Post

Visualizzazione dei post da agosto, 2017

UK infrastructure failing to meet the most basic cybersecurity standards • The Register

https://www.theregister.co.uk/2017/08/29/critical_national_infrastructure_cybersecurity/

SAP point-of-sale systems were totally hackable with $25 kit • The Register

https://www.theregister.co.uk/2017/08/29/sap_pos_vulnerability/

Tech Firms Team Up to Take Down ‘WireX’ Android DDoS Botnet

https://krebsonsecurity.com/2017/08/tech-firms-team-up-to-take-down-wirex-android-ddos-botnet/

WannaCrypt NHS victim Lanarkshire infected by malware again • The Register

https://www.theregister.co.uk/2017/08/28/wannacrypt_nhs_victim_lanarkshire_infected_by_malware_again/

Foxit PDF Reader is well and truly foxed up, but vendor won't patch • The Register

https://www.theregister.co.uk/2017/08/21/foxit_reader_vulnerabilities/

NotPetya ransomware attack cost us $300m – shipping giant Maersk • The Register

https://www.theregister.co.uk/2017/08/16/notpetya_ransomware_attack_cost_us_300m_says_shipping_giant_maersk/

Ships fooled in GPS spoofing attack suggest Russian cyberweapon

https://www.newscientist.com/article/2143499-ships-fooled-in-gps-spoofing-attack-suggest-russian-cyberweapon/

APT28 Targets Hospitality Sector, Presents Threat to Travelers « Threat Research Blog

https://www.fireeye.com/blog/threat-research/2017/08/apt28-targets-hospitality-sector.html

APT-style attack against over 4,000 infrastructure firms blamed on lone Nigerian 20-something • The Register

https://www.theregister.co.uk/2017/08/15/nigerian_fraud_kingpin/

Attackers Using Automated Scans to Takeover WordPress Installs

https://threatpost.com/attackers-using-automated-scans-to-takeover-wordpress-installs/126815/

Attack on Ireland’s state-owned power provider blamed on...

https://hotforsecurity.bitdefender.com/blog/attack-on-irelands-state-owned-power-provider-blamed-on-state-sponsored-hackers-18675.html

Scanner Shows EternalBlue Vulnerability Unpatched on Thousands of Machines

https://threatpost.com/scanner-shows-eternalblue-vulnerability-unpatched-on-thousands-of-machines/126818/

Canadian firm pays $425,000 to recover from ransomware attack

http://www.itworldcanada.com/article/canadian-firm-pays-425000-to-recover-from-ransomware-attack/394844?amp=1

Adobe Flash Player users should update their software NOW

https://www.welivesecurity.com/2017/07/11/adobe-flash-player-users-update-software-now/

Largest advertising company in the world still wincing after NotPetya punch

https://www.theregister.co.uk/2017/07/07/ad_giant_recovering_from_notpetya/

Major cryptocurrency exchange hacked – customers’ Bitcoin and Ethereum accounts plundered

https://hotforsecurity.bitdefender.com/blog/major-cryptocurrency-exchange-hacked-customers-bitcoin-and-ethereum-accounts-plundered-18340.html

It’s 2017 and Hayes AT modem commands can hack luxury cars

https://www.theregister.co.uk/2017/08/01/telematics_vulnerabilities_in_bmw_infiniti_ford_nissan/

Woman sues casino that offered her steak dinner instead of $43 million jackpot

http://money.cnn.com/2017/06/15/news/jackpot-steak-dinner-katrina-bookman-lawsuit/index.html

Samsung Left Millions Vulnerable to Hackers Because It Forgot to Renew a Domain

https://motherboard.vice.com/en_us/article/samsung-left-millions-vulnerable-to-hackers-because-it-forgot-to-renew-a-domain

GameStop Customers' Credit Cards May Have Been Stolen, Company Says

http://kotaku.com/gamestop-customers-credit-cards-may-have-been-stolen-c-1795958515

