Pierluigi Paganini
September 09, 2016
Another old and huge data breach was reported to LeakedSource, more than 33 million QIP records from 2011 have been compromised. Once again we are here to discuss a data breach, the victim is the Russian instant messaging service Quiet Internet Pager (QIP.ru.). According to the breach notification service LeakedSource, the leaked dump includes details of […]
Pierluigi Paganini
August 27, 2016
The Security Engineer April King from Mozilla has released the Observatory Tool, a free tool for the security assessment of websites. Mozilla has launched the ‘Observatory,’ a tool developed by the Security Engineer April King that allows administrators and developer to test their websites. “Observatory is a simple tool that allows site operators to quickly […]
Pierluigi Paganini
July 24, 2016
According to the US-based Akamai Technologies Distributed Denial Of Service (DDoS) attacks have a great level of sophistication today. The Morris Worm of 1989 caused massive damage and losses with its unintentionally caused Denial Of Service (DoS) attacks. Fast forward to today, attacks have sharpened teeth targeting almost every IT service, from telco to gaming firms. […]
Pierluigi Paganini
July 22, 2016
The US federal authorities asked a 3D printing lab to recreate a dead manâs fingers to unlock his smartphone … will it work? Do you remember the battle Apple vs FBI conducted to force the IT giant on unlocking the San Bernardino Shooter’s iPhone, well it has become a story of the past. The federal authorities […]
Pierluigi Paganini
June 03, 2016
GhostShell is back and leaked 36 million records from vulnerable networks to invite experts to pay attention to the new MEAN Stack. GhostShell is back and once again to warn us about the poor security posture of many services, this time, he announced to have leaked 36 million accounts/records. The hacker is inviting experts to pay attention to […]
Pierluigi Paganini
May 31, 2016
According to the security firm High-Tech Bridge many of the Alexa Top 10,000 websites are still vulnerable to the OpenSSL flaw CVE-2016-2107. The CVE-2016-2107 flaw affecting the open-source cryptographic library could be exploited to launch a man-in-the-middle attack leveraging on the âPadding Oracle Attackâ that can decrypt HTTPS traffic if the connection uses AES-CBC cipher and the server supports AES-NI. According […]
Pierluigi Paganini
May 20, 2016
Cisco issued a series of patches for the AsyncOS operating on CISCO WSA that fix multiple high severity Denial-of-Service (DoS) vulnerabilities. Cisco has released security patches for the AsyncOS operating system that run on the Web Security Appliance, also called CISCO WSA. The security updates fix multiple high severity Denial-of-Service (DoS) vulnerabilities. Below the details […]
Pierluigi Paganini
May 14, 2016
Google started sending out notifications to employees about a data breach that occurred at a third party company that operates as a benefits provider. We all make mistakes, sometime they are small, some other big. But what if the mistake is so important to indirectly affect one the biggest companies in the world? âOooops!â This […]
Pierluigi Paganini
May 09, 2016
Twitter has blocked the US intelligence agencies from accessing a service that allows the real-time analysis of the content posted online. According to The Wall Street Journal, that cited a senior US intelligence official, Twitter has blocked US intelligence agencies from accessing a service that analyzes the content posted online through the social media platform in […]
Pierluigi Paganini
May 07, 2016
There are numerous standards being followed currently in the IOT space to connect various devices but no single global framework is followed. As Chaos theory focuses on the initial condition of every event meaning that their future behavior is fully determined by their initial conditions, I feel that the IOT scenario is also currently at […]
