Monthly Archives: September 2015
Naikon APT Group backed by the Chinese PLA Unit 78020
According a new report the popular Naikon APT group is actually backed by the China’s PLA Unit 78020, a firm traced it through online activity. Ge Xing, also known as “GreenSky27,” is […]
OPM stolen data includes 5.6 Million Fingerprints
According to the a statement by OPM Press Secretary Sam Schumach on Background Investigations Incident OPM breach included 5.6 Million Fingerprints. The press secretary of the Office of Personnel Management, Sam Schumach, announced that the data breach suffered […]
Malvertising campaign targeted the Forbes Website, million users at risks
Security researchers at FireEye have uncovered a new malvertising campaign that exploited the popular Forbes.com news website. Security experts at FireEye have uncovered a new malvertising campaign that exploited the […]
D-Link firmware accidentally includes Code Signing Keys
The Taiwanese networking equipment manufacturer D-Link has accidentally published its private code signing keys in the source of one of its firmware update. According to the Dutch news site Tweakers, the […]
The DUKES APT – 7 years of Russian state sponsored hacking
F-Secure has published an interesting report on the cyber espionage operations conducted by the Dukes APT group, which appears linked to the Kremlin. Security researchers at F-Secure have published an […]
Bugzilla CVE-2015-4499 flaw, be aware hackers could know all your bugs
A Critical vulnerability affects Mozilla Bugzilla bug-tracking software could be exploited to access details of non-public vulnerabilities stored in its database. The open source Bugzilla bug-tracking system is used hundreds of thousands of software organizations […]
Hundreds million potential victims of a new advanced malvertising campaign
Experts at MalwareBytes uncovered a massive malvertising campaign, booby-trapped web ads went undetected for weeks leveraging on the Angler Exploit Kit. In August, threat actors behind a number of major malvertising […]
Department of Energy hacked 159 times between 2010 and 2014
According to a review of federal records obtained by USA Today, the US Department of Energy is among the most targeted government organizations in the US. The US Department of Energy […]
Vodafone Australia has hacked a Fairfax journalist’s phone
The Telecommunications giant Vodafone denies ‘improper behaviour’ after its employee accessed Natalie O’Brien’s phone records to discover its sources. Vodafone Australia has admitted it hacked a journalist’s phone records for […]
ISIS hackers violated top secret British Government emails
According to an investigation by the GCHQ intelligence agency ISIS hackers targeted information held by some of David Cameron’s most senior ministers. According the experts at the British Intelligence GCHQ, […]
Another computer system at the Pentagon has been hacked
Another cyber attack hit computer systems at the Pentagon, this time the food court computers have been hacked exposing employees’ bank information. In August, alleged Russian hackers have hacked an unclassified […]
Fiat Chrysler recalls thousands Jeep Renegade SUVs due to hacking risks
Fiat Chrysler has recalled nearly 8,000 Jeep Renegade SUVs in the US to update the software that could be exploited by attackers to hack the vehicles. No peace for Fiat Chrysler […]
DoJ defines new rules for spying with the Stingray technology
The US Justice Department issued guidelines for StingRay Surveillance devices, new rules define aim to ensure privacy protection and transparency. Do you know what is a StingRay? If you want […]
Dark Web intelligence pro and cons
Dark Web Intelligence could help law enforcement and intelligence agencies to gather information on potential attacks. Which are the risks? The increased number of cyber attacks against government entities and the hypothesis […]
Ashley Madison Users victims of extortion and phishing
Security researchers have observed a spike in extortion attempts and phishing campaigns against the Ashley Madison users … are they effective? The hack of the Ashley Madison website has demonstrated us how […]
Critical OS X flaw could be exploited to steal data from Keychain
Security researchers at MalwareBytes have discovered a new variant of an adware installer that is leveraging an old trick to access the Keychain on MAC OS X In July, researchers […]
Tango Down, NCA website offline after Lizard Squad attack
Alleged Lizard Squad hackers have DDoSed the website of the British NCA and have downed it after law enforcement arrested six teenagers clients of the group Hackers have coordinated a cyber attack against the […]