Pierluigi Paganini
February 16, 2017
Yahoo notifies users that hackers are forging “cookies” or files used in the authentication process to access their accounts, instead of stealing passwords Yahoo confirmed it was notifying some users of sophisticated cyber attacks aimed to compromise their accounts. The hackers are adopting hacking methods to forge “cookies” or files used in the authentication process, instead of […]
Pierluigi Paganini
February 15, 2017
The Russian-speaking black hat hacker Rasputin, hacked systems of more than 60 universities and U.S. government agencies. According to the threat intelligence firm Recorded Future, a Russian-speaking black hat hacker, known as ‘Rasputin‘, hacked systems of more than 60 universities and U.S. Government agencies. We met Rasputin in December 2016, when he was offering for sale stolen login […]
Pierluigi Paganini
February 12, 2017
A new round of the weekly SecurityAffairs newsletter arrived! The best news of the week with Security Affairs. First of all, let me inform you that at the #infosec16 SecurityAffairs was awarded as The Best European Personal Security Blog http://securityaffairs.co/wordpress/48202/breaking-news/securityaffairs-best-european-personal-security-blog.html Anonymous hacked Freedom Hosting II, a fifth of the Dark Web is down Security Affairs newsletter Round […]
Pierluigi Paganini
February 05, 2017
A new round of the weekly SecurityAffairs newsletter arrived! The best news of the week with Security Affairs. First of all, let me inform you that at the #infosec16 SecurityAffairs was awarded as The Best European Personal Security Blog http://securityaffairs.co/wordpress/48202/breaking-news/securityaffairs-best-european-personal-security-blog.html Hong Kong brokers blackmailed by hackers with DDoS Attacks Uber pays $9,000 bug bounty payoff for partner […]
Pierluigi Paganini
January 30, 2017
A new variant of the Dridex Trojan recently observed is leveraging a new tactic to bypass the UAC (User Account Control). Researchers at the security firm Flashpoint have discovered a new campaign leveraging on a new variant of the Dridex Trojan that uses a new tactic to bypass the UAC (User Account Control). The Dridex Trojan […]
Pierluigi Paganini
January 29, 2017
A new round of the weekly SecurityAffairs newsletter arrived! The best news of the week with Security Affairs. First of all, let me inform you that at the #infosec16 SecurityAffairs was awarded as The Best European Personal Security Blog http://securityaffairs.co/wordpress/48202/breaking-news/securityaffairs-best-european-personal-security-blog.html Cyber crimes spike in England and Wales, says ONS The author of the NeverQuest banking Trojan arrested […]
Pierluigi Paganini
January 28, 2017
According to the release notes the latest version of WordPress 4.7.2 addresses three security, including XSS, SQL Injection flaws. The WordPress development team has pushed the WordPress 4.7.2 version that fixed three security issues, including a cross-site scripting and a SQL injection vulnerability. The new update comes just two weeks after WordPress released its previous version. Two […]
Pierluigi Paganini
January 28, 2017
Five members of an international cybercrime gang have been arrested as a result of an investigation coordinated by the Europol. A joint operation conducted by the Europol and the Asian law enforcement allowed to arrest five members of an international organised cybercrime gang focused on cyber attacks on ATMs, three of them have been convicted. […]
Pierluigi Paganini
January 24, 2017
Security researchers at the iSwatlab have conducted an analysis of a few methods for the creation of some malicious payloads or shellcodes. This work compares some infamous methods for the creation of malicious payloads or shellcodes. These payloads must be used to create a remote connection between the victim’s machine and the attacker’s machine that […]
Pierluigi Paganini
January 23, 2017
More than two years after the disclosure of the HeartBleed bug, 200,000 services are still affected. Systems susceptible to Heartbleed attacks are still too many, despite the flaw was discovered in 2014 nearly 200,000 systems are still affected. Shodan made a similar search in November 2015 when he found 238,000 results, the number dropped to 237,539 […]
