Cyber-security firm Netscout warns of new DDoS attack vector.
...moreSummary
Top Articles:
- Plex Media servers are being abused for DDoS attacks | ZDNet
- New side-channel attack can recover encryption keys from Google Titan security keys | ZDNet
- Hacker breaches security firm in act of revenge | ZDNet
- Apple strong-arms entire CA industry into one-year certificate lifespans | ZDNet
- Hacker leaks database of dark web hosting provider | ZDNet
- Fortune 500 company NTT discloses security breach | ZDNet
- New fuzzing tool finds 26 USB bugs in Linux, Windows, macOS, and FreeBSD | ZDNet
- Samsung patches 0-click vulnerability impacting all smartphones sold since 2014 | ZDNet
- Hackers breach LineageOS servers via unpatched vulnerability | ZDNet
- Hacker hijacks YouTube accounts to broadcast Bill Gates-themed crypto Ponzi scam | ZDNet
Plex Media servers are being abused for DDoS attacks | ZDNet
Published: 2021-02-06 03:48:29
Popularity: None
Author: Catalin Cimpanu
🤖: "Pwned again"
New side-channel attack can recover encryption keys from Google Titan security keys | ZDNet
Published: 2021-01-08 12:05:45
Popularity: None
Author: Catalin Cimpanu
🤖: "Key leak"
Attack requires physical access to the devices but Titan and other keys can be cloned if attacks are successful.
...moreHacker breaches security firm in act of revenge | ZDNet
Published: 2020-07-14 02:05:54
Popularity: None
Author: Catalin Cimpanu
🤖: "Hacked Back"
Hacker claims to have stolen more than 8,200 databases from a security firm's data leak monitoring service.
...moreApple strong-arms entire CA industry into one-year certificate lifespans | ZDNet
Published: 2020-06-30 12:09:07
Popularity: None
Author: Catalin Cimpanu
🤖: "Certificate Armageddon"
Apple, Google, and Mozilla reduce the lifespan for HTTPS certificates to 398 days, against the wishes of Certificate Authorities.
...moreHacker leaks database of dark web hosting provider | ZDNet
Published: 2020-06-01 05:11:44
Popularity: None
Author: Catalin Cimpanu
🤖: ""Dark Web Hack""
Leaked data contains email addresses, site admin passwords, and .onion domain private keys.
...moreFortune 500 company NTT discloses security breach | ZDNet
Published: 2020-05-29 20:29:56
Popularity: None
Author: Catalin Cimpanu
🤖: "Security blowup"
Japanese telecommunications giant NTT says hackers breached its internal network and stole data on 621 customers.
...moreNew fuzzing tool finds 26 USB bugs in Linux, Windows, macOS, and FreeBSD | ZDNet
Published: 2020-05-28 12:49:43
Popularity: None
Author: Catalin Cimpanu
🤖: "bug hunt fail"
Eighteen of the 26 bugs impact Linux. Eleven have been patched already.
...moreSamsung patches 0-click vulnerability impacting all smartphones sold since 2014 | ZDNet
Published: 2020-05-08 02:13:35
Popularity: None
Author: Catalin Cimpanu
🤖: ""Zero-day exploited""
Samsung patched this month a critical bug discovered by Google security researchers.
...moreHackers breach LineageOS servers via unpatched vulnerability | ZDNet
Published: 2020-05-03 11:35:16
Popularity: None
Author: Catalin Cimpanu
🤖: "Hacked!"
LineageOS source code, OS builds, and signing keys were unaffected, developers said.
...moreHacker hijacks YouTube accounts to broadcast Bill Gates-themed crypto Ponzi scam | ZDNet
Published: 2020-03-31 13:27:46
Popularity: None
Author: Catalin Cimpanu
🤖: "Hacker hijacked"
UPDATE: Microsoft says none of its verified accounts were hacked. YouTube has also intervened to take down the scam's live streams.
