DDOS attacks in the news Denial-of-services (DOS) attacks have been part of the arsenal of cyberattackers for about 20 years now, and these attacks are employed by attackers for fun, profit (extortion), as a diversion from another attack, and as acts of protest. And the attacks continue to envolve as […]
Hacking
Russian Cyber Hacks on U.S. Electoral System Far Wider Than Previously Known
Russia’s cyberattack on the U.S. electoral system before Donald Trump’s election was far more widespread than has been publicly revealed, including incursions into voter databases and software systems in almost twice as many states as previously reported. To read the original article: https://www.bloomberg.com/news/articles/2017-06-13/russian-breach-of-39-states-threatens-future-u-s-elections
Linux Trojan Using Hacked IoT Devices to Send Spam Emails
Botnets, like Mirai, that are capable of infecting Linux-based internet-of-things (IoT) devices are constantly increasing and are mainly designed to conduct Distributed Denial of Service (DDoS) attacks, but researchers have discovered that cybercriminals are using botnets for mass spam mailings. New research conducted by Russian security firm Doctor Web has […]
Iranian hackers gains prowess in cyber world
Iranian hackers probably linked sponsored by the Iranian government has targeted organizations in the United States, the Middle East, and Asia, marking an exponential rise in Iranian cyber-spying. According to a report released by a private cybersecurity firm, FireEye, the Iranian hacking group is targeting companies involved in the petrochemical […]
Malware Slipped into CCleaner Could Steal PC User Data
Anyone who’s recently downloaded CCleaner, a PC optimization tool developed by London-based Piriform, should update the software immediately to avoid malware that was inserted into one version of the program. It’s uncertain how the malware was slipped into CCleaner, a utility program that Piriform said has been downloaded some 2 […]
State surveillance tool uses ISP to deliver malware to privacy seekers
Unnamed major internet providers are reported to be the distribution route for the spread of a new variant of government spyware FinFisher (also known as FinSpy) in two countries, with surveillance campaigns using the new malware variant detected in a total of seven unnamed countries. Researchers at ESET say these campaigns are the […]
Passwords to Over a Half Million Car Tracking Devices Leaked Online
We’ve seen a lot of data breaches this year: some big, some small, some that are dangerous, and some that are just embarrassing. But if we were to name one as the creepiest data breach of 2017, this leak of logins for car tracking devices might take the cake. The Kromtech Security […]
New Verizon leak exposed confidential data on internal systems
Security researchers have found yet another data exposure at Verizon. Confidential and sensitive documents, including server logs and several instances of credentials for internal systems, were found on an unprotected Amazon S3 storage server controlled by a Verizon Wireless customer, discovered by security researchers at the Kromtech Security Research Center. The […]
Linux IoT botnet retooled to send spam email
An IoT botnet has set its hooks in about 4,500 – 5,000 proxy devices to send spam emails which each device capable of sending 400 messages or a total of 1.8 million messages per day. The Linux.ProxyM first appeared in February 2017 and had peaked at 10,000 bots by July […]
PSA: New Microsoft Word 0day used in the wild
Microsoft has just patched an important vulnerability in Microsoft Word during its latest patch Tuesday cycle. According to the security firm that found it [1], this new zero-day (CVE-2017-8759) was used in targeted attacks to install a piece of malware known as FinFisher. Microsoft Office has been in the line of fire throughout the […]