Hacking News

Powerful programs run daily by users of Linux and other flavors of Unix are riddled with holes that can be exploited by logged-in miscreants to gain root privileges, researchers at Qualys have warned. Essentially, it’s possible to pull off a “Stack Clash” attack in various tools and applications to hijack the whole system, a situation […]

It was on December 17 last year that Ukrenergo, the power utility company in Ukraine, was subject to a power shutdown that left hundreds of thousands of people in the country’s capital without electricity for more than an hour. Read more

In a filing to the US Securities and Exchange Commission, IT major Wipro has stated that while there is an increase in the number of connected devices and transition to the cloud, there are also rising incidents of cyber security breaches which could pose a serious risk to business affecting financial prospects of companies. Such attacks

The European Parliament has introduced amended regulation that would not only require end-to-end encryption when convenient but forbid backdoors that offer secured access to law enforcement. EU citizens need to know that the “confidentiality and safety” of their data is “guaranteed,” according to the design, and backdoors risk “weakening” that privacy. Read more  

All European Citizens should have the right to use end-to-end encryption in all forms of digital communications, in order to ensure online privacy and protection against unauthorised government surveillance, according to draft European Union legislation. Read more

President Donald Trump’s Cybersecurity Executive Order supports increased security of critical infrastructure, with a renewed focus on a risk-based approach to mitigating security threats. It provides the opportunity to reexamine what a risk-based approach to cyber security means and how current security technologies are being applied across government and private sectors. Read more

Google is ramping up its efforts in fighting extremist content online, detailing in a Sunday blog post four new efforts the company will be making to eliminate online terrorism. Online platforms like Facebook, Twitter, and Google have been used by extremists to share videos of executions, promote their ideology, and recruit new members. In the

Popular third-party chat platforms like Slack, Discord, and Telegram are just a few of the many new productivity applications that are being hijacked by cybercriminals to create command-and-control (C&C) communications infrastructures for their malware campaigns. As corporate security teams become more aware of traditional malware threats and deploy new security solutions to defend against them,

Ransomware — the malware that encrypts all your data and makes you pay a ransom in order to (hopefully) get it back — is the big new threat. So you need to know everything you can about it. Read more

Linux, BSD, Solaris and other open source systems are vulnerable to a local privilege escalation vulnerability known as Stack Clash that allows an attacker to execute code at root. Major Linux and open source distributors have made patches available today, and systems running Linux, OpenBSD, NetBSD, FreeBSD or Solaris on i386 or amd64 hardware should