HackDig : Dig high-quality web security articles for hacker

OpenSSL patches vulnerabilities discovered with Google OSS-Fuzz fuzzing service

OpenSSL patches two low and medium severity vulnerabilities that were discovered by using Google’s open source OSS-Fuzz fuzzing service. The medium severity vulnerability tracked as CVE-2017-3736 was addressed with the release of OpenSSL 1.1.0g and 1.0.2m. The flaw is a carry propagating bug in the x86_64 Montgomery squaring procedure, it affects processors
Publish At:2017-11-03 08:40 | Read:162 | Comments:0 | Tags:Breaking News Hacking Security Google OpenSSL. encryption os

Google launched Google Play Security Reward bug bounty program to protect apps in Play Store

Google has launched Google Play Security Reward, the bug bounty program that will pay $1,000 rewards for flaws in popular apps. Google has officially launched a bug bounty program for Android apps on Google Play Store, a measure that aims to improve the security of Android apps. The initiative, called Google Play Security Reward, will involve the security c
Publish At:2017-10-22 06:06 | Read:227 | Comments:0 | Tags:Breaking News Hacking Mobile bug bounty program Google Googl

Google’s Security Research Team Identifies and Fixes 7 Vulnerabilities in Dnsmasq

Google security experts disclosed seven distinct vulnerabilities in the Dnsmasq software package. Regardless of what you may think of Google as a company, it is difficult to criticize their prolific and in-depth security research. The latest example is their disclosure of seven distinct issues in the Dnsmasq software package. From the authors’ website,
Publish At:2017-10-03 09:45 | Read:270 | Comments:0 | Tags:Breaking News Hacking DHCP DNS Dnsmasq Google

The hacker Kuroi’SH defaced the official Google Brazil domain

A hacker using the online moniker of ‘Kuroi’SH’ defaced the Google Brazil domain on Tuesday afternoon, this isn’t the first high-profile target he breached. A hacker using the online moniker of ‘Kuroi’SH’ defaced the official Google Brazil domain on Tuesday afternoon. The defaced page displayed a message greeting his friends for
Publish At:2017-09-18 18:30 | Read:161 | Comments:0 | Tags:Breaking News Hacking Brazil defacement Google Huroi'SH

Chrome will label Resources delivered via FTP as “Not Secure”

Google continues the ongoing effort to communicate the transport security status of a given page labeling resources delivered via FTP as “Not secure” in Chrome, Last week, Google announced that future versions of Chrome will label resources delivered via the File Transfer Protocol (FTP) as “Not secure.” The security improvement will be implement
Publish At:2017-09-18 00:05 | Read:352 | Comments:0 | Tags:Breaking News Security Chrome encryption FTP Google HTTPS

Tech Firms Team Up to Take Down ‘WireX’ Android DDoS Botnet

A half dozen technology and security companies — some of them competitors — issued the exact same press release today. This unusual level of cross-industry collaboration caps a successful effort to dismantle ‘WireX,’ an extraordinary new crime machine comprising tens of thousands of hacked Android mobile devices that was used this mon
Publish At:2017-09-01 00:45 | Read:293 | Comments:0 | Tags:Other Akamai Allison Nixon Android malware Chad Seaman DDoS

Flash Player is Dead, Long Live Flash Player!

Adobe last week detailed plans to retire its Flash Player software, a cross-platform browser plugin so powerful and so packed with security holes that it has become the favorite target of malware developers. To help eradicate this ubiquitous liability, Adobe is enlisting the help of Apple, Facebook, Google, Microsoft and Mozilla. But don’t break out th
Publish At:2017-08-02 22:00 | Read:421 | Comments:0 | Tags:Other adobe apple Benjamin Smedberg exploit kits Facebook Fl

