Pierluigi Paganini
December 01, 2017
Researchers discovered that the original patch for the Dirty COW vulnerability (CVE-2016-5195) is affected by a security flaw. The original patch for the Dirty COW vulnerability (CVE-2016-5195) is affected by a security flaw that could be exploited by an attacker to run local code on affected systems and exploit a race condition to perform a privilege escalation […]
Pierluigi Paganini
December 01, 2017
Seleznev gets another prison sentence. He received 14-year prison sentence for charge in Nevada and another 14 years for the second charge in Georgia. In April, the Russian hacker Roman Seleznev, aka Track2, Bulba and Ncux, was sentenced to 27 years in prison, he was convicted of causing $170 million in damage by hacking into point-of-sale systems. The 33-year-old was […]
Pierluigi Paganini
December 01, 2017
Google announced the block of code injection from third-party applications into the Chrome browser. Developers have 14 months to update their code. Google continues to improve security of its product and services, the IT giant announced the for blocking third-party applications from injecting code into the Chrome browser. The decision of the company will have […]
Pierluigi Paganini
December 01, 2017
NTT Security, a company of the tech giant NTT Group focused on cyber security, has released its 2017 Global Threat Intelligence Center (GTIC) Quarterly Threat Intelligence Report. The research includes data collected over the last three months from global NTT Security managed security service (MSS) platforms and a variety of open-source intelligence tools and honeypots. The report […]
Pierluigi Paganini
December 01, 2017
Some websites use a simple trick to keep their cryptocurrency miners scripts running in the background even when the user has closed the browser window. Website administrators and crooks are looking with an increasing interest at JavaScript-based cryptocurrency miners due to rapid increase in cryptocurrency prices. These scripts exploit the CPU power of their visitor’s PC to mine Bitcoin […]
Pierluigi Paganini
November 30, 2017
Just 24 hours later, Apple issued a security update for macOS High Sierra that addresses the bug that allowed Root access with no password Yesterday I published a post on an embarrassing flaw affecting the macOS High Sierra, tracked as CVE-2017-13872, that that can be exploited to gain root access to a machine with no password. The vulnerability is […]
Pierluigi Paganini
November 30, 2017
A federal judge in the California court has ruled that cryptocurrency exchange portal Coinbase must hand over details of over 14,000 users to the US IRS. In November 2016, the US Internal Revenue Service (IRS) has filed a motion asking the US Federal Court of Northern California to force the US-based cryptocurrency exchange portal to […]
Pierluigi Paganini
November 30, 2017
Clarkson, one of the world’s largest providers of shipping services publicly disclosed a security breach. Clarkson confirmed the hackers may release some of the stolen data, it hasn’t provided further details due to the ongoing law enforcement investigation. The information disclosed by the company suggests cyber criminals blackmailed the company requesting the payment of a ransom in […]
Pierluigi Paganini
November 30, 2017
Palo Alto Networks discovered a custom RAT dubbed UBoatRAT that has been used in targeted attacks on personnel or organizations related to South Korea. Security experts from Palo Alto Networks discovered custom remote access Trojan (RAT) dubbed UBoatRAT that has been used in targeted attacks on personnel or organizations related to South Korea and the video gaming […]
Pierluigi Paganini
November 29, 2017
Siemens published a security advisory to confirm that four of the seven Dnsmasq vulnerabilities affect some of its SCALANCE products In October, Google security experts disclosed seven distinct vulnerabilities in the Dnsmasq software package. From the authors’ website, “Dnsmasq provides network infrastructure for small networks: DNS, DHCP, router advertisement and network boot.” In practice, the Dnsmasq code has been widely leveraged in […]
