografía infantil al ordenador del presidente checo

Internet Information Services (IIS) 6.0 WebDAV - 'ScStoragePathFromUrl' Buffer Overflow

Attackers Leverage Excel, PowerShell and DNS in Latest Non-Malware Attack

Cisco WebEx Browser Extension Remote Code Execution Vulnerability

Microsoft Outlook, Skype, OneDrive hit by another authentication issue

Moodle – Remote Code Execution

Researchers found two Safari Zero Day Exploits at Pwn2Own

Long-Secret Stingray Manuals Detail How Police Can Spy on Phones

A simple command allows the CIA to commandeer 318 models of Cisco switches

Ransomware scammers exploited Safari bug to extort porn-viewing iOS users

WONTFIX: No patch for Windows Server 2003 IIS critical bug – Microsoft • The Register

Recruiters considered really harmful: Devs on GitHub hit with booby-trapped fake job emails • The Register

Exclusive: A criminal group using SSH TCP direct forward attack is also targeting Italian infrastructure

Vulnerability found in Service module of Drupal

An insecure mess: How flawed JavaScript is turning web into a hacker's playground

Dahua, Hikvision IoT Devices Under Siege

Preinstalled Malware Targeting Mobile Users

How I found a $5,000 Google Maps XSS (by fiddling with Protobuf)

Critical vulnerability under “massive” attack imperils high-impact sites [Updated]

Detenido en Tenerife un 'hacker' por robar información fiscal de familiares del Rey Juan Carlos

Content-Type: Malicious - New Apache 0-day Under Attack

Security Vulnerability in McDonald's India allows hackers to access Customer data

Everyone Is Falling For This Frighteningly Effective Gmail Scam

Google Points to Another POS Vendor Breach

Millions of records leaked from huge US corporate database

Twitter Accounts Hacked with Swastikas Through Third Party App 'Twitter Counter'

In-the-wild exploits ramp up against high-impact sites using Apache Struts

Detecting and eliminating Chamois, a fraud botnet on Android

Nintendo Switch’s secret browser has a flaw that could lead to a jailbreak

Slack bug granted hackers full access to your account and messages

Hacking Unicorns with Web Bluetooth

Hackers who took control of PC microphones siphon >600 GB from 70 targets

Hackers could easily bypass SBI's OTP security

A Chip Flaw Strips Away Hacking Protections for Millions of Devices

63 Universities and US Government agencies breached by hacker

Ransomware scammers exploited Safari bug to extort porn-viewing iOS users

Multiple vulnerabilities found in Wireless IP Camera (P2P) WIFICAM cameras and vulnerabilities in http server

Payments Giant Verifone Investigating Breach

Cybercrime, l'allarme di Bankitalia: un'impresa su tre sotto attacco

UK’s largest hospital chain hit by previously unseen malware

Singapore’s Defence Ministry hit by 1st cyber attack

Bitcoin hotel hack victim speaks out

Dishwasher has directory traversal bug • The Register

GiftGhostBot scares up victims' gift-card cash with brute-force attacks • The Register

Did you know: Crimelords behind DDoS attacks offer customer loyalty points?

Amazing new WikiLeaks CIA bombshell: Agents can install software on Apple Macs, iPhones right in front of them • The Register

Malware 'disguised as Siemens firmware drills into 10 industrial plants'

Swearing Trojan Continues to Rage, Even After Authors’ Arrest | Check Point Blog

Russian mastermind of $500m bank-raiding Citadel coughs to crimes • The Register

New bug lets hackers temporarily kill your Google Nest Cam - TechRepublic

Microsoft's 'Application Verifier' bug-finder is easily pwnable • The Register

World's worst botnet fiends switch from ransomware to stock scam spam • The Register

What should password managers not do? Leak your passwords? What a great idea, LastPass • The Register

Nest CCTV cameras can be easily blacked out by Bluetooth burglars • The Register

Cisco reports bug disclosed in Wikileaks' Vault 7 CIA dump • The Register

Ubiquiti network gear can be 'hijacked by an evil URL' – thanks to its 20-year-old PHP build

UK's Association of British Travel Agents cops to data breach • The Register

Dormant Linux kernel vulnerability finally slayed • The Register

Why are creepy SS7 cellphone spying flaws still unfixed after years, ask Congresscritters • The Register

WhatsApp blind-sided by booby-trapped photo vulnerability • The Register

Government websites pair up to host Apple ID phishing attack | Netcraft

Boffins Rickroll smartphone by tickling its accelerometer • The Register

Twitter app pwned by pro-Turkey hackers: Users' accounts sling 'Nazi' slurs • The Register

Hyper-V guest escape, drive-by PDF pwnage, Office holes, SMB flaws – and more now patched • The Register

Hackers who took control of PC microphones siphon >600 GB from 70 targets

Hackers could easily bypass SBI's OTP security

A Chip Flaw Strips Away Hacking Protections for Millions of Devices

63 Universities and US Government agencies breached by hacker

Google and Mozilla's message to AV and security firms: Stop trashing HTTPS | ZDNet

Vulnerability in Microsoft SMBv3 protocol crashes Windows PCs

Telepresence robot 'hackable' – security researchers • The Register

MAC randomization: A massive failure that leaves iPhones, Android mobes open to tracking • The Register

Oops! 185,000-plus Wi-Fi cameras on the web with insecure admin panels • The Register

That CIA exploit list in full: The good, the bad, and the very ugly

We found a hidden backdoor in Chinese Internet of Things devices – researchers • The Register

WordPress photo plugin opens 'a million sites' to SQLi database feasting • The Register

Online shops plundered by bank card-stealing malware after bungling backend Aptos hacked • The Register