In one research report researchers have discovered Magecart attacks affecting 17,000 web domains including some in the Alexa Top 2000. You may remember that Magecart is what took down British Airways and likely caused them to be fined 183 million Pounds by the UK Information Commissioner’s Office. Magecart is not a single hacker or even […]
Continue reading → [DISPLAY_ACURAX_ICONS]This is What Spies Do It has come out that western (read one or more of the five eyes countries) inserted malware into Yandex (Russia’s equivalent of Google) in order to steal administrative credentials. The purpose was, apparently, to read emails of interest to the western spies. We need to understand that we do it […]
Continue reading → [DISPLAY_ACURAX_ICONS]There is a great piece on ZDNet today about a writer who’s phone number was stolen (not the phone, the number) using a SIM swap attack. In this case, the phone company was T-Mobile and all the hacker had to do is call them, given them a bit of the victim’s information (like secret stuff […]
Continue reading → [DISPLAY_ACURAX_ICONS]“Think of this – one man with total control of billions of people’s stolen data. All their secrets, their lives, their futures…” So begins a fake video using technology and videos of Mark Zuckerberg saying completely different things (see here). It even has a CBS News logo on it. CBS asked Facebook to take it […]
Continue reading → [DISPLAY_ACURAX_ICONS]SandboxEscaper Releases Yet Another Windows Zero-Day SandboxEscaper has it in for Microsoft. He or she has released over a half dozen zero-days including four of them just a couple of weeks ago. He or she has put Microsoft behind the power curve multiple times and now he or she is doing it again. This time […]
Continue reading → [DISPLAY_ACURAX_ICONS]I will start with the spoiler – it is not. Pentesters and hackers now have a new tool in their arsenal to defeat two factor authentication. The tool was just released at the security conference Hack-In-The-Box and is now available on Github. Hackers had to get creative in order to attack web sites that were […]
Continue reading → [DISPLAY_ACURAX_ICONS]