HackDig : Dig high-quality web security articles for hackers

Rampant Kitten ‘s arsenal includes Android malware that bypasses 2FA

Security researchers discovered Android malware capable of bypassing 2FA that was developed by an Iran-linked group dubbed Rampant Kitten Security researchers from Check Point discovered an Android malware, developed by an Iran-linked group dubbed Rampant Kitten, that is able to bypass 2FA. Rampant Kitten has been active at least since 2014 and was inv
Publish At:2020-09-18 16:30 | Read:114 | Comments:0 | Tags:Breaking News Hacking Malware Mobile 2FA Android information

Great news, now you can protect your Zoom account with 2FA

Zoom has implemented two-factor authentication (2FA) to protect all user accounts against security breaches and other cyber attacks. Zoom has announced finally implemented the two-factor authentication (2FA) to protect all user accounts from unauthorized accesses. This is a great news due to the spike in the popularity of the communication software dur
Publish At:2020-09-11 11:00 | Read:132 | Comments:0 | Tags:Breaking News Security 2FA authentication Hacking Identity T

Report: Pandemic caused significant shift in buyer appetite in the dark web

Last year, credentials for PayPal, Facebook, and Airbnb were among the top goods on high demand in the dark web, aka the Internet’s underground market. But due to the COVID-19 outbreak, with most of the worldwide population sheltering, working, and studying indoors, many facets of life have made a full 180-degree turn—including the criminal world.
Publish At:2020-09-10 19:18 | Read:172 | Comments:0 | Tags:Cybercrime 2fa airbnb Cash App covid-19 Dark Web Dark Web Ma

US tax service says, “2FA is a must!”

byPaul DucklinThe Beatles famously sang about The Taxman back in 1966, when Britain had much higher taxes on the rich than it does now: Let me tell you how it will be There's one for you, nineteen for me 'Cause I'm the taxman, yeah, I'm the taxman Should five per cent appear too small Be thankful I don't take it all 'Cause I'm the tax
Publish At:2020-07-29 13:37 | Read:225 | Comments:0 | Tags:2-factor Authentication 2FA IRS refund fraud scams tax scams

Coordinated Twitter attack rakes in 100 grand

“I’m feeling generous because of Covid-19. I’ll double any BTC payment sent to my BTC address for the next hour. Good luck, and stay safe out there!” This and similar Tweets asking readers to send US$1,000 to a Bitcoin address with the promise of a double return payment went out yesterday. Too good to be true? Once again,
Publish At:2020-07-16 14:35 | Read:319 | Comments:0 | Tags:Social engineering 2fa bitcoin Social Engineering tweets twi

What to do when you receive an extortion email

In the last few weeks, there has been an upswing in people receiving threatening, extortion email messages, demanding payment to avoid release of sensitive information. Most of the time, these emails are what we call “sextortion” emails, as they claim that malware on your computer has captured embarrassing photos of you through the webcam, but th
Publish At:2020-05-03 14:39 | Read:606 | Comments:0 | Tags:Malwarebytes news 2fa Bitcoin sextortion extortion online ex

Europol busts up two SIM-swapping hacking rings

byLisa VaasAfter months-long, cross-border investigations, Europol announced on Friday that it’s arrested more than two dozen people suspected of draining bank accounts by hijacking victims’ phone numbers via SIM-swap fraud.Following a ramp-up in SIM-jacking over recent months, police across Europe have been gearing up to dismantle criminal netwo
Publish At:2020-03-17 07:39 | Read:772 | Comments:0 | Tags:2-factor Authentication Law & order Malware Security threats

99% of compromised Microsoft enterprise accounts lack MFA

byJohn E DunnCybercriminals compromise 0.5% of all Microsoft enterprise accounts every month because too few customers are using multi-factor authentication (MFA), the company has revealed.In a presentation uploaded to YouTube from the recent RSA Security Conference, director of Identity Security Alex Weinert said 1.2 million accounts were compromised in Jan
Publish At:2020-03-09 08:17 | Read:691 | Comments:0 | Tags:2-factor Authentication Microsoft Privacy Security threats W

Boots yanks loyalty card payouts after 150K accounts get stuffed

byLisa VaasBoots, a UK pharmacy chain, has suspended payments on the loyalty cards of 14.4 million active customers after its security team spotted “unusual” activity on a number of Boots Advantage Card accounts.It wasn’t hacked, the company said in a statement, and this isn’t what you’d classify as a breach. Intruders didn’t get into
Publish At:2020-03-06 08:12 | Read:728 | Comments:0 | Tags:2-factor Authentication Security threats 2FA Advantage Card

Ring makes 2FA mandatory to keep hackers out of your doorbell account

byLisa VaasLeery of losing microseconds of your life by using two-factor authentication (2FA) to keep your stuff safe from hackers?Alas for you, but hurray for security. Bit by bit, the Internet of Things (IoT) is getting a wee bit more secure: last week, Google announced that it would soon begin forcing users of its Nest gadgets to use 2FA, and this week, s
Publish At:2020-02-20 07:51 | Read:837 | Comments:0 | Tags:2-factor Authentication Amazon IoT Security threats 2FA cred

Disney+ security and service issues: Here’s what we know so far

The long wait is over. Disney+, the new video-streaming service to rival Netflix and Amazon Prime, debuted last week to much fanfare, racking up 10 million subscribers within a single day of launch. Unfortunately, it wasn’t the kind of splash the majority of users predicted, as they were met with connection and performance issues out the gate—soon to be f
Publish At:2019-11-20 16:50 | Read:1614 | Comments:0 | Tags:Hacking 2fa account compromise amazon prime Disney Plus Disn

When can we get rid of passwords for good?

Or perhaps I should have asked, “Can we ever get rid of passwords for good?” The security world knows passwords are a problem. Products ship with default passwords that are never changed. People reuse old passwords or adopt easy-to-guess passwords that hackers easily defeat via brute force. Or users simply can’t keep up with having to re
Publish At:2019-10-16 23:20 | Read:1310 | Comments:0 | Tags:Awareness 2fa authentication mfa passwords

Watch out for this latest LinkedIn phish that’s ‘sent’ by a friend

byPaul DucklinThese days, crooks aren’t just after your banking passwords or your credit card numbers.Hacked social media accounts have real value in the cyberunderground, because they provide crooks with a way to reach out convincingly to your friends and family.If a random stranger tells you to click a link, install an app, or download a file, you
Publish At:2019-10-15 17:45 | Read:1041 | Comments:0 | Tags:LinkedIn Phishing 2FA account takeover linkedin phishing

Instagram phish poses as copyright infringement warning – don’t click!

byPaul DucklinLast month, we wrote about an Instagram scam that presented you with what looked like a two-factor authentication (2FA) code.This time, the crooks are tapping into a concern that many of us have – falling foul of copyright law.Lots of us innocently post and repost photos, GIFs, video clips and screenshots that we find amusing, informative
Publish At:2019-09-24 05:45 | Read:1341 | Comments:0 | Tags:Phishing 2FA Instagram phishing

APIs are 2FA Backdoors

By Daniel MiesslerTwo-factor Authentication (2FA) today is something like having a firewall in the year 2000: if you say you have it, it basically stops any further questioning.Unfortunately, when you have a powerful and mismanaged API, 2FA is about as effective as having a stateful firewall protecting a broken web application.It’s time we accept
Publish At:2017-06-14 16:40 | Read:4284 | Comments:0 | Tags:2FA api backdoor api key two-factor authentication

Tools

Tag Cloud