Pierluigi Paganini
January 18, 2016
National Security Agency says the US Govt surveillance programme for collecting domestic telephone records rmeets security standards The United States government’s updated spying program for gathering native people’ phone records has passed the muster as far as civil and privacy principles, the NSA (National Security Agency) claims. The new structure, which was executed in November […]
Pierluigi Paganini
January 18, 2016
The Las Vegas Casino firm Affinity Gaming sued Trustwave for allegedly failing a data breach investigation, but Trustwave denies any wrongdoing. Affinity Gaming, a casino operator operating five casinos in Nevada, and six in other locations in the US, has sued the It security company Trustwave for a “bad” investigation, after a network breach it […]
Pierluigi Paganini
January 18, 2016
Ukrainian Government is accusing Russia of organizing hacker attacks against the Boryspil airport’s networks. Cyber security experts of the State Service of Special Communications and Information Protection of Ukraine are blaming Russian hackers for a new cyber attack against the Boryspil airport’s networks. Presidential Administration’s spokesman for ATO Andriy Lysenko (ATO), explained that the systems at […]
Pierluigi Paganini
January 17, 2016
At the recent ShmooCon conference a researcher presented a LastPass phishing attack that could allow hackers to steal your password. We discussed several times the importance of password managers such as LastPass, but sometimes hackers could exploit them to launch their attacks. The security researcher Sean Cassidy has presented on Saturday at the ShmooCon hacker conference […]
Pierluigi Paganini
January 17, 2016
It has been fixed the OpenSSH vulnerability that can be exploited to steal crypto keys from vulnerable clients. Recently a critical vulnerability in OpenSSH has been fixed, the flaw can leak secret cryptographic keys. The flaw affects end users version of OpenSSH and not server side implementations. Many experts compared the effects of this flaw to the […]
Pierluigi Paganini
January 16, 2016
Once again, the security expert Patrick Wardle has demonstrated how to bypass the Apple Gatekeeper security feature. Once again, a security expert demonstrated how to bypass OS X’s Gatekeeper security feature, and the worst news is that the patch distributed by Apple fixes the problem only temporarily. Apple tried to mitigate the attack method (CVE-2015-7024) with the […]
Pierluigi Paganini
January 15, 2016
Two New Zealand researchers demonstrated at last Kiwicon conference how to print their own non-expiring 40c vouchers for fuel discounts. Bar codes are used all over the world, but to be fair, it’s a very outdated technology, and from time to time we get to know new holes in the technology. At last Kiwicon conference edition, two […]
Pierluigi Paganini
January 14, 2016
Microsoft patched a Silverlight zero-day discovered by analyzing internal emails stolen to Hacking Team about Silverlight exploit. Microsoft recently fixed a number of vulnerabilities with the MS16-006 critical bulletin, including a Silverlight flaw CVE-2016-0034 that could be exploited for remote code execution. The Silverlight flaw discovered by the experts at Kaspersky Lab as a result of an investigation on the Hacking Team arsenal disclosed in […]
Pierluigi Paganini
January 13, 2016
A group of researchers from Vectra Threat Labs explained how to exploit IoT devices like 30$ D-Link DCS web cameras as a backdoor. Vectra Threat Labs, part of Vectra Networks has invested time testing some IoT solutions available in the market, and one of the most interesting products its always the Wi-Fi security web cameras. […]
Pierluigi Paganini
January 13, 2016
Another SSH backdoor? Researchers have discovered highly suspicious code in the Fortinet FortiOS firewalls that were shipped with hardcoded logins. After Juniper, another Enterprise security vendor is in the headlines, this time it is Fortinet for the presence of a SSH ‘backdoor in its firewalls. Less than a month ago, an “unauthorized code” was discovered in the operating system for […]
