Hacking Archives - Page 720 of 967

Pierluigi Paganini March 17, 2017

New APT Campaign based on Poison Ivy RAT with C&C in China has been reversed by MalwareMustDie

New APT Campaign based on Poison Ivy RAT with C&C in China has been reversed by MalwareMustDie who shared a lot of interesting details about the attack vectors and reverse techniques. Our travel along the great analysis of a fresh, new insidious APT China campaign. An ordinary case of phishing? At the beginning, it seemed […]

Pierluigi Paganini March 17, 2017

Who is spying on communications in the Washington area? A rogue state is suspected of mass surveillance

US authorities uncovered a surveillance activity allegedly powered by a rogue entity that is tracking phones of Government officials and foreign diplomats. Something very strange has happened in the Washington, D.C., region, experts noticed an unusual amount of highly suspicious cellphone activity. The fear is that a rogue actor is attempting to spy on communications of numerous individuals, […]

Pierluigi Paganini March 17, 2017

Welcome to Pwn2Own 2017 – Researchers hacked Adobe Reader, Edge, Ubuntu, and Safari

Pwn2Own 2017 is started, as usual, it is a great event to see hackers at work. In the first day, experts hacked Edge, Safari, Ubuntu, and Adobe Reader. Pwn2Own 2017 competition held in Vancouver (Canada) is started, as usual, it is a great event to see hackers at work. In the first day Bug bounty hunters […]

Pierluigi Paganini March 16, 2017

CVE-2017-2636 Linux kernel flaw was spotted after seven years and quickly fixed

A flaw recently fixed in the Linux kernel tracked as CVE-2017-2636 might have been exploited to gain privilege escalation or cause a DoS condition. The security expert Alexander Popov from Positive Technologies has discovered a race condition in the n_hdlc driver that might be exploited by attackers for privilege escalation in the operating system. The vulnerability tracked as CVE-2017-2636, […]

Pierluigi Paganini March 16, 2017

Drupal version 8.2.7 address multiple vulnerabilities in the current version of the popular CMS

Drupal development team has issued a new release of the popular content management system (CMS), Drupal version 8.2.7, that fixes multiple vulnerabilities. The Drupal development team has released the Drupal version 8.2.7 that addressed a number of vulnerabilities in the popular CMS. The list of flaws includes an access bypass issue, a cross-site request forgery […]

Pierluigi Paganini March 15, 2017

Just one picture would have used to take over WhatsApp and Telegram accounts

A single picture could have been used by attackers to hack the popular secure messaging applications WhatsApp and Telegram. Security experts from Checkpoint have discovered a vulnerability that was present in both messaging services. The hack only affected the browser-based versions of both WhatsApp and Telegram. The flaw affected the way both apps process images and multimedia […]

Pierluigi Paganini March 15, 2017

Turkey vs Holland – Hackers broke into Twitter CounterApp to hijack hundreds of High-Profile Accounts

Turkey vs Holland – Hackers launched a massive hacking campaign that hijacked hundreds of High-Profile Accounts to spread political messages against Holland. A huge number of high-profile Twitter accounts have been hijacked following the recent diplomatic crisis between Turkey and the Netherlands. The hackers posted through many Twitter accounts political messages in the Turkish language including a link […]

Pierluigi Paganini March 14, 2017

Canadian agency breached as hackers exploit CVE-2017-5638 flaw in Apache Struts 2

Canada Revenue Agency confirmed it shut down its website for filing federal taxes due to a cyber attack leveraging the CVE-2017-5638 flaw in Apache Struts 2 The Canada Revenue Agency (CRA) confirmed it shut down its website for filing federal taxes after hackers broke into the server at the nation’s statistics bureau. The security breach occurred […]

Pierluigi Paganini March 14, 2017

Crooks hijack Magento Realex Payments extension to steal payment card data

Cybercriminals hijack Magento Realex Payments extension to steal payment card data. Experts at Sucuri are observing massive attacks. Cybercriminals continue to target Magento platform to steal credit card data. Crooks have been abusing a payment module to steal payment card data from online shops running on Magento e-commerce platform. According to experts at security firm Sucuri, […]

Pierluigi Paganini March 13, 2017

The CVE-2017-5638 Apache Struts 2 command execution flaw affects Cisco products

On Friday, Cisco confirmed that at least some of its products are affected by an Apache Struts 2 command execution vulnerability tracked as CVE-2017-5638. The CVE-2017-5638 remote code execution zero-day has been exploiting by attackers in the wild, it affects Struts 2.3.5 through 2.3.31 and Struts 2.5 through 2.5.10. According to the experts from Cisco Talos, the […]

Hacking

New APT Campaign based on Poison Ivy RAT with C&C in China has been reversed by MalwareMustDie

Who is spying on communications in the Washington area? A rogue state is suspected of mass surveillance

Welcome to Pwn2Own 2017 – Researchers hacked Adobe Reader, Edge, Ubuntu, and Safari

CVE-2017-2636 Linux kernel flaw was spotted after seven years and quickly fixed

Drupal version 8.2.7 address multiple vulnerabilities in the current version of the popular CMS

Just one picture would have used to take over WhatsApp and Telegram accounts

Turkey vs Holland – Hackers broke into Twitter CounterApp to hijack hundreds of High-Profile Accounts

Canadian agency breached as hackers exploit CVE-2017-5638 flaw in Apache Struts 2

Crooks hijack Magento Realex Payments extension to steal payment card data

The CVE-2017-5638 Apache Struts 2 command execution flaw affects Cisco products

newsletter

Subscribe to my email list and stay
up-to-date!

recent articles

Microsoft and Cloudflare teamed up to dismantle the RaccoonO365 phishing service

DoJ resentenced former BreachForums admin to three years in prison

Apple backports fix for actively exploited CVE-2025-43300

New supply chain attack hits npm registry, compromising 40+ packages

Cybercrime group accessed Google Law Enforcement Request System (LERS)

QUICK LINKS

Hacking

newsletter

Subscribe to my email list and stay up-to-date!

recent articles

Subscribe to my email list and stay
up-to-date!