Cyber Crime

Pierluigi Paganini February 04, 2014
Fixed a serious flaw in Adobe Flash Player exploited in “the Mask APT”

Adobe has released security updates for Adobe Flash Player to fix a critical vulnerability exploited in a sophisticated cyber espionage campaign. Adobe has released today a new patch for the Flash Player product to fix a vulnerability which is currently being exploited. The vulnerability (CVE-2014-0497), allows an attacker to remotely take control of the targeted system […]

Pierluigi Paganini February 03, 2014
Orange hacked, 800,000 customer records have been stolen

  The official Orange website was breached by unknown hackers who have stolen 800,000 customer records including names, email addresses and phone numbers. Orange, the world’s largest mobile operator, suffered a data breach. Another clamorous case, after the one occurred to Vodafone in Iceland, according first information, data of more than 800,000 customers of giant has been […]

Pierluigi Paganini February 02, 2014
Critical vulnerabilities in Oracle servers in the wild

Researcher Dana Taylor is warning on the existence of two critical vulnerabilities in Oracle servers in the wild since a long time. Two serious vulnerabilities affect Oracle’s older database packages, allowing an attacker to remotely access a server bypassing authentication mechanism. Exploiting the flaws the attackers can browse the filesystem of the server accessing any files. […]

Pierluigi Paganini January 31, 2014
Yahoo Mail hacked,attackers gain unauthorized access to its accounts

  The company has issued a security advisory to warn users that Yahoo Mail Service was hacked, hackers have stolen credentials of its email customers. Yahoo Mail! is considered one of the largest email service providers, millions of people use is every day, it’s clear that it represents an attractive target for cyber criminals. The […]

Pierluigi Paganini January 30, 2014
Exploring the Telephony Denial of Service (TDoS) Q&A

Interviewed with Mark Collier, CTO and VP of Engineering at Securelogix to better understand the topic of Telephony Denial of Service (TDoS). I briefly interviewed Mark Collier, CTO and VP of Engineering at SecureLogix ( on the topic of Telephony Denial of Service (TDoS). Mark just completed the Hacking Exposed: UC and VoIP book, which covers […]

Pierluigi Paganini January 28, 2014
Hackers used Spear Phishing attack to hack CNN Blogs

Security analysts at Intelligence firm InterCrawler published the details of the investigation on recent attack against CNN Blogs and social media accounts. Recently a few social media accounts belonging to CNN and blogs were compromised, including CNN’s main Facebook account, CNN Politics’ Facebook account and the Twitter pages for CNN and CNN’s Security Clearance. At the […]

Pierluigi Paganini January 28, 2014
FBI seized Tormail database, it has the access to all users emails

The Federal Bureau of Investigation (FBI) seized the database of Tormail service for its investigation on cybercrime and illegal online hacking. Do you have used the Tormail Email service to protect your privacy? Are you searching for anonymity online? Well, the revelation regarding Tor Stinks project and many recent news on the spying activity discovered on Tor Traffic made […]

Pierluigi Paganini January 27, 2014
Arts and crafts retailer Michaels Stores Inc warns over credit card fraud

Michaels Stores Inc., US-based arts-and-crafts retailer, confirmed it is investigating a possible data breach affecting customer cards. Michaels Stores Inc., US-based arts-and-crafts retailer maybe is the last victim of a massive data breach, a few weeks after the hack of US retailer Target and Neiman Marcus. Michaels Stores Inc has more than 1,250 stores across the United […]

Pierluigi Paganini January 26, 2014
Spear phishing against Microsoft, exposed law enforcement inquiries

Attackers breached the email accounts of Microsoft staff, probably with a spear phishing attack, accessing to documents on law enforcement inquiries. Spear phishing attacks are within most insidious attacks for private companies and organizations, they are primarily caused for data breach occurred in the last couple of years. Despite the awareness of this type of cyber […]

Pierluigi Paganini January 25, 2014
Discovered first Win trojan to serve banking Android malware on mobile

Symantec experts recently came across a Windows malicious code that attempts to infect connected Android devices serving an Android malware. Researchers at Symantec antivirus firm have discovered a malicious code that is able to infect Android mobile device with a banking malware during synchronization. The Android malware that was designed to hit Windows user could compromise user’s Smartphone during file […]