Latest hacking information from the underworld
Scumbags could, once upon a time, buy a remote access trojan called Luminosity Link for about $40, and get a piece of malware that, when installed on victims’ PCs, would spy on their activities, disable security software, and install further malicious code. Read more
NSA code backported, crims cuffed, leaky AWS S3 buckets Read More »
Lenovo warned customers on Friday that two critical Broadcom vulnerabilities impacts 25 models of its popular ThinkPad brand. The vulnerabilities were first revealed in September and originally they were only reported to impact specific Broadcom chipsets used in Apple iPhones, Apple TV and Android devices. Read more
Lenovo Warns Critical WiFi Vulnerability Impacts ThinkPad Read More »
Cyber criminals can take complete control of a user’s system by utilizing a zero-day vulnerability in Adobe Flash Player. This seems to presently be an issue only in the Korean peninsula, but may spread to other places soon. Read more
Latest Vulnerability Found in Flash: Adobe To Release Patch Read More »
Security researchers from Forcepoint (US security firm) have discovered a new strain of malware called UDPoS that relies on a different method to steal credit/debit card data from point-of-sale (PoS) systems. Read more
Security researchers discovered POS (point-of-sale) malware Read More »
According to fail0verflow, there’s a defect in the boot ROM in Nvidia’s Tegra X1 system-on-a-chip. when your console begins, it reads and performs an execution a piece of code stored in a read-only memory(ROM) This code includes instructions about the booting process. Read more
Fail0verflow: Hackers ran Linux on Nintendo Switch Read More »
Victims of Cryakl ransomware are now able to get their files back without paying a ransom to cybercriminals, after the decryption key was released for free as part of the No More Ransom initiative. Read more
New free decryption key can save files locked with Cryakl Read More »
For a brief moment Thursday morning, a section of iOS 9’s source code was widely available on GitHub. A few hours later, Apple issued several DMCA notices and had the repositories removed from GitHub. As most of us know, however, once something is published on the internet, it’s nearly impossible to take it back. Read
Apple: Leaked source code doesn’t impact security of iOS Read More »
Updated Infosec bods say they have uncovered what’s thought to be the first case of a major industrial control system network infected with cryptocurrency-mining malware. Read more
Sewage plant ‘hacked’ to craft crypto-coins Read More »
Detailed personal information from thousands of insurance customers in Maryland–as well as login credentials for a massive national insurance claims database–was exposed due to an an open port on a NAS server. Read more
Insurance Customers’ Personal Data Exposed Read More »
Zerodium is offering $45,000 to hackers willing to privately report zero-day vulnerabilities in the Linux operating system. On Thursday, the private exploit acquisition program announced the new addition to its bounties on Twitter. Until 31 March, Zerodium is willing to offer increased payouts of up to $45,000 for local privilege escalation (LPE) exploits. Read more
Zerodium offers $45,000 for Linux zero-day vulnerabilities Read More »