Security News

http://www.repubblica.it/tecnologia/sicurezza/2018/04/24/news/_iphone_x_a_1_euro_attenti_alle_truffa_falsi_articoli_usati_per_rubare_i_dati_delle_carte_degli_utenti-194691806/

https://www.us-cert.gov/ncas/alerts/TA18-106A

https://medium.com/@djhoulihan/no-panera-bread-doesnt-take-security-seriously-bf078027f815

https://jameshfisher.com/2018/04/07/the-dots-do-matter-how-to-scam-a-gmail-user.html

https://www.kb.cert.org/vuls/id/578598

https://www.pentestpartners.com/security-blog/osint-from-ship-satcoms/

https://www.pentestpartners.com/security-blog/tracking-hacking-ships-with-shodan-ais/

http://mashable.com/2017/07/18/hacking-boats-is-fun-and-easy/

https://www.theregister.co.uk/2018/05/11/train_wifi_hackable_on_some_networks/

https://www.theregister.co.uk/2018/05/10/ibm_bans_all_removable_storage_for_all_staff_everywhere/

http://palermo.repubblica.it/cronaca/2018/05/08/news/l_ultima_frotiera_delle_cybertruffe_pec_false_di_banche_online_svuotati_centinaia_di_conti_correnti-195790638/

https://www.securityweek.com/over-million-dasan-routers-vulnerable-remote-hacking

https://www.bleepingcomputer.com/news/security/new-hacking-tool-lets-users-access-a-bunch-of-dvrs-and-their-video-feeds/

https://www.theregister.co.uk/2018/04/26/hyperoptics_zte_routers/

https://www.theregister.co.uk/2018/04/23/cisco_saml_bug_hits_firepower_anyconnect_asa/

https://www.forbes.com/sites/thomasbrewster/2018/04/24/a-160000-ether-theft-just-exploited-a-massive-blind-spot-in-internet-security/

https://finance.yahoo.com/news/windows-powered-medical-scanners-being-132041620.html

https://www.wired.com/story/elaborate-hack-shows-damage-iot-bugs-can-do/

https://blog.acolyer.org/2018/04/17/securing-wireless-neurostimulators/

https://www.theregister.co.uk/2018/04/16/android_apps_prove_a_goldmine_for_dodgy_password_practices/

https://www.theregister.co.uk/2018/04/13/slow_android_security_fixes/

https://www.forbes.com/sites/thomasbrewster/2018/04/16/russia-accused-of-hacking-network-infrastructure/

https://www.tripwire.com/state-of-security/security-data-protection/cyber-security/thousands-compromised-websites-spreading-malware-via-fake-updates/

https://thehackernews.com/2018/04/outlook-smb-vulnerability.html

http://www.ehackingnews.com/2018/04/finland-probing-130000-login.html

https://blog.malwarebytes.com/threat-analysis/2018/04/fakeupdates-campaign-leverages-multiple-website-platforms/

https://krebsonsecurity.com/2018/04/secret-service-warns-of-chip-card-scheme/

https://arstechnica.com/information-technology/2018/04/open-sesame-industrial-network-gear-hackable-with-the-right-username/

https://drupal.sh/cambridge-analytica-drupal-vulnerable

https://www.wsj.com/articles/saks-lord-taylor-hit-with-data-breach-1522598460

https://www.welivesecurity.com/2018/03/28/scanning-qr-codes-ios-11s/

https://www.ilpost.it/2018/03/28/lazio-de-vrij-feyenoord-hacker/

https://www.fbi.gov/news/stories/nine-iranians-charged-in-hacking-scheme-032318

https://www.wired.com/story/iran-cyberattacks-us-universities-indictment/

https://thehackernews.com/2018/03/samba-server-vulnerability.html

https://www.agi.it/cronaca/anonymous_attacco_hacker_miur_mail_insegnanti_cybersecurity-3604700/news/2018-03-08/

https://www.justice.gov/opa/pr/nine-iranians-charged-conducting-massive-cyber-theft-campaign-behalf-islamic-revolutionary