Google experts blocked a new targeted malware family, the Lipizzan spyware

Google has identified a new strain of Android malware, the Lipizzan spyware, that could be used as a powerful surveillance tool. Malware researchers at Google have spotted a new strain of Android spyware dubbed Lipizzan that could exfiltrate any kind of data from mobile devices and use them as surveillance tools. The Lipizzan spyware is a project developed
Publish At:2017-07-28 04:35 | Read:468 | Comments:0 | Tags:Breaking News Malware Mobile Android Google Lipizzan spyware

Lithuania to extradite the man responsible for 100M email scam against Google and Facebook

A Lithuanian court on Monday ruled the extradite of a man to the US to face charges of allegedly swindling $100M from Google and Facebook via email scam. A Lithuanian man who is allegedly responsible for a $100 million scam (roughly 87 million euros) from tech companies Google and Facebook will be extradited to the United States soon. The Lithuanian citizen 
Publish At:2017-07-18 14:45 | Read:390 | Comments:0 | Tags:Breaking News Cyber Crime BEC email scam Facebook Google Hac

Porn Spam Botnet Has Evil Twitter Twin

Last month KrebsOnSecurity published research into a large distributed network of apparently compromised systems being used to relay huge blasts of junk email promoting “online dating” programs — affiliate-driven schemes traditionally overrun with automated accounts posing as women. New research suggests that another bot-promoting botnet of
Publish At:2017-07-16 15:55 | Read:485 | Comments:0 | Tags:Other .tk AshleyMadison ASN19984 Deniro Marketing google par

BroadPwn potentially expose to hack millions of Android devices using Broadcom Wi-Fi Chip

Google warned of a serious flaw dubbed BroadPwn in some Broadcom Wi-Fi chipsets that potentially impacts millions of Android devices. Google published the monthly security update for Android devices, it warned of a serious flaw, dubbed BroadPWN, in some Broadcom Wi-Fi chipsets that potentially impacts millions of Android devices, as well as some iPhone mod
Publish At:2017-07-07 21:00 | Read:661 | Comments:0 | Tags:Breaking News Hacking Mobile Android BroadPWN Google mobile

The apparent difficulty of implementing email encryption in Gmail

It’s been almost three years since Google first announced its intention to add end-to-end encryption to Gmail. However, the free email service is yet to provide users with that feature. Despite the Internet giant insists that it was never a bluff, one of the company’s latest movements has reignited the criticism. Recently, a spokesperson from Goo
Publish At:2017-06-14 11:50 | Read:645 | Comments:0 | Tags:Security end-to-end encryption Gmail Google Privacy technolo

Malvertising campaign in Google Search redirected users to tech support scam

Malicious ads in Google search results for the US retail giant Target redirected users to a tech support scam. The malvertising campaign was first reported last week by a US user who posted his observations to a StackExchange thread and was then reported by Bleepingcomputer.com. Just querying Google for the term “target,” users were displayed on
Publish At:2017-06-06 09:55 | Read:487 | Comments:0 | Tags:Breaking News Cyber Crime Hacking Cybercrime Google malverti

Millions of Android devices potentially exposed to the Cloak and Dagger attack

Researchers at Georgia Institute of Technology have discovered a new attack against Android OS, dubbed ‘Cloak and Dagger,’ millions of devices at risk. Security researchers at Georgia Institute of Technology have discovered a new attack, dubbed ‘Cloak and Dagger’, that allows taking full control of Android devices. The  ‘Cloak a
Publish At:2017-05-26 09:05 | Read:561 | Comments:0 | Tags:Breaking News Hacking Android Cloak and Dagger Google

Emergency Fix for Windows Anti-Malware Flaw Leads May’s Patch Tuesday

Adobe and Microsoft both issued updates today to fix critical security vulnerabilities in their software. Microsoft actually released an emergency update on Monday just hours ahead of today’s regularly scheduled “Patch Tuesday” (the 2nd Tuesday of each month) to fix a dangerous flaw present in most of Microsoft’s anti-malware technolo
Publish At:2017-05-13 16:15 | Read:1120 | Comments:0 | Tags:Other Adobe Flash Player update Flash Player 25.0.0.171 goog

Announce

Share high-quality web security related articles with you:)

Tools

Tag Cloud