Breaking News

Pierluigi Paganini June 11, 2018
Former GCHQ chief Hannigan warns of Russia’s aggressive approach to the cyberspace

According to former GCHQ chief, the recently discovered VPNFilter botnet is the demonstration that Russia appears to be live-testing cyberattacks. Former GCHQ chief Robert Hannigan has warned that the availability of hacking tools in the main marketplaces is rapidly changing the threat landscape. Hannigan served as the director of the UK intelligence agency between November 2014 until January 2017. Threat actors have an […]

Pierluigi Paganini June 11, 2018
South Korean Cryptocurrency Exchange Coinrail hacked, hackers stole over $40M worth of ICO tokens

Cryptocurrency Exchange continues to be a privileged target for hackers, news of the day is the hack of the South Korean exchange Coinrail. The hack has happened during the weekend, on Sunday Coinrail announced the cyberheist. Attackers stole over $40M worth of ICO tokens that were maintained in the servers of the exchange. The company published […]

Pierluigi Paganini June 11, 2018
InvisiMole Spyware is a powerful malware that went undetected for at least five years

Malware researchers from ESET have spotted a new sophisticated piece of spyware, tracked as InvisiMole, used in targeted attacks in Russia and Ukraine in the last five years. Experts still haven’t attributed the malware to any threat actor, InvisiMole could be a nation-state malware developed for cyber espionage purpose or the result of a development […]

Pierluigi Paganini June 10, 2018
Search Engines in Russia cannot link to banned VPN services and Internet proxy services

Russia strengthens online censorship by announcing fines for search engines that link to VPN serviced banned in the country. Russian Government has approved a new bill to punish search engines that are not aligned with Moscow and that allows its users to find VPN services, and anonymization tools that allow circumventing the censorship. According to the amendments to the Code […]

Pierluigi Paganini June 10, 2018
Crooks used a KilllDisk wiper in an attack against Banco de Chile as diversion for a SWIFT hack

Crooks attempted to hack the SWIFT system at the Banco de Chile and used a disk-wiping malware as a diversion strategy. The intent of the attackers was to sabotage hundreds of computers at the Banco de Chile while they were attempting to breach the real target, the bank’s SWIFT money transferring system. Causing a broad outage, […]

Pierluigi Paganini June 10, 2018
Security Affairs newsletter Round 166 – News of the week

A new round of the weekly SecurityAffairs newsletter arrived! The best news of the week with Security Affairs. Let me inform you that my new book, “Digging in the Deep Web” is online Kindle Edition Paper Copy Once again thank you! Crooks included the code for CVE-2018-8174 IE Zero-Day in the RIG Exploit Kit Impervas […]

Pierluigi Paganini June 09, 2018
Chinese state-sponsored hackers steal 600GB U.S. Navy data

According to a report published by The Washington Post, Chinese hackers have stolen a huge trove of sensitive data from a U.S. Navy contractor. China-linked hackers have stolen a huge trove of sensitive data from a U.S. Navy contractor, the Washington Post reported Friday. The threat actors stole more than 614 gigabytes of data including secret plans to develop a […]

Pierluigi Paganini June 09, 2018
Cisco removed hardcoded credentials in WAAS software. Undocumented accounts are a frequent issue

Cisco has removed hardcoded credentials that were in Cisco Wide Area Application Services (WAAS), which is a software designed to optimize WAN traffic management. The hardcoded credentials (CVE-2018-0329) resides in the read-only SNMP community string in the configuration file of the SNMP daemon, they could be exploited by attackers to read any data that is accessible via […]

Pierluigi Paganini June 09, 2018
Trend Micro spotted a new variant of KillDisk wiper in Latin America

In May, experts at Trend Micro observed a new sample of KillDisk in Latin America, the malware infected the systems of a bank. A new piece of the KillDisk wiper was observed spotted earlier this year targeting financial organizations in Latin America, Trend Micro reports. The destructive malware was involved in the attacks against Ukraine’s […]

Pierluigi Paganini June 08, 2018
Cisco patches a critical vulnerability in Prime Collaboration Provisioning solution

Cisco fixed several flaws in the Prime Collaboration Provisioning product that allows customers to manage their communications services. Cisco released security patches to address severe vulnerabilities in Prime Collaboration Provisioning (PCP) solution, one of the issues was rated as critical. The vulnerabilities have been found by Cisco during internal security testing and there is no […]