Hacking News

The attack is a variation of a WPAD/PAC attack. In Project Zero’s case, the WPAD/PAC attack focuses on chaining several vulnerabilities together relating to the PAC and a Microsoft JScript.dll file in order to gain remote command execution on a victim’s machine. Read more

Researchers identified 1,123 Lexmark printers traced back to businesses, universities and in some cases U.S. government offices. Adversaries with access to those printers can perform a number of different malicious activities ranging from adding a backdoor to capturing print jobs, taking a printer offline or printing junk content to physically disrupt a printer’s operation. Read

An organized group of cybercriminals is currently targeting database services in a new botnet build-up that’s being leveraged for cryptocurrency mining, among other more traditional botnet attack patterns. Read more

The 2017 Worst Passwords list, drawn from more than five million stolen and passwords found online and in plain text by researchers at password management firm SplashData, represents mostly credentials from users in North America and Western Europe. The list, now in its seventh year, doesn’t include credentials exposed in the Yahoo breach, nor from

Kaspersky researchers have turned up a strain of malware lurking in adult content and fake virus scanners, and it can run a victim’s Android mobe so hard they might suffer physical damage. Read more

Recent hacking events have stirred a controversy among the Canadian authorities. The past weekend, Ottawa police apprehended a teenage boy in a swatting case. The boy was accused to call in for emergency situations just to tease and catch the attention of the authority, and was said to be a part of 60 such cases.

A former Uber employee Ric Jacobs has filed various allegations against Uber. In his 37 paged letter called “Jacob’s Letter”, he has penned down every tidbit of wrongdoings that Uber (allegedly) has been up to. His first accusation is about Uber stealing data from rival companies to enhance their business. He pointed at Uber’s SSG

As a dedicated Linux user I consider that to be a good thing, simply because choice is always good, and it is always good to have several groups of talented and dedicated people working on something. But as a long-time user of Kali Linux (and BackTrack before that) I honestly believe that Kali is still

A ransomware attack occurs once every 40 seconds. In Q1 2017, six out of every 10 malware payloads delivered to victims contained ransomware, which has the capability to lock PCs, encrypt drives and files, and then demand a ransom — usually in cryptocurrency such as Bitcoin (BTC) — before unlocking and returning system functionality to

Popular consumer “smart” products, including Amazon Echo, Google Home, and Samsung’s Gear S3, are dangerously exposed to airborne cyberattacks conducted via Bluetooth. Read more