News
-
“This malware targets Facebook log-in details, infects over 45,000 in just days”A malware called “StressPaint” that targets Facebook user credentials has been discovered by Radware. Attackers use phishing emails to bait users into clicking on links to seemingly legitimate sites, where they then urge users to download a free software…
-
"FDA Rolls Out New Action Plan for Medical Device Cybersecurity"The Food and Drug Administration (FDA) recently released the Medical Device Action Plan. The objectives of the new action plan are to improve upon the safety of patients, further examine regulatory solutions, and strengthen cybersecurity for medical…
-
"Europol Shuts down Largest Cyberattack-For-Hire Website"Europol recently took down Webstresser.org, which operated as a DDoS-for-hire website. Webstresser was used by cybercriminals to launch distributed denial-of-service attacks for a monthly price. This article continues to discuss Webstresser in relation…
-
SoS Musings #13 - Uncle Sam Underdog in Cyber FightSoS Musings #13 Uncle Sam Underdog in Cyber Fight
-
“LinkedIn Autofill Flaw Lets Hackers Harvest Website Visitors' Personal Info'”A security researcher by the name of Jack Cable discovered a vulnerability contained by LinkedIn’s Autofill feature. The exploitation of this vulnerability could allow cybercriminals to collect personal information belonging to LinkedIn users. This…
-
"Researchers Find that Amazon Alexa Can be Hacked to Record Users"Security researchers from Checkmark have discovered that the Amazon Alexa voice assistant technology could be manipulated into recording and transcribing the verbal communications of a user. The performance of eavesdropping can be enabled through the…
-
"Hackers Designed a 'Master Key' to Unlock Millions of Hotel Room Doors"Security researchers from F-Secure discovered a critical flaw in the design of VingCard’s Vision software used for electronic keys, which would allow millions of hotel rooms to be hacked. An attack developed by researchers, Tomi Tuominen and Timo…
-
"Accelerating Detection of Zero-Day Vulnerabilities"DARPA’s Information Innovation Office (I20) recently announced the Computers and Humans Exploring Software Security (CHESS) program. The CHESS program aims to improve upon the speed and scale at which zero-day vulnerabilities are detected and fixed. This…
-
“Orangeworm Cyber Attack Group Targets Health Sector”Orangeworm is a hacking group discovered by Symantec to be targeting organizations linked to the healthcare industry. According to researchers, the group has been launching a custom backdoor called Trojan.Kwampirs on medical devices and machines used by…
-
"Isolated, Air-Gapped Cypto-Wallets Hacked"Researcher Dr. Mordechai Guri from Ben-Gurion University of the Negev demonstrated a way in which private keys could be siphoned from air-gapped cold wallets, which are offline cryptocurrency wallets used to store bitcoin. The demonstration performed by…
-
"'Gold Galleon' Hackers Target Shipping Industry"The group responsible for the launch of several extensive BEC attacks on the shipping industry has been identified by researchers from Dell SecureWorks Counter Threat Unit. The group called Gold Galleon, exploited the industry's inadequate security in…