Hacking News

Telstra has launched its Sydney-based cybersecurity centre, with the telecommunications provider also announcing a new “secure internet initiative”. With the latest security operations centre (SOC) officially open for customers from Thursday, Telstra now has centres live in Sydney, Melbourne, and Canberra ahead of launching more across the globe, Telstra CEO Andy Penn told ZDNet. “There will […]

Zerodium has increased the financial reward for researchers who submit valid zero-day flaws with the introduction of a new pricing structure. The premium exploit seller is particularly keen to get its hands on unknown vulnerabilities which can be used to exploit popular messaging apps, such as iMessage, Telegram, WhatsApp, Signal, Facebook, Viber, and WeChat, alongside traditional SMS/MMS

A vicious strain of ransomware has been upgraded to enable it to steal browsing information and record keystrokes from infected PCs. Spora ransomware — one of the most common families of the file-locking malware — appears to be following in the footsteps of Cerber, which recently gained the ability to steal passwords and currency from Bitcoin wallets. Read

Microsoft has won its motion for a permanent injunction against the alleged Russian government hacking group known as Fancy Bear or APT28. Fancy Bear is thought to be responsible for the hacks on the Democratic National Committee (DNC) during the US elections last year. US intelligence believe the group hacked the DNC and leaked emails to WikiLeaks to

Yes, there actually is a $500 device for sale online that can crack iPhone 6 and 7 passcode. Apart from being almost cheap, it’s also very easy to use. Simply dial in settings in the desktop application, push them to the device, and then release the attack on a connected iPhone. Easy passcodes can be

A new email exploit, called Ropemaker has been discovered by security researchers at email and cloud security firm Mimecast, the exploit enables an attacker to modify the content in an email—after it’s been sent to the recipient and made it through the necessary filters. Ropemaker stands for Remotely Originated Post-delivery Email Manipulation Attacks Keeping Email Risky,

Signing in to Windows 10 with a Microsoft account allows you to easily sync settings and files between devices. It’s not mandatory (you can sign in using a local account or an Active Directory account on a corporate domain instead), but using a Microsoft account is convenient for anyone who regularly switches between Windows devices.

Fuze has patched a series of vulnerabilities which placed user data and networks at risk Researchers from Rapid7 disclosed the security flaws on Tuesday. In a security advisory, the company said the three issues at hand relate to access controls and authentication in the TPN Handset Portal, which is part of the Fuze platform. Read more

More than 500 Android apps, collectively downloaded over 100 million times from the Google Play store, could have been used to secretly distribute spyware to users, thanks to a malicious advertising SDK (software development kit). Mobile apps — especially free ones — commonly use advertising SDKs to deliver ads to their customers through existing advertising networks,

Researchers have demonstrated how easy it is to hack consumer and industrial robots to do everything from spy to injure in the hopes of waking up vendors that dismiss security in their product cycles. On Tuesday, the security team at IOActive revealed security flaws in robotic products developed by Universal Robots, the UR3, UR5, and