How a Single Email Stole $1.9 Million from Southern Oregon University

https://www.tripwire.com/state-of-security/security-data-protection/single-email-stole-1-9-million-southern-oregon-university/

'Crash Override': The Malware That Took Down a Power Grid

https://www.wired.com/story/crash-override-malware/

Dalle carte della Nato ai report su Siria e Libia: i segreti della Farnesina rubati da russi e cinesi

http://www.repubblica.it/tecnologia/sicurezza/2017/08/14/news/dalle_carte_della_nato_ai_report_su_siria_e_libia_i_segreti_della_farnesina_rubati_da_russi_e_cinesi-173004383/

$32 million worth of digital currency ether stolen by hackers

http://www.cnbc.com/2017/07/20/32-million-worth-of-digital-currency-ether-stolen-by-hackers.html

A smart fish tank left a casino vulnerable to hackers

http://money.cnn.com/2017/07/19/technology/fish-tank-hack-darktrace/index.html

Ransomware attack puts KQED in low-tech mode

http://www.sfchronicle.com/business/article/Ransomware-attack-puts-KQED-in-low-tech-mode-11295175.php

Bad Code Library Triggers Devil’s Ivy Vulnerability in Millions of IoT Devices

https://threatpost.com/bad-code-library-triggers-devils-ivy-vulnerability-in-millions-of-iot-devices/126913/

It's a trap! Marcher banking trojan masquerades as Adobe Flash Player for Android

https://www.grahamcluley.com/marcher-malware-adobe-flash-player/

Merck IT systems still crippled in Petya's aftermath

https://www.cyberscoop.com/merck-petya-ransomware-ukraine/

GCHQ Says Hackers Have Likely Compromised UK Energy Sector Targets

https://motherboard.vice.com/en_us/article/9kwg4a/gchq-says-hackers-have-likely-compromised-uk-energy-sector-targets

Hacker Allegedly Steals $7.4 Million in Ethereum with Incredibly Simple Trick

https://motherboard.vice.com/en_us/article/zmvg58/hacker-allegedly-steals-dollar74-million-in-ethereum-with-incredibly-simple-trick

FedEx says cyber attack to hurt its 2018 results

http://www.reuters.com/article/us-cyber-attack-fedex-idUSKBN1A21D7

Burglary in mind? Easy, just pwn the home alarm

https://www.theregister.co.uk/2017/07/17/burglary_in_mind_easy_just_pwn_the_home_alarm/

Global Cyberattack Could Cause $53B Losses, Lloyd's Warns

https://www.law360.com/articles/944611/global-cyberattack-could-cause-53b-losses-lloyd-s-warns

A .NET malware abusing legitimate ffmpeg

https://blog.malwarebytes.com/threat-analysis/2017/07/malware-abusing-ffmpeg/

Ukrainian postal service hit by 48-hour cyber-attack

https://flipboard.com/@flipboard/-ukrainian-postal-service-hit-by-48-hour/f-a25fcd853d%2Fco.uk

Violato anche il blog di Beppe Grillo: l’hacker è lo stesso della piattaforma Rousseau

http://www.corriere.it/cronache/17_agosto_06/violato-anche-blog-beppe-grillo-l-hacker-stesso-piattaforma-rousseau-3342ddda-7ac3-11e7-8803-6174d9288686.shtml

Attackers could shut down power grids by abusing solar panel flaws

https://www.grahamcluley.com/attackers-shut-power-grids-abusing-solar-panel-flaws/

Car makers told to do more to stop hackers taking over internet-connected vehicles

http://www.telegraph.co.uk/news/2017/08/05/car-makers-told-do-stop-hackers-taking-internet-connected-vehicles/

Un 'hacker' accede a un servidor de Justicia

http://www.elmundo.es/espana/2017/08/04/59837d6046163fff2f8b4598.html

HBO got hacked and some Game of Thrones materials are bubbling up online

https://techcrunch.com/2017/07/31/hbo-hack-got/

Introducing 306 Million Freely Downloadable Pwned Passwords

https://www.troyhunt.com/introducing-306-million-freely-downloadable-pwned-passwords/

