Hacking

Malicious hackers stealing cash from cardless ATM using a new form of SMS  phishing attack that force let user give away their bank account credentials into the phished website. Cardless ATM is now using various financial institutions to take users cash without any form of physical cards but only using […]

Intel processors are impacted by a new vulnerability that can allow attackers to leak encrypted data from the CPU’s internal processes. The new vulnerability, which has received the codename of PortSmash, has been discovered by a team of five academics from the Tampere University of Technology in Finland and Technical […]

Two things happened on Halloween with a bearing on cybersecurity. The first is that the 15th year of the National Cyber Security Awareness Month (NCSAM) came to an end. You have heard of NCSAM, right? The second, apparently timed to coincide with 31 October, was that Google is yet again modifying the background security […]

Une opération d’hameçonnage (phishing en anglais) a touché ces derniers jours un grand nombre d’utilisateurs des services de messagerie sous la forme d’un mail envoyé par un contact qui vous conseille de changer immédiatement  votre mot de passe au motif qu’ il a été piraté par des hackers. Une manipulation […]

Facebook has fallen victim to countless security breaches and November brings even more bad news for the social network. Russian hackers are selling private conversations of at least 81,000 Facebook accounts at 10 cents per account, writes the BBC. According to the BBC Russian Service, which communicated with the hackers, the criminals […]

Called BleedingBit, this vulnerability impacts wireless networks used in a large percentage of enterprise companies. Two zero-day vulnerabilities in Bluetooth Low-Energy chips made by Texas Instruments (and used in millions of wireless access points) open corporate networks to crippling stealth attacks. Adversaries can exploit the bugs by simply being approximately […]

Poor DNS housekeeping opens the door to account takeover. A proof-of-concept (PoC) attack details how an attacker can gain access a victim’s Microsoft Live webmail session, without having the person’s credentials. It relies upon the hijack of a Microsoft-owned Live.com website subdomain. The PoC, developed by CyberInt, demonstrates what it […]