...moreDark web hosting provider hacked again -- 7,600 sites down | ZDNet
Published: 2020-03-27 13:02:08
Popularity: None
Author: Catalin Cimpanu
🤖: ""Server Down""
EXCLUSIVE: Dark web hosting provider shuts down after getting hacked for the second time in 16 months.
...moreHackers breach FSB contractor and leak details about IoT hacking project | ZDNet
Published: 2020-03-21 15:15:09
Popularity: None
Author: Catalin Cimpanu
🤖: "Hacked again"
Digital Revolution hacker group leaks details about "Fronton" an IoT botnet a contractor was allegedly building for the FSB, Russia's intelligence agency.
...moreAMD processors from 2011 to 2019 vulnerable to two new attacks | ZDNet
Published: 2020-03-08 03:09:02
Popularity: None
Author: Catalin Cimpanu
🤖: ""processor fail""
Academics disclose new Collide+Probe and Load+Reload attacks on AMD CPUs.
...moreGhostcat bug impacts all Apache Tomcat versions released in the last 13 years | ZDNet
Published: 2020-03-03 17:05:48
Popularity: None
Author: Catalin Cimpanu
🤖: "Apache melt down"
Ghostcat vulnerability can allow hackers to read configuration files or plant backdoors on Tomcat servers.
...moreNew Kr00k vulnerability lets attackers decrypt WiFi packets | ZDNet
Published: 2020-02-26 16:07:40
Popularity: None
Author: Catalin Cimpanu
🤖: ""Your wifi's on fire""
Kr00k affects devices using Broadcom and Cypress Wi-Fi chips.
...moreOpenSSH adds support for FIDO/U2F security keys | ZDNet
Published: 2020-02-16 00:58:01
Popularity: None
Author: Catalin Cimpanu
🤖: "Secure login"
OpenSSH 8.2 adds support for authentication via FIDO/U2F protocols, most commonly used with hardware security keys.
...moreBluetooth LE devices impacted by SweynTooth vulnerabilities | ZDNet
Published: 2020-02-15 17:59:43
Popularity: None
Author: Catalin Cimpanu
🤖: "Hack alert"
BLE software kits from six chipset vendors impacted. More vendor names to be revealed soon.
...moreChinese hacker group caught bypassing 2FA | ZDNet
Published: 2019-12-23 14:13:03
Popularity: None
Author: Catalin Cimpanu
Chinese state-sponsored group APT20 has been busy hacking government entities and managed service providers.
...moreAndroid: New StrandHogg vulnerability is being exploited in the wild | ZDNet
Published: 2019-12-02 20:47:16
Popularity: None
Author: Catalin Cimpanu
🤖: ""Zero Day Exploit""
Promon discovers new StrandHogg vulnerability. Lookout identifies 36 malicious apps exploiting it in the wild.
...moreVulnerability found and fixed in HP bloatware | ZDNet
Published: 2019-10-12 14:15:47
Popularity: None
Author: Catalin Cimpanu
🤖: "Bloatware bites back"
HP releases security update for HP Touchpoint Analytics app. Device owners advised to update.
...moreMetasploit team releases BlueKeep exploit | ZDNet
Published: 2019-09-06 19:06:45
Popularity: None
Author: Catalin Cimpanu
🤖: "Exploit alert"
Metasploit BlueKeep module can achieve code execution, is easy to use.
...moreUS company selling weaponized BlueKeep exploit | ZDNet
Published: 2019-07-25 13:41:38
Popularity: None
Author: Catalin Cimpanu
🤖: ""Exploit for sale""
An exploit for a vulnerability that Microsoft feared it may trigger the next WannaCry is now being sold commercially.
...moreHackers breach FSB contractor, expose Tor deanonymization project and more | ZDNet
Published: 2019-07-20 18:22:06
Popularity: None
Author: Catalin Cimpanu
🤖: ""Tor hacked""
SyTech, the hacked company, was working on research projects for the FSB, Russia's intelligence service.
...moreLogitech wireless USB dongles vulnerable to new hijacking flaws | ZDNet
Published: 2019-07-09 15:21:05
Popularity: None
Author: Catalin Cimpanu
🤖: ""USB Hijacked""
Vulnerabilities found in Logitech's proprietary Unifying USB dongle technology.