Merck profit soars 61.5 percent as Keytruda sales surge

http://www.reuters.com/article/us-merck-co-results-idUSKBN1AD1AO

TNT parcels 'backed up to ceiling' in wake of massive cyberattack

https://www.theguardian.com/money/2017/jul/25/tnt-parcels-cyber-attack-courier-fedex-notpetya

Government under fire after Transport Agency data breach

http://sverigesradio.se/sida/artikel.aspx?programid=2054&artikel=6740394

18-year-old arrested after reporting dumb bug in public transport e-ticket system

https://www.grahamcluley.com/18-year-old-arrested-reporting-dumb-bug-public-transport-e-ticket-system/

IoT Thermostat Bug Allows Hackers to Turn Up the Heat

https://blog.newskysecurity.com/iot-thermostat-bug-allows-hackers-to-turn-up-the-heat-948e554e5e8b

I segreti a rischio dell’ Italia. La grande falla nei computer dell’esercito: "Da lì gli hacker possono arrivare ovunque"

http://www.repubblica.it/tecnologia/sicurezza/2017/08/13/news/i_segreti_a_rischio_dell_italia_la_grande_falla_nei_computer_dell_esercito_da_li_gli_hacker_possono_arrivare_ovunque_-172937257/

'Adversarial DNA' breeds buffer overflow bugs in PCs • The Register

https://www.theregister.co.uk/2017/08/11/malware_in_dna/

Schoolboy bags $10,000 reward from Google with easy HTTP Host bypass • The Register

https://www.theregister.co.uk/2017/08/10/schoolboy_google_bug_bounty_http_host/

It's August 2017 and your Android gear can be pwned by, oh look, just patch the things • The Register

https://www.theregister.co.uk/2017/08/09/android_gear_needs_updating/

SAP cleans up more than a dozen troubling CRM security blunders • The Register

https://www.theregister.co.uk/2017/08/09/sap_crm_vuln/

Siemens, DHS warn of “low skill” exploits against medical scanners

https://arstechnica.com/gadgets/2017/08/siemens-dhs-warn-of-low-skill-exploits-against-ct-and-pet-scanners/

It's 2017 and Hyper-V can be pwned by a guest app, Windows by a search query, Office by... • The Register

https://www.theregister.co.uk/2017/08/08/august_patch_tuesday/

Forget sexy zero-days. Siemens medical scanners can be pwned by two-year-old-days • The Register

https://www.theregister.co.uk/2017/08/04/win7_brain_scanners_hacked/

Flaws in web-connected, radiation-monitoring kit? What could go wrong? • The Register

https://www.theregister.co.uk/2017/07/28/radiation_monitoring_infosec/

Wallet-snatch hack: ApplePay 'vulnerable to attack', claim researchers • The Register

https://www.theregister.co.uk/2017/07/28/applepay_vuln/

Hackers can turn web-connected car washes into horrible death traps • The Register

https://www.theregister.co.uk/2017/07/27/killer_car_wash/

Details of 400,000 loan applicants spilled in UniCredit bank breach • The Register

https://www.theregister.co.uk/2017/07/26/unicredit_bank_breach/

Sweden leaked every car owners' details last year, then tried to hush it up • The Register

https://www.theregister.co.uk/2017/07/23/sweden_leaked_every_car_owners_details_last_year_then_tried_to_hush_it_up/

Hackers Hijack Chrome Extension to Inject Code into Web Devs' Browsers

https://www.tripwire.com/state-of-security/featured/hackers-hijack-popular-chrome-extension-inject-code-web-developers-browsers/

Hacker online dimostra la vulnerabilità di Rousseau: "Ho bucato il sito, dati a rischio"

http://www.repubblica.it/politica/2017/08/02/news/hacker_online_dimostra_la_vulnerabilita_di_rousseau_ho_bucato_il_sito_dati_a_rischio_-172221493/