Hacking

Pierluigi Paganini September 17, 2018
Google Android team found high severity flaw in Honeywell Android-based handheld computers

Experts at the Google Android team have discovered high severity privilege escalation vulnerability in some of Honeywell Android-based handheld computers. Security experts from the Google Android team have discovered a high severity privilege escalation vulnerability in some of Honeywell Android-based handheld computers that could be exploited by an attacker to gain elevated privileges. According to the vendor, Honeywell handheld computers […]

Pierluigi Paganini September 17, 2018
EOSBet Gambling application hacked, crooks stole $200,000 worth of EOS

The gambling application EOSBet was affected by a vulnerability in its smart contract system that has been exploited by attackers to steal $200,000 worth of EOS. The security breach was first reported by the member “thbourlove” of the EOSBet Reddit community that shared the code used to exploit the flaw. After seeing the exploit code, the EOSBet’s official Reddit account […]

Pierluigi Paganini September 16, 2018
Feedify cloud service architecture compromised by MageCart crime gang

MageCart cyber gang compromised the cloud service firm Feedify and stole payment card data from customers of hundreds of e-commerce sites. MageCart crime gang appears very active in this period, payment card data from customers of hundreds of e-commerce websites may have been stolen due to the compromise of the cloud service firm Feedify. Cloud service firm Feedify has […]

Pierluigi Paganini September 16, 2018
Security Affairs newsletter Round 180 – News of the week

A new round of the weekly SecurityAffairs newsletter arrived! The best news of the week with Security Affairs. Let me inform you that my new book, “Digging in the Deep Web” is online with a special deal 20% discount Kindle Edition Paper Copy Once again thank you! ·      Domestic Kitten – An Iranian surveillance operation […]

Pierluigi Paganini September 16, 2018
Researcher devised a new CSS & HTML attack that causes iPhone reboot or freezes Macs

The security researcher Sabri Haddouche from Wire devised a new CSS attack that causes iPhone reboot or freezes Macs. The security researcher Sabri Haddouche from Wire devised a new attack method that saturates Apple device’s resources and causing it crashes or system restarts when visiting a web page. The experts discovered that iOS restart and macOS freezes when the user visits a web page that […]

Pierluigi Paganini September 15, 2018
Experts disclose a Webroot SecureAnywhere macOS Kernel Level bug found months ago

Security experts disclosed a locally exploitable kernel-level vulnerability in the Webroot SecureAnywhere macOS security software. The Webroot SecureAnywhere macOS security software was affected by a locally exploitable kernel-level vulnerability. An attacker that exploit the flaw could execute malware at the “kernel level” on a vulnerable Mac system. The vulnerability, tracked as CVE-2018-16962, was patched months ago but publicly disclosed […]

Pierluigi Paganini September 15, 2018
Dutch expelled two Russian spies over hack plan on Swiss lab working on Skripal case

Dutch intelligence services arrested two alleged Russian spies that were planning to hack a Swiss laboratory where is ongoing an investigation on the poisoning of the spy Sergei Skripal. According to Dutch-based NRC newspaper and Swiss daily Tages-Anzeiger, Dutch intelligence services arrested two alleged Russian spies working for Russia’s GRU military intelligence service on suspicion of planning to […]

Pierluigi Paganini September 14, 2018
Operator at kayo.moe found a 42M Record Credential Stuffing Data ready to use

Operator at kayo.moe found a 42M Record  Credential Stuffing Data containing email addresses, plain text passwords, and partial credit card info. A huge archive containing email addresses, plain text passwords, and partial credit card data has been found on a free anonymous hosting service, Kayo.moe. The operator of the service shared the file with the popular expert Troy Hunt […]

Pierluigi Paganini September 14, 2018
Iran-Linked OilRig APT group targets high-ranking office in a Middle Eastern nation

Researchers from the Unit42 at Palo Alto Networks observed Iran-Linked OilRig APT group targeting high-ranking office in a Middle Eastern nation The Iran-linked APT group OilRig continues to very active, it continues to improve the weapons in its arsenal. The OilRig hacker group has been around since at least 2015, since then it targeted mainly organizations in the financial and government […]

Pierluigi Paganini September 13, 2018
Flaws in firmware expose almost any modern PC to Cold Boot Attacks

New Firmware Flaws Resurrect Cold Boot Attacks A team of security researchers demonstrated that the firmware running on nearly all modern computers is vulnerable to cold boot attacks. A team of experts from cybersecurity firm F-Secure has discovered security flaws affecting firmware in modern computers that could be exploited by hackers to carry out cold boot […]