HackDig : Dig high-quality web security articles for hacker

New Dutch legal framework could cause Mozilla to take off the Dutch CA from its trust list.

Mozilla would remove the Dutch CA, the CA of the Staat de Nederlanden, from its trust list due to the new national legal framework. The Dutch Information and Security Services Act will come into force in January 2018 and one of the main effects of the new legal framework is that country’s certificate authority, CA of the Staat de Nederlanden, could be
Publish At:2017-10-31 06:55 | Read:1556 | Comments:0 | Tags:Breaking News Digital ID Hacking Intelligence Certification

iPhone Apps you granted camera access can secretly take photos and record video

A serious privacy issue in iPhone that could be exploited by iOS app developers to silently take your photos and record your live video by enabling cameras. Do you use an iPhone? If yes, there is probably something that you need to know about it! The Austrian developer and Google engineer, Felix Krause, has discovered a serious privacy issue in Apple iPhone
Publish At:2017-10-31 06:55 | Read:856 | Comments:0 | Tags:Breaking News Digital ID Hacking iPhone mobile apps provacy

Investigation Underway at Heathrow Airport After USB Drive Containing Sensitive Security Documents Found on Sidewalk

Security personnel at Heathrow Airport have an exciting investigation underway after confidential security documentation was found on a sidewalk in West London. An unnamed man, on his way to the library, spotted a thumb drive on the sidewalk in Queen’s Park, West London. He pocketed the USB drive and continued on his way. He remembered the USB drive a
Publish At:2017-10-31 06:55 | Read:1907 | Comments:0 | Tags:Breaking News Security Terrorism Heathrow Airport security

Gaza Cybergang is back, it leverages new tools against new targets

Gaza Cybergang threat actor it is back again, this time it is targeting organizations in the Middle East and North Africa (MENA) region. Gaza Cybergang is a threat actor that is believed to be linked to the Palestinian organization Hamas, it is back again targeting organizations in the Middle East and North Africa (MENA) region. According to the experts from
Publish At:2017-10-31 06:55 | Read:1927 | Comments:0 | Tags:APT Breaking News Cyber warfare Hacking Malware

Vulnerabilities in Google Issue Tracker exposed details about unpatched flaws

A flaw in the Google Issue Tracker, also known as the “Buganizer,” might have exposed details about unpatched flaws listed in the database. A vulnerability in the Google Issue Tracker, also known as the “Buganizer,” might have exposed details about unpatched flaws listed in the database. The flaw was reported by the bug hunter Alex Birsan who was awarded mor
Publish At:2017-10-31 06:55 | Read:903 | Comments:0 | Tags:Breaking News Hacking Google Issue Tracker zero-Day

FireEye releases GoCrack, a free managed Password Cracking Tool

Early this week FireEye released a managed password cracking tool, dubbed GoCrack, that is able to execute tasks across multiple GPU servers. Early this week FireEye released a managed password cracking tool, dubbed GoCrack, that is able to execute tasks across multiple GPU servers. GoCrack is an open source tool developed by FireEye’s Innovation and C
Publish At:2017-10-31 06:55 | Read:672 | Comments:0 | Tags:Breaking News Hacking GoCrack password cracking tool

Security Affairs newsletter Round 134 – News of the week

A new round of the weekly SecurityAffairs newsletter arrived! The best news of the week with Security Affairs. Once again thank you! ·      A leaked document raises a doubt about NSA knew the #Krack attack since 2010 ·      APT28 group is rushing to exploit recent CVE-2017-11292 Flash 0-Day before users apply the patches ·      DHS and FBI warn of ong
Publish At:2017-10-29 22:20 | Read:824 | Comments:0 | Tags:Breaking News cyber security Newsletter Pierluigi Paganini S

IOActive disclosed 2 critical flaws in global satellite telecommunications Inmarsat’s SATCOM systems

