Pierluigi Paganini
June 04, 2014
A last revelation on the surveillance activities of British intelligence GCHQ confirms the existence of spy base tapping undersea cables in the Middle East. In the last year Edward Snowden has leaked many disconcerting documents for the surveillance activity conducted by the NSA and GCHQ intelligence agencies, the last revelation is related Britain covert spying programme, in particular the information on clandestine British base […]
Pierluigi Paganini
June 03, 2014
The DoJ and the FBI announced a multinational effort to disrupt the GameOver Zeus botnet responsible for the theft of millions of dollars worldwide. The U.S. DoJ in collaboration with FBI and foreign law enforcement agencies revealed early this week a joint effort to disrupt Gameover Zeus, one of the most long-lived and dangerous botnet composed by a number […]
Pierluigi Paganini
June 02, 2014
A Portuguese security expert has uncovered the Cupid attack, a new Heartbleed attack vector which can impact Android devices, enterprise wireless networks and other connected devices. Cupid is the name of the new Heartbleed attack method recently proposed by Portuguese security researcher Luis Grangeia, unlike the original version of the attack, which took place on TLS connections over TCP, […]
Pierluigi Paganini
June 02, 2014
Security Experts discovered a new attack method to defeat Secure Boot security mechanism of the UEFI (Unified Extensible Firmware Interface). The Secure Boot security mechanism of the UEFI (Unified Extensible Firmware Interface) can be circumvented on around half of PCs that use it, security researcher Corey Kallenberg from nonprofit research organization Mitre has demonstrated it at […]
Pierluigi Paganini
June 01, 2014
Sporting events are an excellent scenario for hacktivists, protest against the World Cup in Brazil are increasing and hackers announced a major cyber attack. The football World Cup in Brazil 2014 is coming soon, the infrastructure used for the event are a prime target for each category of bad actors, state-sponsored hackers intent on cyber espionage, cyber criminals […]
Pierluigi Paganini
June 01, 2014
Security researchers at Sucuri firm have discovered multiple serious vulnerabilities in the popular ‘All In One SEO Pack’ plugin for WordPress. WordPress in one of most targeted CMS platforms due its large diffusion, attackers are able to compromise victim instance exploiting flaws in outdated version or in vulnerable plugins . The Netcraft internet services company, in […]
Pierluigi Paganini
May 29, 2014
Security experts at Kaspersky Lab have discovered a new banking trojan, dubbed Banker.AndroidOS.Basti.a, hidden in a fake WeChat application. Cyber criminals are abusing of the brand WeChat, the popular mobile application designed by Chinese company Tencent, to arrange a malware campaign which hit Chinese users. Experts at Kaspersky Lab have discovered that cybercriminals are using an […]
Pierluigi Paganini
May 28, 2014
Spotify company is investigating unauthorized access to its systems and internal company data. Android users urge to update the app and change the password. The popular Music streaming service Spotify is the last illustrious victim of hackers. The Swedish company today has issued an advisory to inform its the users of its Android app that it has suffered a […]
Pierluigi Paganini
May 27, 2014
Disclosed on Internet a curious news, hacking the Windows OS registry it is possible to get Windows XP Security Updates until 2019. On April 8th 2014 Microsoft officially ended the support for Windows XP, but there is still a wide audience of users that are using the oldest Microsoft OS. This portion of users is no more receiving security updates […]
Pierluigi Paganini
May 27, 2014
Unencrypted cookies leave WordPress accounts exposed to hijacking on insecure networks, even if the two-factor authentication is enabled. WordPress administrators must be aware that it is quite easy for hackers to hijack their web site if they login from the same WI-Fi connection (e.g. From a public place) even if it is protected by two-factor authentication, . […]