https://www.theregister.co.uk/2018/03/23/iranians_charged_university_corporate_hacking/

https://www.hackread.com/hackers-steal-banking-personal-data-of-orbitz-users/

https://techcrunch.com/2018/03/16/suspicious-likes-lead-to-researcher-lighting-up-a-22000-strong-botnet-on-twitter/

https://aabgu.org/off-shelf-smart-devices-found-easy-hack/

https://www.schneier.com/blog/archives/2018/03/israeli_securit.html

http://www.purdue.edu/newsroom/releases/2018/Q1/attacks-on-4g-lte-networks-could-send-fake-emergency-alerts.html

https://www.theregister.co.uk/2018/03/13/patch_tuesday_march_2018/

https://thehackernews.com/2018/03/android-botnet-malware.html

https://www.nytimes.com/2018/03/15/technology/saudi-arabia-hacks-cyberattacks.html

https://amdflaws.com/

https://cloudblogs.microsoft.com/microsoftsecure/2018/03/13/poisoned-peer-to-peer-app-kicked-off-dofoil-coin-miner-outbreak/

http://www.miur.gov.it/web/guest/-/attacco-hacker-il-miur-precisa-dati-pubblicati-non-sono-riconducibili-a-componenti-dei-sistemi-informatici-del-ministero

https://www.bleepingcomputer.com/news/security/crooks-created-28-fake-ad-agencies-to-disguise-massive-malvertising-campaign/

https://www.eff.org/press/releases/eff-and-lookout-uncover-new-malware-espionage-campaign-infecting-thousands-around

https://www.telegraph.co.uk/news/2018/01/19/british-15-year-old-gained-access-intelligence-operations-afghanistan/

https://news.netcraft.com/archives/2018/01/18/brazilian-government-providing-warm-waters-for-shoals-of-phish.html

https://www.reuters.com/article/schneider-cyber-attack/update-1-schneider-electric-says-bug-in-its-software-exploited-in-hack-idUSL1N1PD0ZR

https://www.reuters.com/article/us-schneider-cyber-attack/schneider-electric-says-software-bug-exploited-in-watershed-hack-idUSKBN1F7228

https://motherboard.vice.com/en_us/article/gyw3n9/lebanese-government-hackers-hit-thousands-of-victims-with-incredibly-simple-campaign

https://labs.detectify.com/2018/01/12/how-i-exploited-acme-tls-sni-01-issuing-lets-encrypt-ssl-certs-for-any-domain-using-shared-hosting/

https://securityledger.com/2018/01/researchers-scada-mobile-apps-continue-shocking-number-vulnerabilities-leaving-ics-systems-wide-open-attack/

https://thehackernews.com/2017/12/wordpress-security-plugin.html

https://www.taiwannews.com.tw/en/news/3336023

http://gazzettadireggio.gelocal.it/reggio/cronaca/2017/12/31/news/correggio-attacco-hacker-di-anonymus-contro-gli-autovelox-1.16298267

https://gizmodo.com/hackers-broke-into-forever-21s-payment-system-for-over-1821668357

https://www.wired.com/story/whatsapp-security-flaws-encryption-group-chats/

https://www.welivesecurity.com/2018/01/09/turlas-backdoor-laced-flash-player-installer/

https://www.techspot.com/news/72612-western-digital-cloud-drives-have-built-backdoor.html

https://thehackernews.com/2018/01/western-digital-mycloud.html

https://www.theregister.co.uk/2018/01/04/us_homeland_security_breach_exposed_personal_info_of_200000_staff/

http://arnaucode.com/blog/coffeeminer-hacking-wifi-cryptocurrency-miner.html

https://clientsidedetection.com/new_android_trojan_targeting_over_60_banks_and_social_apps.html

http://blogs.quickheal.com/android-banking-trojan-targets-232-apps-including-indian-banks/

https://www.theregister.co.uk/2018/01/02/intel_cpu_design_flaw/

https://0x0.li/trackmageddon/#advisories

https://www.hackread.com/nintendo-switch-hacked-to-run-pirated-games/

https://www.nytimes.com/2017/12/28/business/media/alphonso-app-tracking.html

https://www.slashgear.com/lastpass-authenticator-android-app-is-easy-to-break-into-28513035/

