Breaking News

Pierluigi Paganini March 20, 2015
Drupal flaw allows reset password by crafting specific URLs

The Drupal team issued an update to fix a flaw that allows attackers reset password by crafting URLs under certain circumstances. Security experts discovered two critical vulnerabilities in Drupal CMS, one of them is an Access bypass (Password reset URLs) vulnerability that could be exploited to forge Password Reset URLs. “Password reset URLs can be forged […]

Pierluigi Paganini March 19, 2015
Boeing announced its hack-proof drone

Boeing announced its project for the production of an unhackable drone, dubbed Boeing Little Bird, which should be in flight around the end of 2017. The drone industry is growing at a rapid pace. Aerospace research company Teal Group has estimated that sales of military and civilian drones will total over $89 billion in the […]

Pierluigi Paganini March 19, 2015
IBM X-Force reported a billion data records leaked in 2014

Within the year of 2014, a lot of data was leaked and this leads to grave concerns as to the future of overall online security. Unfortunately, 2014 was one of the worst years and the reason of that was that a lot if viruses and attempts of violation of online privacy. IBM X-Force Threat Intelligence […]

Pierluigi Paganini March 19, 2015
Mobile apps still vulnerable to FREAK attacks

Despite principal vendors have released updates to fix the FREAK vulnerability many mobile apps for Android and Apple iOS are still vulnerable. Early March, security experts discovered a critical vulnerability codenamed FREAK (CVE-2015-0204), also known as Factoring Attack on RSA-EXPORT Keys, which could be exploited by threat actors to run  man-in-the-middle attacks on encrypted traffic when Internet users visited […]

Pierluigi Paganini March 19, 2015
North Korea Internet outage could be a response to Sony Hack

According to a US Lawmaker North Korea Internet outage occurred in December could be a response for the cyber attack against the Sony Pictures On December 2014, the North Korea suffered a significant network outage which isolated the country from the internet. Security experts speculated that the incident was a retaliation for the Sony hack. […]

Pierluigi Paganini March 18, 2015
Admins of the EVOLUTION Black market exit scamming

The Evolution Black Market, the most popular an online black marketplace appears to have vanished, it seems that admins of the website exit scamming. The security community is paying attention to the evolution of dark markets following the operation Onymous conducted by law enforcement in November. Law enforcement in a joint effort against cybercrime seized dozens of black […]

Pierluigi Paganini March 18, 2015
US health insurer Premera Hacked, 11 Million customers affected

US health insurer Premera Blue Cross announced its network had been hacked, potentially exposing data from 11 million individuals. A few weeks after the disclosure of the data breach suffered by from Anthem Blue Cross, which exposed 80 million customer records, another US health insurer was victim of a major attack that is affecting 11 Million customers […]

Pierluigi Paganini March 18, 2015
South Korea – Hacker requests money for data on nuclear plants

Hacker who posted online information on Nuclear Plants in South Korea demands money for not selling other sensitive information to other governments. The Government of Seoul has issued a report blaming North Korea for cyber attacks against computers at Korea Hydro and Nuclear Power (KHNP), a subsidiary of the Korea Electric Power Corporation (KEPCO) that […]

Pierluigi Paganini March 18, 2015
DLL Hijacking can affect OS X

DLL hijacking is not a prerogative for Windows systems, it is a common hacking technique that is very effective against OS X based machines. As you may know, DLL hijacking it’s something that its around since around 2000 and allows hackers to exploit a machine with a vulnerable application ( just one of the possibilities […]

Pierluigi Paganini March 17, 2015
Microsoft discovered a bogus SSL digital certificate for Live that could be exploited for MITM attacks

Microsoft has blocked a bogus HTTPS digital certificate that was issued for one of Live Web addresses and could be exploited to run MITM attacks. In January, an unnamed man came into possession of the live.fi certificate after noticing that he was able to use [email protected] as an alias for his normal e-mail address. The […]