SecurityAffairs

Pierluigi Paganini March 29, 2020
FIN7 hackers target enterprises with weaponized USB drives via USPS

The FIN7 APT group has been targeting businesses with malicious USB drives and Teddy Bears sent to the victims, the FBI warns. The FBI is warning of a new wave of attacks carried out by the FIN7 APT group that is sending to the victims devices acting as a keyboard (HID Emulator USB) when plugged […]

Pierluigi Paganini May 29, 2019
All Docker versions affected by an unpatched race condition issue

A race condition flaw that could be exploited by an attacker to read and write any file on the host system affects any versions of Docker.  Experts found a race condition vulnerability in any versions of Docker, the vulnerability could be exploited by an attacker to read and write any file on the host system. […]

Pierluigi Paganini May 29, 2019
TA505 is expanding its operations

An attack against an Italian organization lead the experts at Yoroi-Cybaze ZLab to shed the light on ongoing operations attributed to TA505. Introduction In the last few days, during monitoring activities, Yoroi CERT noticed a suspicious attack against an Italian organization. The malicious email contains a highly suspicious sample which triggered the ZLAB team to […]

Pierluigi Paganini May 27, 2019
Hacker breached Perceptics, a US maker of license plate readers

Perceptics, a maker of vehicle license plate scanning solutions used in the US, has been hacked, attackers stole data and offered for free on the dark web. Perceptics is a leader in license plate readers (LPRs), license plate recognition systems and vehicle identification products. The company was hacked and attackers stole data and offered business […]

Pierluigi Paganini January 29, 2019
Disable FaceTime, a bug lets you hear a person’s audio before he answers

A major vulnerability in the Apple FaceTime lets you hear the audio of the person you are calling … before they pick up the call. iPhone, iPad, or Mac users might disable FaceTime to avoid being spied through their devices. Experts warn that it is possible to call someone via FaceTime and listen via the […]

Pierluigi Paganini November 17, 2018
Protonmail hacked? …. No, it is a very strange scam attempt

A hacker going online by the moniker AmFearLiathMor is claiming to have hacked the most popular end-to-end encrypted email service ProtonMail. At the time it is not clear if the hacker belongs to a cyber crime gang, it claims to have stolen a “significant” amounts of data from the company. The ransom demand (archive.is link) was […]

Pierluigi Paganini October 21, 2018
Security Affairs newsletter Round 185 – News of the week

A new round of the weekly SecurityAffairs newsletter arrived! The best news of the week with Security Affairs. Let me inform you that my new book, “Digging in the Deep Web” is online with a special deal 20% discount Kindle Edition Paper Copy Once again thank you! ·      Ex-NASA contractor pleaded guilty for cyberstalking crimes […]

Pierluigi Paganini April 09, 2018
Vigilante hackers strike Russia and Iran Networks exploiting Cisco CVE-2018-0171 flaw

Last week, the hacking crew “JHT” launched a hacking campaign exploiting Cisco CVE-2018-0171 flaw against network infrastructure in Russia and Iran. Last week, the hacking crew “JHT” launched a hacking campaign against CISCO devices in Russian and Iranian networks. The hackers exploited the Cisco CVE-2018-0171 Smart Install to reset the routers to the startup-config and reboot […]

Pierluigi Paganini July 04, 2017
Hacker Interview Mubix “Rob” Fuller – Security Affairs

Today I have the pleasure to interview Mubix “Rob” Fuller (@mubix ) one of the most prominent experts in the hacking community. Rob has over 11 years of experience covering all facets of information security. He has been behind the lines helping to design, build, and defend the US Marine Corps, US Senate, and Pentagon networks […]

Pierluigi Paganini December 26, 2016
Hacker Interviews – R.I.U. crip (@cripthepoodle) – Security Affairs

@cripthepoodle was one of the members of the dreaded PoodleCorp hacker crew recently he targeted Steam platform, let’s meet him. You are a talented hacker that is very active online, could you tell me more about you. Could you tell me which his your technical background and when you started hacking? I started to get into […]