http://www.securityweek.com/mirai-variant-satori-targets-huawei-routers

https://www.kitploit.com/2017/12/jexboss-jboss-and-others-java.html

https://securityledger.com/2017/12/notpetyas-cost-fedex-400-million-counting/

https://nakedsecurity.sophos.com/2017/12/22/washington-dcs-surveillance-cameras-hacked-to-send-spam/

http://www.cnn.com/2017/12/20/politics/romanian-hackers-dc-cameras/index.html

https://www.upguard.com/breaches/cloud-leak-alteryx

https://www.wired.com/story/mirai-botnet-minecraft-scam-brought-down-the-internet/

https://hotforsecurity.bitdefender.com/blog/forever-21-clothing-stores-hit-by-credit-card-data-breach-after-encryption-failure-19227.html

https://arstechnica.com/information-technology/2017/11/with-deletion-of-one-wallet-280-m-in-ethereum-wallets-gets-frozen/

https://arstechnica.com/information-technology/2017/11/flaw-crippling-millions-of-crypto-keys-is-worse-than-first-disclosed/

http://riscy.business/2017/12/lenovos-unsecured-objects/

https://nakedsecurity.sophos.com/2017/12/11/mailsploit-using-emails-to-attack-mail-software/

https://medium.com/matthias-gliwka/microsoft-leaks-tls-private-key-for-cloud-erp-product-10b56f7d648

https://www.theregister.co.uk/2017/12/06/mailsploit_email_spoofing_bug/

https://hotforsecurity.bitdefender.com/blog/modern-day-ferris-bueller-hacks-school-changes-grades-applies-to-ivy-league-colleges-19300.html

https://blog.fortinet.com/2017/11/22/cve-2017-11826-exploited-in-the-wild-with-politically-themed-rtf-document

https://www.schneier.com/blog/archives/2017/11/man-in-the-midd_8.html

https://nakedsecurity.sophos.com/2017/11/27/imgur-breached-back-in-2014-wasnt-storing-your-passwords-properly/

http://www.ehackingnews.com/2017/11/bitcoin-gold-wallet-compromised-users.html

http://securityaffairs.co/wordpress/65588/breaking-news/cve-2017-11882.html

https://www.bleepingcomputer.com/news/security/oracle-products-affected-by-critical-joltandbleed-vulnerabilities/

https://www.theregister.co.uk/2017/11/15/spanish_id_card/

https://www.bleepingcomputer.com/news/security/blueborne-vulnerability-also-affects-20mil-amazon-echo-and-google-home-devices/

https://arstechnica.com/information-technology/2017/11/how-av-can-open-you-to-attacks-that-otherwise-wouldnt-be-possible/

http://money.cnn.com/2017/11/09/technology/google-hackers-research/index.html

https://securelist.com/the-silence/83009/

http://www.ibtimes.co.uk/day-trader-indicted-cyber-boiler-room-scheme-targeting-hacked-online-brokerage-accounts-1646546

https://www.tripwire.com/state-of-security/security-data-protection/microsoft-advisory-office-dde-malware/

https://arstechnica.com/information-technology/2017/11/critical-tor-flaw-leaks-users-real-ip-address-update-now/

http://www.pressherald.com/2017/11/03/it-took-russian-hackers-just-over-a-week-to-penetrate-clinton-campaign-email/

https://arstechnica.com/information-technology/2017/11/evasive-code-signed-malware-flourished-before-stuxnet-and-still-does/

http://www.corrierecomunicazioni.it/digital/49581_falsi-f24-via-e-mail-ecco-il-malware-che-si-traveste-da-agenzia-delle-entrate.htm

https://blog.checkpoint.com/2017/10/26/homehack-how-hackers-could-have-taken-control-of-lgs-iot-home-appliances/

http://www.kb.cert.org/vuls/id/446847

https://www.kaspersky.com/blog/cryptoshuffler-bitcoin-stealer/19976/