Items tagged with Hackers

Equifax may be now getting its public lashings for a cybersecurity breach that resulted in personal information of 143 million Americans being exposed to hackers, but it appears that the Securities and Exchange Commission (SEC) has a few skeletons in its closet as well. The regulatory agencies announced late last night that its EDGAR database was hacked last year. At the time, the SEC did not make any public disclosures regarding the hack, which took advantage of a vulnerability in the EDGAR test filing system. However, once it discovered the intrusion, it quickly patched it and went about its... Read more...
Gaming is meant to be fun, but it just can't be all of the time. That's because players of online games have to be constantly aware of looming threats. Yet another new case of an attack, involving a game called ROBLOX, highlights the fact that it's not just the game itself that is at risk sometimes, but the tools surrounding it. Despite the fact that ROBLOX mimics Minecraft in that its an open-world sandbox game, it actually came out years before Mojang released even an alpha. Today, the game enjoys an impressive 12 million monthly users, many of whom use the ultra-successful platform Discord to... Read more...
Election hacking is a real concern these days, and Microsoft recently helped cripple Russian hacking group called "Fancy Bear" after the group pulled off the DNC hack last year. A group of hackers at DEF CON 2017 had a bunch of voting machines to play with and they found some exploits that could allow potential tampering with the voting system. Word from the hackers looking for exploits is that it took less than 90 minutes for the first cracks on the "secure" voting hardware to turn up. According to participants in the so-called Voting Village, the security on the machines was low and... Read more...
Sometimes it feels as though nothing is safe from the prying eyes (and digital crowbars) of dedicated hackers. Single sign-on provider OneLogin has found this out the hard way, as its systems were breached this week, potentially exposing customer data."We detected unauthorized access to OneLogin data in our US data region," OneLogin disclosed in a blog posting this week. "We have since blocked this unauthorized access, reported the matter to law enforcement, and are working with an independent security firm to determine how the unauthorized access happened and verify the extent of the impact of... Read more...
Have the most recent Microsoft exploits been keeping you up at night? Microsoft recently remarked that almost all of the exploits have already been patched, while the remaining ones can not reproduced on supported platforms. On Friday, a hacking group referred to as the “Shadow Brokers” revealed a number of programs that could potentially be used to attack different versions of Windows operating systems. Microsoft maintains that the vast majority of these exploits have already been patched. “ETERNALCHAMPION”, a SMBv1 exploit, was patched by Windows updates CVE-2017-0146 & CVE-2017-0147. EnglishmanDentist”,... Read more...
The investigation regarding the 2014 Yahoo hack is finally getting somewhere. The United States Justice Department just announced the indictment of two members of the Russian intelligence agency FSB, and two hackers hired by the Russians. The spies managed to hack into 500 million Yahoo accounts. The charges against the four include hacking, wire fraud, trade secret theft and economic espionage. The United States currently does not have an extradition treaty with Russia, which will make bringing the criminals to justice difficult. The Justice Department also noted that people sometimes slip away... Read more...
My phone just pinged. Did someone just like the Instagram photo of my dog? Is my Chipotle to-go order finally ready? Nope, I was one of the lucky one billion users whose Yahoo account was infiltrated by hackers, my personal information potentially compromised. This past November law enforcement provided Yahoo with files that a third party claimed was Yahoo user data. Yahoo then hired an outside forensics team, and established that the data did in fact belong to their users. According to Yahoo, “Based on further analysis of this data by the forensic experts, we believe an unauthorized third party,... Read more...
900,000 Deutsche Telekom customers in Germany were hit with an internet outage beginning on Sunday, and IT analysts have concluded that the company was the victim of a hacker attack. The 900,000 affected customers make up roughly 4.5 percent of Deutsche Telekom’s 20 million fixed-line customers.It is believed that the hackers used malicious software known as Mirai. Mirai turns network devices into remotely-controlled “bots” that can be used to launch attacks and target other victims. Remote interfaces allow network technicians to fix customers' routers from far away, but are also susceptible to... Read more...
There’s a bit of bad blood between Microsoft and Google following news that the latter spilled the beans on a 0-day Windows kernel exploit. Google originally alerted Microsoft and Adobe to the vulnerability on October 21st, and went public with its findings just ten days later on November 1st. "We believe in coordinated vulnerability disclosure, and today’s disclosure by Google puts customers at potential risk," said a Microsoft spokesperson yesterday in a statement. "Windows is the only platform with a customer commitment to investigate reported security issues and proactively update impacted... Read more...
Maybe he’s the hero the United States “deserves, but not the one it needs right now”. It looks like the United States has its own hacking Dark Knight. American vigilante hacker “The Jester” gained unauthorized access to the Russian Ministry of Foreign Affairs website and left a very interesting message for the Russian government. This past Friday, the Jester hacked into MID.ru, the official website of the Russian Ministry of Foreign Affairs. He found a vulnerability in the website’s code and injected his own code into it. He inserted the shriek of the American civil alert sound (aka "The Emergency... Read more...
It seems like we have had to report on some major new hack or threat every week as of late. Black-Hat Hackers are becoming more sophisticated, while their wares are becoming more diverse and complicated. One of the latest pieces of malware, the nasty Rex Linux Trojan, packs in DDoS attacks, ransomware, and a Bitcoin miner. Stu Gorton, CEO and Co-Founder of Forkbombus Labs, disclosed a new kind of ransomware that targeted Drupal websites this past May in an interview with Softpedia. It was not particularly effective and could easily be defeated. This particular ransomware has evolved in... Read more...
MICROS, one of the largest point-of-sale payment systems in the world, has been hacked by a Russian organized cybercrime group with a history of hacking into banks and retailers. The full extent of the security breach is still being evaluated, but given the size and scope of MICROS, this could turn out to be another lucrative payday for the Russian cyber thieves.Oracle purchased MICROS in 2014. At the time, Oracle said its point-of-sale systems were being used at more than 330,000 cash registers around the world, including more than 200,000 in the food and beverage industry, over 100,000 deployed... Read more...
Some people take Grand Theft Auto V a little too seriously, either that or just live that sort of life for real. Houston police officers have just announced that they have arrested two men accused of stealing at least thirty Dodge and Jeep vehicles with a laptop computer and a simple software hack.  Michael Arce has been charged with with felon in possession of a weapon, possession with intent to deliver a controlled substance and unauthorized use of a motor vehicle. His partner in crime Jesse Zelaya has been charged with unauthorized use of a motor vehicle. The police have been watching them... Read more...
Surprise, surprise, Yahoo has been hacked AGAIN. This time, 200 million Yahoo accounts are supposedly being shopped around for 3 bitcoins, or roughly $1,800 USD. A hacker known as Peace has listed the alleged credentials of Yahoo users on The Real Deal marketplace. He had been trading the data privately, but decided to go public on the dark web. Peace is also supposedly responsible for selling recent dumps of MySpace and LinkedIn accounts. Yahoo has yet to confirm the security breach. The company stated, “We are aware of a claim...We are committed to protecting the security of our users’ information... Read more...
1 2 3 4 5 Next ... Last