Cyber Crime

Pierluigi Paganini November 06, 2014
Can cybercrime use the services of the regular companies?

The attacks from humans against the humans as the preliminary phase of a bigger cyber attack will become harder to mitigate, let’s see how the cybercrime works. Standard incident response requires finding out the real extend of the incident. This is why we have all the monitoring tools where we can find any matching patterns. […]

Pierluigi Paganini November 06, 2014
Operation Huyao, the scary evolution of phishing attacks

Security experts at TrendMicro have discovered a new Phishing technique dubbed Operation Huyao that it very hard to detect by site owners and end-users. Security experts have uncovered a new phishing technique, dubbed Operation Huyao, targeting online shopping websites and that is considered by researchers a significantly change to the threat landscape for phishing activities. In a classic […]

Pierluigi Paganini November 06, 2014
ROM is the new improved strain of the Backoff PoS Malware

Security experts at Fortinet detected a new variant of Backoff malicious code dubbed ROM, which is an improved version of the popular POS malware. A new strain of the Backoff point of sale malware has been detected in the wild by security experts at Fortinet, the new variant dubbed ROM (W32/Backoff.B!tr.spy) appears more fine-tuned. Like Backoff, ROM […]

Pierluigi Paganini November 05, 2014
ISIS Hacked Keighley Cougars Rugby Team’s Website

A group of hackers supporting the ISIS hacked the Keighley Cougars rugby team’s website, the attackers defaced the website with pro ISIS slogans. Keighley Cougars rugby team’s website has been hacked by Islamic extremists, ISIS. Users who tried to the website on Sunday were met by a black web page featuring “Hacked By Team System […]

Pierluigi Paganini November 03, 2014
Gang of Romanian and Moldovan crooks stole £1.6m from ATMs

A gang of criminals has stolen nearly £1.6m in raids on ATM (Automated Teller Machines) in UK. The group used a malware to compromise more than 50 ATMs. According to the police, a group of Romanian criminals has stolen nearly £1.6 million in series of jackpotting attacks. The technique of the jack spotting was presented for the first time […]

Pierluigi Paganini November 02, 2014
Google Drive once again exploited in a sophisticated phishing attack

Cybercriminals and states-sponsored hackers are leveraging Google Drive site and other cloud storage to operate in a stealthy way and avoid detection. Cybercriminals and attackers are exploiting once again Google Drive infrastructure to avoid detection. The exploitation of Google Drive cloud storage by cyber criminals is not a novelty, a few days ago experts at […]

Pierluigi Paganini November 01, 2014
Bad actors are using Gmail Drafts to control their bots

Security company Shape Security discovered a new strain of malware which is exploiting Gmail service as a communication channel with control server. Security experts at Shape Security announced to have found a new strain of malware that implements a smart technique to communicate with command and control servers, the commands are hidden in unassuming Gmail drafts that are never even […]

Pierluigi Paganini October 31, 2014
The number of Keyless cars thefts is rising

According to a UK motoring industry group and authorities keyless cars ‘increasingly targeted by thieves, which are using computers e dedicated equipment. According to a UK motoring industry group, criminal organizations are increasingly targeting high-end cars with keyless security systems.  The Society of Motor Manufacturers and Traders (SMMT) confirmed that car thieves are using dedicated equipment to access […]

Pierluigi Paganini October 30, 2014
Drupal community under attack due to a critical SQL injection flaw

A security advisory issued by Drupal assumes that every installation of the popular CMS based in the version 7.x was compromised unless patched. Earlier this month, Drupal patched a critical SQL injection vulnerability (CVE-2014-3704) that exists in all Drupal core 7.x versions up to the recently-released 7.32 version, which fixed the issue. There is an emergency in the […]

Pierluigi Paganini October 30, 2014
Voxis, the platform for automating rogue credit card charges is available in the underground

A group of cybercriminals is proposing in the underground an application for automating rogue credit card charges dubbed Voxis platform. The cyber criminal ecosystem has a new tool in its arsenal called Voxis, the Voxis Platform is a payment gateway application which can send batches of stolen card charges to multiple gateway processors automating their returns before acquiring banks […]