Pierluigi Paganini
July 22, 2014
Apple has worked hard to make iOS devices reasonably secure but hidden services could be exploited to steal every user’s data in a stealthy way. Have you tried to enumerate the functionalities and services in your Apple iOS? You’d be surprised to find that numerous hidden features and services are not documented, some of them […]
Pierluigi Paganini
July 21, 2014
The BigBoss app repository, the default package store for Cydia application, has been hacked by a group of hackers which named itself “Kim Jong-Cracks”. The BigBoss repository, one of the biggest and most popular repositories for jailbreak tweaks in Cydia, has suffered a major data breach. Cydia is an application very popular within the community of iOS Apple […]
Pierluigi Paganini
July 21, 2014
The ICS-CERT has issued a security advisory related to the existence of OpenSSL vulnerabilities affecting different Siemens industrial products. Several Siemens industrial products are affected by four vulnerabilities in their OpenSSL implementation which could be remotely exploited to run a man-in-the-middle (MitM) attack or to cause the crash of web servers of the products. Critical infrastructure […]
Pierluigi Paganini
July 21, 2014
Security experts at TrendMicro have detected a spam campaign via Twitter which exploits the incident occurred to Malaysia Airlines Flight MH17. Unfortunately, tragedies like the one occurred to the Malaysia Airlines Flight MH17 or the recent escalation in Gaza are excellent occasions for cyber criminals that try to exploit the public attention to carry out illegal activities. […]
Pierluigi Paganini
July 20, 2014
In this post I’ll show you how an apparently insignificant information on Whatsapp could be used by hackers in a more dangerous targeted attack. When you add a random phone number to your contact list, WhatsApp will show you the profile picture of that user. Given the fact that you don’t know that person, there […]
Pierluigi Paganini
July 19, 2014
Security Experts at Bitdefender report that a new PushDo variant emerged from the underground compromising 11,000 machine in 24 hours. Security experts at BitDefender have recently detected a surge in the number of Pushdo trojan infections analyzing data from e sinkholing of C&C domains used by the malware. The experts discovered that the new Pushdo campaign is […]
Pierluigi Paganini
July 18, 2014
Hackers pro Hamas claim to have hacked programming on Israeli TV Channel 10 and inserted an unscheduled transmission calling for an end to Israeli airstrikes. The effects of the conflict between Israel and Palestin are evident also in the cyberspace, group of hacktivists, including Anonymous, are targeting Israeli Government websites to protest against recent strikes that […]
Pierluigi Paganini
July 17, 2014
Multiple Cisco Wireless Residential Gateway products are affected by a critical flaw that could allow a remote attacker to hijack the devices. A security vulnerability affects multiple Cisco wireless residential Gateway products, the flaw resides on the web server an could be exploited by a remote attacker to hijack the network appliance. The flaw, ranked […]
Pierluigi Paganini
July 17, 2014
Experts at Aorato have discovered a flaw in MS Active Directory that could allow an attacker to conduct a pass-the-hash attack to change a victim’s password. The Israel-based security firm Aorato has recently discovered a flaw in Microsoft’s Active Directory (AD) that could allow an attacker (via “pass-the-hash” attack) to change a victim’s password and access a […]
Pierluigi Paganini
July 16, 2014
Researchers at SEC Consult have discovered a CSRF vulnerability in the OpenVPN Desktop Client that can allow remote code execution. Security researchers at SEC Consult have discovered a CSRF flaw in the OpenVPN Desktop client and promptly reported it to the company in May. OpenVPN Desktop Client for its Access Server is an SSL VPN for a variety […]
