A new technique has been discovered to easily retrieve the Pairwise Master Key Identifier (PMKID) from a router using WPA/WPA2 security, which can then be used to crack the wireless password of the router. While previous WPA/WPA2 cracking methods required an attacker to wait for a user to login to […]
Haythem Elmir
Microsoft To-Do Beta for Android Gets Dark Theme in the Latest Update
Microsoft To-Do is a feature-rich task manager for Windows 10, Android, iOS and web. These features include the smart suggestion that lets you complete the most important tasks, jobs or housework and it also syncs the items between your devices. After it was released for Windows 10 last month, the new dark […]
TCM Bank: website misconfiguration exposed applicant data for 16 months
TCM Bank announced that a Web site misconfiguration exposed applicant data for 16 months, between early March 2017 and mid-July 2018 TCM Bank, a subsidiary of ICBA Bancard, serves as a trusted advisor to community banks, it serves as a direct issuer of credit cards for more than 750 small and […]
TCM Bank: Credit Card Applicant Details Exposed
TCM Bank reported that a “misconfiguration” in its website exposed dates of birth, names, social security numbers, and addresses of literally thousands of credit card applicants who had applied back in early March of 2017 thru to mid-July of 2018. The company aids over 750 community and small banks with […]
NetSpectre : Le vol à distance de données mémoire CPU
Des chercheurs autrichiens, dont Daniel Gruss à l’origine de la vulnérabilité Metldown, ont détaillé un vecteur d’attaque relatif à la faille Spectre permettant d’accéder à la mémoire d’un système à distance. Au courant depuis mars de son existence, Intel l’avait déjà corrigé et intégré dans un patch. La vulnérabilité NetSpectre […]
Phishing Campaign Steals Money From Industrial Companies
Phishing emails purported to be commercial offers – but were really installing remote administration software on victims’ systems. Industrial production companies are the targets in a large-scale spear-phishing email campaign aimed at installing legitimate remote administration software on victims’ systems. Researchers with Kaspersky Lab said that emails purporting to be […]
The New Face of Necurs: Noteworthy Changes to Necurs’ Behaviors
Six years after it was first spotted in the wild, the Necurs malware botnet is still out to prove that it’s a malware chameleon. We recently discovered noteworthy changes to the way Necurs makes use of its bots, such as pushing infostealers on them and showing a special interest in […]
Reddit discloses a data breach, a hacker accessed user data
Reddit Warns Users of Data Breach Reddit is warning its users of a security breach, an attacker broke into the systems of the platform and accessed user data. Reddit is warning its users of a security breach, a hacker broke into the systems of the platform and accessed user data. The […]
Les Etats-Unis accusent trois Ukrainiens d’avoir piraté 15 millions de cartes de crédit
Les trois hommes ont été arrêtés par les autorités américaines. Selon les procureurs, ils appartiennent à un collectif qui aurait volé environ 1 milliard de dollars en cinq ans. Entre janvier et juin, trois hackeurs ukrainiens ont été arrêtés pour avoir volé 15 millions de numéros de cartes bancaires. Selon un communiqué du département de […]
Amnesty International employee targeted with NSO group surveillance malware
An employee at Amnesty International has been targeted with Israeli surveillance malware, the news was revealed by the human rights group. Amnesty International revealed that one of its employees was targeted with a surveillance malware developed by an Israeli firm. The human rights group published a report that provides details on the attack against […]