...moreFirst-ever malware strain spotted abusing new DoH (DNS over HTTPS) protocol | ZDNet
Published: 2019-07-04 10:38:00
Popularity: None
Author: Catalin Cimpanu
Godlua, a Linux DDoS bot, is the first-ever malware strain seen using DoH to hide its DNS traffic.
...moreNew Silex malware is bricking IoT devices, has scary plans | ZDNet
Published: 2019-06-26 14:22:09
Popularity: None
Author: Catalin Cimpanu
Over 2,000 devices have been bricked in the span of a few hours. Attacks still ongoing.
...moreWindows 10 zero-day exploit code released online | ZDNet
Published: 2019-05-22 06:24:03
Popularity: None
Author: Catalin Cimpanu
Security researcher 'SandboxEscaper' returns with new Windows LPE zero-day.
...moreA hacker is wiping Git repositories and asking for a ransom | ZDNet
Published: 2019-05-04 13:57:51
Popularity: None
Author: Catalin Cimpanu
Hacker threatens to release the code if victims don't pay in 10 days.
...moreVulnerabilities found in the remote management interface of Supermicro servers | ZDNet
Published: 2019-03-07 22:11:30
Popularity: None
Author: Catalin Cimpanu
Eclypsium researchers disclose second vulnerability affecting Supermicro servers in the past three months
...moreZero-day in popular jQuery plugin actively exploited for at least three years | ZDNet
Published: 2019-03-07 22:07:31
Popularity: None
Author: Catalin Cimpanu
A fix is out but the plugin is used in hundreds, if not thousands, of projects. Patching will take ages!
...moreTwelve malicious Python libraries found and removed from PyPI | ZDNet
Published: 2019-03-07 22:06:57
Popularity: None
Author: Catalin Cimpanu
One package contained a clipboard hijacker that replaced victims' Bitcoin addresses in an attempt to hijack funds from users.
...moreResearchers discover seven new Meltdown and Spectre attacks | ZDNet
Published: 2019-03-07 22:05:02
Popularity: None
Author: Catalin Cimpanu
Experiments showed that processors from AMD, ARM, and Intel are affected.
...moreAWS rolls out new security feature to prevent accidental S3 data leaks | ZDNet
Published: 2019-03-07 22:04:55
Popularity: None
Author: Catalin Cimpanu
New settings will prevent accidental S3 bucket leaks --if customers take the time to apply them.
...morePopular Dark Web hosting provider got hacked, 6,500 sites down | ZDNet
Published: 2019-03-07 22:04:47
Popularity: None
Author: Catalin Cimpanu
Hosting provider is still looking for the hacker's point of entry.
...moreTwo Android apps used in combat by US troops contained severe vulnerabilities | ZDNet
Published: 2019-03-07 22:02:49
Popularity: None
Author: Catalin Cimpanu
Apps were meant for training, never approved for combat. Whistleblower's efforts helped shed light on vulnerabilities, despite leadership reprisals.
...moreHackers dump data of hundreds of German politicians on Twitter | ZDNet
Published: 2019-03-07 22:01:14
Popularity: None
Author: Catalin Cimpanu
Data for some German artists and YouTube celebrities also included.
...morePopular WordPress plugin hacked by angry former employee | ZDNet
Published: 2019-03-07 21:59:12
Popularity: None
Author: Catalin Cimpanu
Hacker defaced the company's website and sent a mass email to all its customers, alleging unpatched security holes.
...moreMicrosoft: 70 percent of all security bugs are memory safety issues | ZDNet
Published: 2019-03-07 21:57:42
Popularity: None
Author: Catalin Cimpanu
Percentage of memory safety issues has been hovering at 70 percent for the past 12 years.
...moreRussia to disconnect from the internet as part of a planned test | ZDNet
Published: 2019-03-07 21:57:35
Popularity: None
Author: Catalin Cimpanu
Russia's internet contingency plan gets closer to reality.
...more