Pierluigi Paganini
May 07, 2015
Every WordPress Plugin or theme that used the genericons package is potentially vulnerable to a DOM-based XSS vulnerability. Experts at the Sucuri firm have discovered that any WordPress Plugin or theme that leverages the genericons package is affected by a DOM-based Cross-Site Scripting (XSS) vulnerability due to an insecure file included with genericons. The experts explained that among […]
Pierluigi Paganini
May 06, 2015
Certain versions of common drug infusion pumps are affected by numerous remotely exploitable vulnerabilities that could not open the doors to hackers. We discussed several times about the opportunity to hack medical devices and the needs of security by design for these objects. In 2012 the US Government Accountability Office (GAO) published a report that highlighted the necessity to secure […]
Pierluigi Paganini
May 06, 2015
You can find a manual on how to hack drones online, simply searching on Google. This can lead to severe problems and negative consequences. Drones have become truly popular, due to the multiple benefits that they offer. In the military, drones have been in use thanks to their versatility, their low cost and of course […]
Pierluigi Paganini
May 05, 2015
Many Uber customers are reporting unauthorized rides paid through their accounts, the company excludes a data breach, but suggested a password reset. In March, media agencies reported that the popular Uber service was hacked by cyber criminals, security experts discovered al least two different vendors offering stolen Uber customer logins in a black market on […]
Pierluigi Paganini
May 04, 2015
Hackers belonging to the Anonymous collective hacked the website of the World Trade Organization (WTO) and leaked personal data of thousands of officials. Hackers belonging the Anonymous collective compromised the website of the World Trade Organization (WTO) and leaked its database containing personal data of its members. The stolen data are related to personnel of […]
Pierluigi Paganini
May 02, 2015
A few hours after the presentation of the Google Password Alert extension a researcher already have developed two methods to bypass it. A few hours ago, Google released the Password Alert extension that was designed to warn users when they are submitting their Google credentials to fraudulent websites. âHereâs how it works for consumer accounts. Once youâve […]
Pierluigi Paganini
May 01, 2015
The passwords for the signal system of the control room at the Waterloo rail station in London were disclosed during a TV documentary. We cannot think of lock down the house if we leave the keys in the lock outside, something of similar occurred recently to at French network TV5Monde. Following the successful attack against the network […]
Pierluigi Paganini
May 01, 2015
Foreign hackers are targeting background investigation databases to blackmail US government personnel or to try to bribe them. It is not a mystery that Chinese hackers continuously target US companies and government offices, the attackers usually backed by the Government of Bejing mainly run cyber espionage campaigns to steal intellectual property and any kind of information related to person […]
Pierluigi Paganini
April 30, 2015
Experts demonstrated the presence of critical vulnerabilities in the password recovery procedure of the website of the online betting exchanges Betfair. A security expert discovered a flaw in the password recovery process on the website of online betting exchanges Betfair. Betfair is one of the world’s largest online betting exchanges, and this vulnerability represents a […]
Pierluigi Paganini
April 30, 2015
A flaw affecting Realtek SDK exposes SOHO routers to remote code execution attacks. List of vulnerable devices include D-Link and TRENDnet products. The security expert from DVLabs security researcher and content developer at HP Enterprise Security Ricky Lawshae discovered a (CVE-2014-8361) vulnerability that affects Realtek SDK used for RTL81xx chipsets. The exploitation of the vulnerability allows a […]
