Breaking News

Pierluigi Paganini September 06, 2017
Struts CVE-2017-9805 RCE flaw could be exploited to take over vulnerable servers

Critical vulnerability CVE-2017-9805 in Apache Struts could be exploited by attackers to take over affected web servers. Security researchers at LGTM (lgtm.com) have discovered a critical remote code execution vulnerability in the Apache Struts that could be exploited by a remote attacker to run malicious code on the vulnerable servers. “Security researchers at lgtm.com have discovered a critical […]

Pierluigi Paganini September 05, 2017
Experts discover a new sophisticated malware dubbed xRAT tied to mRAT threat

Researchers at Lookout spotted a new mobile remote access Trojan dubbed xRAT tied to 2014 “Xsser / mRAT” surveillance campaign against Hong Kong protesters. A new mobile remote access Trojan dubbed xRAT includes appears as the evolution of high-profile spyware Xsser / mRAT malware that was first spotted in late 2014 when it was used in a surveillance […]

Pierluigi Paganini September 05, 2017
UK Government is hiring cyber experts for Dark Web investigations

The UK Government is recruiting cyber experts and dark web analysts to crackdown criminal communities operating in the dark side of the web. The UK National Crime Agency (NCA) is recruiting cyber experts and dark web analysts to track crooks involved in illicit activities and dismantle drug rings and dark web marketplaces. The NCA aims […]

Pierluigi Paganini September 05, 2017
Other 26,000 MongoDB servers hit in a new wave of ransom attacks

Security researchers Dylan Katz and Victor Gevers confirmed other 26,000 MongoDB servers were hit in a new wave of ransom attacks. Ransom attacks on MongoDB databases revamped over the weekend after an apparent pause. According to the security researchers Dylan Katz and Victor Gevers, three new groups appeared on the threat landscape and hijacked over 26,000 servers, one of them, in […]

Pierluigi Paganini September 04, 2017
Taringa Data Breach, over 28 Million users affected

The data breach notification website LeakBase reported to the colleagues at THN the Taringa data breach, over 28 Million users’ data exposed. Taringa, also known as ‘The Latin American Reddit’, is a popular social network used by netizens in Latin America to create and share thousands of posts every day on general interest topics. The data breach notification […]

Pierluigi Paganini September 04, 2017
Thousands resumes of US military and intel contractors left unsecured on an Amazon server

Experts discovered thousands of files containing personal data on former US military, intelligence, and government workers exposed online for months. Researchers from cybersecurity company UpGuard have discovered thousands of files containing personal data on former US military, intelligence, and government workers have allegedly been exposed online for months. The data breach has been initially attributed to security […]

Pierluigi Paganini September 04, 2017
CynoSure Prime ‘cracktivists’ exposed 320 Million hashed passwords

The anonymous CynoSure Prime ‘cracktivists” reversed 320 million hashed passwords dumped to the popular researcher Troy Hunt. The anonymous CynoSure Prime ‘cracktivists” is back and reversed 320 million hashed passwords dumped to the popular researcher Troy Hunt. Two years ago the CynoSure Prime group reversed hashes of 11 million leaked Ashley Madison passwords. The hashed passwords were protected by […]

Pierluigi Paganini September 04, 2017
Chinese cyber security law will allow China to use zero-day knowledge for its intelligence

According to the Chinese Cyber Security law, the information obtained by the CNNVD could be used in intelligence operations. The new Chinese cyber security law will allow the Government to analyze the source code and any intellectual property of foreign tech companies working in the country. The Chinese cyber security law was focused on the protection of Chinese users’ […]

Pierluigi Paganini September 03, 2017
FICO reports a 39 Percent Rise in Debit Cards Compromised in US

The analytic software firm FICO Reports a 39 Percent Rise in Debit Cards Compromised at ATMs and Merchants in the United States. According to a report published by the analytic software firm FICO, US Debit Cards compromised raise up to 39% in the first six months of 2017 compared to the same timeframe one year prior. […]

Pierluigi Paganini September 03, 2017
Security Affairs newsletter Round 126 – News of the week

A new round of the weekly SecurityAffairs newsletter arrived! The best news of the week with Security Affairs. ·      Defray Ransomware used in targeted attacks on Education and Healthcare verticals ·      Security Affairs newsletter Round 125 – News of the week ·      Tor relay of a Brazilian University was banned after harvesting .onions ·      Chinese […]