security

Pierluigi Paganini June 22, 2013
Raspberry Pi as physical backdoor to office networks

Network security engineer “Richee” explained how to use a Raspberry Pi to realize a physical backdoor to gain remote access to an office network. Network security engineer “Richee” published an interesting post on how to use a tiny Raspberry Pi computer to obtain physical access into a corporate network. I decided to publish this post because […]

Pierluigi Paganini June 21, 2013
US law enforcers suggest a kill switch for mobile and Apple adapts

US law enforcers suggest a kill switch for mobile devices to principal manufactures and Apple adapts. The idea of US law enforcers is the realization of a kill switch on mobile devices that would be used in case of theft. New York’s top prosecutor, State Attorney General Eric Schneiderman, and San Francisco District Attorney George Gascón promoted […]

Pierluigi Paganini June 02, 2013
iCloud two-factor protection, security flaw or deliberate choice?

iCloud could not properly protect the user’s data despite the implementation of a two-factor protection. Millions of users access to the iCloud to store their data such as photos, music and documents and Apple has tried recently to improve their security introducing in March a two factor authentication system … Do users really know the security mechanisms that […]

Pierluigi Paganini May 30, 2013
Nir Goldshlager Hacked PayPal Users Reports System

The Hacked PayPal Users Reports System has been hacked by popular researcher Nir Goldshlager exploiting a flaw in a third-party application. Hacked PayPal Users Reports System has been hacked by Nir Goldshlager, CEO at BreakSec, I desire to express my admiration for Nir that is giving various lessons to hacking community and to security teams of […]

Pierluigi Paganini May 20, 2013
WSIS Forum 2013 – Securing Cyberspace in a borderless world

“Securing Cyberspace in a borderless world: Vision 2015 and Beyond” is the title of a High Level Dialogue that was held during The World Summit on the Information Society Forum (WSIS) 2013. The World Summit on the Information Society Forum (WSIS) represents the world’s largest annual gathering of the ICT for development  community, the event is organized […]

Pierluigi Paganini May 19, 2013
Yahoo Japan suspects 22 million user IDs stolen

Yahoo Japan Corp is investigating on a possible data breach that may have exposed 22 million user IDs stolen during an unauthorized access to web portal. Yahoo Japan Corp is investigating on a possible data breach that exposed the user IDs of 22 million accounts, another shocking event that raise the necessity to improve security […]

Pierluigi Paganini May 15, 2013
Bloomberg data breach, online 10,000 private messages

Bloomberg was the victim of an accident data breach, financial data and news service posted online more than 10,000 private messages. Bloomberg was the victim of an accident data breach, a shocking news reported that financial data and news service posted online more than 10,000 private messages between traders and clients at some of the […]

Pierluigi Paganini May 13, 2013
The offensive approach to cybersecurity, motivations and risks

Cybersecurity goes to the offensive, law enforcement and private companies are discussing the possibility to adopt an offensive approach to defend their assets from the continuous cyber attacks. The press is getting used to news of cyber attacks against companies and government agencies, to date, the trend of the representatives of the cybersecurity of these entities […]

Pierluigi Paganini May 07, 2013
Hacking with new DIY Google Dorks based hacking tool

A new version of DIY Google Dorks based hacking tool has been released, it is an extremely useful tool for reconnaissance of targets. A Webroot blog post announced that a new version of DIY Google Dorks based hacking tool has been released in the wild and it could be used for mass website analysis, the […]

Pierluigi Paganini April 25, 2013
Critical vulnerability in Viber exposes mobile user to serious risks

Critical vulnerability in Viber allow bypass security mechanisms We have discussed in various occasions of security in mobile environments, mobile device are becoming the center of our digital life, they act as a bridge between our daily existence and our identity in cyberspace. Mobile follows our movements, knows our habits and maintains a history of our interaction with our contacts, it’s clear that  compromising them […]