Flaws in Stratos Global AmosConnect 8 PC-based SATCOM service impact thousands of customers worldwide running the newest version of the platform that is used in vessels. Security researchers at IOActive have disclosed critical security vulnerabilities in the maritime Stratos Global’s AmosConnect 8.4.0 satellite-based shipboard communication platform
Publish At:2017-10-29 22:20 | Read:1992 | Comments:0 | Tags:Breaking News Cyber Crime AmosConnect Hacking Maritime commu

Matrix Ransomware being distributed through malvertising

Security expert Jérôme Segura from Malwarebytes has spotted that Matrix Ransomware has risen again, it is now being distributed through malvertising. Malware researcher Jérôme Segura from Malwarebytes has discovered that Matrix Ransomware is now being distributed through malvertising campaign. #RIGEK drops Matrix ransomware. Payload https://t.co/PruaiZRuw9
Publish At:2017-10-29 22:20 | Read:1957 | Comments:0 | Tags:Breaking News Cyber Crime Malware Cybercrime Hacking malvert

Basetools underground hacking forum breached, hacker demands $50K ransom

Basetools underground hacking forum was breached, hackers demand a $50K ransom to avoid sharing stolen data, including admin identity, with law enforcement. A hacker that goes online with the Twitter handle mat (@0xScripts) has breached a popular underground hacking forum and he is threatening to share the stolen archive to the law enforcement if the adminis
Publish At:2017-10-29 03:55 | Read:2112 | Comments:0 | Tags:Breaking News Cyber Crime Data Breach Deep Web Basetools.ws

A new Ursnif Banking Trojan campaign targets Japan

Crooks continues to target Japanese users, now the hackers leverage the Ursnif banking Trojan, aka Gozi, to hit the country. According to researchers at IBM X-Force group, cyber criminals are delivering the infamous malware via spam campaigns that began last month. The Ursnif banking Trojan was the most active malware code in the financial sector in 2016 and
Publish At:2017-10-28 09:30 | Read:2027 | Comments:0 | Tags:Breaking News Cyber Crime Malware Cybercrime Japan spam Ursn

Documents encrypted by Bad Rabbit ransomware could be recovered without paying ransom

Files Encrypted by Bad Rabbit Recoverable Without Paying Ransom. Some victims of the recent Bad Rabbit attack may be able to recover their files encrypted by the ransomware without paying the ransom. The discovery was made by researchers at Kaspersky Lab that analyzed the encryption functionality implemented by the ransomware. Once the ransomware infects a
Publish At:2017-10-28 09:30 | Read:2470 | Comments:0 | Tags:Breaking News Cyber Crime Malware Bad Rabbit ransomware Cybe

Mysterious hack allows attackers stealing Windows login credentials without user interaction

Microsoft fixed a vulnerability that could allow hackers to steal Windows login credentials without any user interaction. Microsoft fixed a serious vulnerability that could allow attackers to steal Windows NTLM password hashes without any user interaction. The tech giant patched the issues only for recent versions Windows (Windows 10 and Server 2016), to tri
Publish At:2017-10-28 09:30 | Read:878 | Comments:0 | Tags:Breaking News Hacking NTLM password Windows Windows login cr

Digging the Middle East and North African cybercrime underground market

Security experts from Trend Micro have published an interesting report on the Middle East and North African cybercrime underground market, enjoy it! We explained several times that criminal communities adopt different tactics, techniques, and procedures (TTPs) depending on the location they operate. Experts at Trend Micro have highlighted the differences be
Publish At:2017-10-27 15:05 | Read:1639 | Comments:0 | Tags:Breaking News Cyber Crime Deep Web Reports credit card Hacki

Bad Rabbit Ransomware leverages the NSA Exploit for lateral movements

Malware researchers at Cisco Talos team discovered the Bad Rabbit Ransomware leverages EternalRomance to propagate in the network. New precious details emerge from the analysis of malware researchers at Cisco Talos and F-Secure who respectively discovered and confirmed the presence an NSA exploit in the Bad Rabbit ransomware. On October 24, hundreds of organ
Publish At:2017-10-27 15:05 | Read:1287 | Comments:0 | Tags:Breaking News Hacking Malware Bad Rabbit ransomware EternalR

Announce

Share high-quality web security related articles with you:)

Tools

Tag Cloud