HackDig : Dig high-quality web security articles for hackers

Severe flaws found in German e-Government OSCI 1.2 Communication Library

Security researchers at SEC-Consult found severe vulnerabilities in the German e-government Communication Library OSCI (Online Services Computer Interface). According to the experts at SEC-Consult, the German e-government system OSCI (Online Services Computer Interface) is open to padding oracle attacks and other vulnerabilities due to the use of an insecure
Publish At:2017-07-04 00:55 | Read:3817 | Comments:0 | Tags:Breaking News Hacking Germany hackng OSCI-Transport library

TROOPERS 2017 Day #2 Wrap-Up

This is my wrap-up for the 2nd day of “NGI” at TROOPERS. My first choice for today was “Authenticate like a boss” by Pete Herzog. This talk was less technical than expected but interesting. It focussed on a complex problem: Identification. It’s not only relevant for users but for anything (a file, an IP address, an application, …). Pete started by providing
Publish At:2017-03-24 02:00 | Read:4625 | Comments:0 | Tags:Event Security Conference Germany Troopers

TROOPERS 2017 Day #3 Wrap-Up

The third day is already over! Today the regular talks were scheduled split in three tracks: offensive, defensive and a specific one dedicated to SAP. The first slot at 09:00 was, as usual, a keynote. Enno Rey presented ten years of TROOPERS. What happened during all those editions? The main ideas behind TROOPERS have always been that everybody must learn so
Publish At:2017-03-24 02:00 | Read:5160 | Comments:0 | Tags:Event Security Conference Germany Troopers

TROOPERS 2017 Day #4 Wrap-Up

I’m just back from Heidelberg so here is the last wrap-up for the TROOPERS 2017 edition. This day was a little bit more difficult due to the fatigue and the social event of yesterday. That’s why the wrap-up will be shorter…  The second keynote was presented by Mara Tam: “Magical thinking … and how to thwart it”. Mara is an advisor to execut
Publish At:2017-03-24 02:00 | Read:4768 | Comments:0 | Tags:Event Security Conference Germany Troopers

TROOPERS 2017 Day #1 Wrap-Up

I’m in Heidelberg (Germany) for the 10th edition of the TROOPERS conference. The regular talks are scheduled on Wednesday and Thursday. The two first days are reserved for some trainings and a pre-conference event called “NGI” for “Next Generation Internet” focusing on two hot topics: IPv6 and IoT. As said on the website: “NGI aims to provide discussion on h
Publish At:2017-03-21 00:20 | Read:5831 | Comments:0 | Tags:Event Security Conference Germany Troopers

UK NCSC warns of cyber attacks powered by Russia against the political system

The UK National Cyber Security Center (NCSC) is warning of Russian political hacking capabilities, the risk of cyber attacks against the political system is high. The alert was raised by the UK National Cyber Security Center (NCSC) that is informing political parties in the UK to warn about “the potential for hostile action against the UK political sys
Publish At:2017-03-14 12:30 | Read:3619 | Comments:0 | Tags:Breaking News Cyber warfare Intelligence cyber espionage GCH

UK police arrested the alleged mastermind of the MIRAI attack on Deutsche Telekom

The prosecutor’s office in Cologne and the Federal Criminal Police Office have arrested the alleged mastermind of the MIRAI attack on Deutsche Telekom The agents at the UK National Crime Agency (NCA) have a man that is suspected to be involved with the massive attack on Deutsche Telekom that affected more than 900k routers in November 2016. The affecte
Publish At:2017-02-23 15:55 | Read:4734 | Comments:0 | Tags:Breaking News Cyber Crime Internet of Things Malware Cybercr

Don’t Blink! TrickBot Now Targets 10 German Savings Banks

IBM X-Force researchers following the development of the TrickBot Trojan noted that the malware is rapidly adding new targets and attack capabilities and has now officially advanced into Germany. The most recent additions to TrickBot’s configurations target 10 savings banks in the European country. At this time, TrickBot is configured to use serverside
Publish At:2016-12-01 11:20 | Read:7187 | Comments:0 | Tags:Banking & Financial Services Fraud Protection Threat Intelli

More than 900k routers of Deutsche Telekom German users went offline

Deutsche Telekom confirmed that more than 900,000 routers began to have serious problems connectivity problems due to a cyber attack. More than 900,000 routers belonging to Deutsche Telekom users in Germany were not able to connect to the Internet due to an alleged cyber-attack. The affected routers were used by the Deutsche Telekom customers also for fixed
Publish At:2016-11-29 05:10 | Read:5371 | Comments:0 | Tags:Breaking News Cyber Crime Hacking Internet of Things Cybercr

Facebook Ordered to Stop Storing Data on German WhatsApp Users

Facebook has received an administrative order requiring it to stop automatically collecting and storing data on German WhatsApp users.On 27 September, the Hamburg Commissioner for Data Protection and Freedom of Information aired its grievances in a press release (PDF).After Facebook first acquired WhatsApp, the statement explains, both companies made public
Publish At:2016-09-28 21:40 | Read:3996 | Comments:0 | Tags:Latest Security News data data protection Facebook Germany H

Germany Readies Cyber Unit to Fight Terrorism on the Web

Germany has a message for terrorists who use the Internet to carry out their aims: “Your number is up.”Thomas de MazièreOn 11 August, Germany’s federal interior minister Thomas de Mazière announced the creation of Zentrale Stelle für Informationstechnik im Sicherheitsbereich (ZITiS), or “Central Office for Information in Security Sphe
Publish At:2016-08-15 17:45 | Read:3770 | Comments:0 | Tags:Latest Security News AlphaBay Cyber darknet Germany ISIS ter

The dangerous interaction between Russian and Brazilian cyber criminal underground

Kaspersky has analyzed the interaction between the Russian and Brazilian criminal underground communities revealing a dangerous interaction. In the past weeks, we have analyzed the evolution of cyber criminal communities worldwide, focusing on illicit activities in the Deep Web. To simplify the approach we have considered the principal cyber criminal communi
Publish At:2016-04-01 21:45 | Read:5585 | Comments:0 | Tags:Breaking News Cyber Crime Hacking Malware Brazil C2C Canada

Nuclear Plants in Germany Are Vulnerable to Terrorism Threats

According to a recent report, Germany nuclear plants are vulnerable to terrorists and there needs to be some serious dealing with this problem. According to a recently released report, Germany is not adequately equipped to prevent terrorist attacks in its nuclear plants. According to the Deutsche Presse-Agentur (DPA) news agency, the report was presented by 
Publish At:2016-03-28 08:45 | Read:4953 | Comments:0 | Tags:Breaking News Intelligence Reports Bruxelles attacks Germany

Which are principal cybercriminal ecosystems in the Deep Web?

TrendMicro published an interesting analysis of the principal cyber criminal underground communities in the Deep Web worldwide. A new interesting report published by the experts at TrendMicro highlights the differences between the principal underground ecosystems worldwide. Thinking of a unique “global” underground ecosystem is an error, every community has
Publish At:2016-03-07 04:50 | Read:6620 | Comments:0 | Tags:Breaking News Cyber Crime Reports Brazil Canada China crimin

German authorities approve the use of home-made Federal Trojan

The German Interior Ministry has approved the use of a federal Trojan developed by the German Federal Criminal Police. The German Interior Ministry has approved the use a spyware developed by the German Federal Criminal Police, aka the ‘federal Trojan’ or Bundestrojaner, for the investigative purpose. “Soon the state could re-enter the comp
Publish At:2016-02-28 16:00 | Read:4232 | Comments:0 | Tags:Breaking News Hacking Laws and regulations Malware Chaos Com