Hacking News

It’s the second intake of startups for the GCHQ cyber-accelerator in Cheltenham, which saw the number of applications to be a part of the scheme double compared with its first incarnation. “There’s a bunch of problems out there and we want solutions to them. That’s what we hope we’ve got with the companies that we’ve […]

Michael Morell is one of the career types who’s broken with decades of practice to confront Trump. A veteran of nearly three decades in the CIA, Morell rose from within the ranks to become the agency’s longtime deputy director, twice serving as its acting leader before retiring during President Barack Obama’s second term. In the

Arnaboldi found bugs in the major programming languages JavaScript, Perl, PHP, Python and Ruby, and in all cases, he said the vulnerabilities could expose software written using those languages. To run his test, Arnaboldi created a differential fuzzer, XDiFF, which compares behaviour of different inputs, versions, implementations and operating system implementations of the same piece

Bangladesh’s finance minister has said he wants to “wipe out” the Philippines bank linked to a cyberattack that left the country’s central bank $81 million out of pocket. As reported by the Dharka Tribune, the Bangladesh government is considering lodging a court case against Rizal Bank, which was used to funnel the proceeds stolen from

Hewlett Packard has issued an emergency patch to resolve a driver-level keylogger discovered on hundreds of HP laptops. The bug was discovered by Michael Myng, also known as “ZwClose.” The security researcher was exploring the Synaptics Touchpad SynTP.sys keyboard driver and how laptop keyboards were backlit and stumbled across code which looked suspiciously like a

A botnet of Linux-based Internet of Things (IoT) devices is currently being used in a campaign attempting to hack websites, Doctor Web security researchers warn. Called Linux.ProxyM, the malware has been around since February of this year, and was previously used in spam campaigns. The Trojan was designed to launch a SOCKS proxy server on

Matthias Gliwka, a Stuttgart-based software developer, discovered the slip while working with the cloud version of Redmond’s ERP system. Writing at Medium, Gliwka said the TLS certificate was exposed in the Dynamics 365 sandbox environment, designed for user acceptance testing. Unlike the development and production servers, the sandbox gives admins RDP access, and “that’s where

Currently, when money is transferred it gets lodged in batches that go through a clearing house, with the big four banks in Australia running their own batch clearing practice; there is also a collection of second-tier clearing houses that perform transaction clearing. These transactions are held for a number of hours to allow batch analytics

Organizations know they need to get serious about threat intelligence, but it’s not always clear where to find credible information. While just about every security industry vendor website offers up information on the latest threats, some are better than others. Here, we ‘ll point out the sites that are the most informative and useful. Read