HackDig : Dig high-quality web security articles for hacker

An increase of sophisticated phishing attacks in Sweden

Whilst sitting and working in the South African office I receive an email from my Swedish ISP. I quickly look at it and there is something that doesn’t add up. The email states that I need to pay my invoice, but I never receive electronic invoices from this company. Like everyone else I receive a lot of spam and phishing emails, but this one is differ
Publish At:2016-07-06 13:35 | Read:1838 | Comments:0 | Tags:Blog Incidents Phishing Scam Spam Letters

Chinese Gambling Company Was Target of a Nine-Vector 470 Gbps DDoS Attack

On June 14, a Chinese gambling company was unlucky enough to be at the end of a complex multi-vector DDoS attack that blasted over 470 gigabits per second (Gbps) and over 110 million packets per second (Mpps) at its servers.The attack came after the company had already faced multiple 250+ Gbps attacks in the previous days. The good news is that this 470 Gbps
Publish At:2016-06-30 21:00 | Read:2004 | Comments:0 | Tags:Incidents DDOS

Brexit Do-Over Petition Subject to an Automated Bot Attack

The UK Parliament's House of Commons Petitions Committee said it removed more than 77,000 fake signatures from a petition that asked the government to consider invalidating the first Brexit referendum and have a second one.The petition asked officials to implement a rule that, if the Remain or Leave vote tally is less than 60 percent based a turnout less
Publish At:2016-06-28 14:15 | Read:2396 | Comments:0 | Tags:Incidents

IRS Retires e-Filing PIN System After More Cyber-Attacks

The US Internal Revenue Service (IRS) announced it is retiring the e-Filing PIN system following a new wave of cyber-attacks after crooks previously abused the same system last February.In a statement on the IRS website, the agency said it was planning to eliminate the e-File PIN system later this year, but decided to expedite its decision after they've
Publish At:2016-06-27 01:45 | Read:1764 | Comments:0 | Tags:Incidents

Former IBM Engineer Charged with Stealing Source Code and Selling It to China

The US Department of Justice has updated charges against Xu Jiaqiang, 30, a former IBM employee arrested last year for attempting to sell the source code of one of the company's software applications.Xu worked for IBM from November 2010 to May 2014, where he occupied the position of system software developer and contributed to the company's General P
Publish At:2016-06-15 16:00 | Read:1418 | Comments:0 | Tags:Incidents

CVE-2016-4171 – Adobe Flash Zero-day used in targeted attacks

Earlier today, Adobe published the security advisory APSA16-03, which describes a critical vulnerability in Adobe Flash Player version 21.0.0.242 and earlier versions for Windows, Macintosh, Linux, and Chrome OS: A few of months ago, we deployed a new set of technologies into our products designed to identify and block zero day attacks. These technologies a
Publish At:2016-06-15 01:20 | Read:2325 | Comments:0 | Tags:Blog Incidents News Research

TeamViewer Servers Go Down as Users Complain on Reddit About Getting Hacked

Something is happening with TeamViewers servers at the moment, and all clues point to a massive breach that has led to many users going on Reddit and complaining about having their computers hacked, some even reporting seeing new purchases in their PayPal accounts.The problems started around noon today when users weren't able to connect to the TeamViewer
Publish At:2016-06-01 22:35 | Read:1491 | Comments:0 | Tags:Incidents

Freezer Paper around Free Meat

BeEF Wrapped Up and Delivered in 2016 In late February 2016, a University website in Iran stood out for thoroughly vetting its current and potential students and staff. The University’s web site served repackaged content from the Browser Exploitation Framework (BeEF) with embedded JavaScript content maintaining the potential to hook visitors’ web
Publish At:2016-04-27 08:25 | Read:1870 | Comments:0 | Tags:Blog Incidents Research Software APT Cyber espionage Cybercr

New Record Set for Layer 7 DDoS Attacks by Nitol Botnet

Imperva's security team reports on a gigantic DDoS Layer 7 attack that broke previous records and funneled traffic of almost 8.7 Gbps towards its target.While 8.7 Gbps is hardly a number that impresses when it comes to classic network-level packet flood DDoS attacks, which can easily go over 100 Gbps and can sometimes peak at around 500 Gbps, Layer 7 DDo
Publish At:2016-04-07 00:05 | Read:2861 | Comments:0 | Tags:Incidents DDOS

Hardware-Based Keyloggers Found in the Library of a Canadian University

Administrators at the Concordia University in Montreal, Canada, discovered hardware-based keyloggers on a few terminals at two of their libraries.The devices were found on express workstations located on LB2 in the Webster Library and on express workstations located in the Vanier Library on VL1.University staff discovered the incident when they moved the exp
Publish At:2016-03-28 21:55 | Read:2422 | Comments:0 | Tags:Incidents

Operation Blockbuster revealed

Kaspersky Lab has joined industry alliance driven by Novetta to announce Operation Blockbuster. Just like the previous Operation SMN, this alliance brings together key players in the IT security industry, working together in an effort to disrupt and neutralize multiple cyberespionage campaigns that have been active for several years. Some of the targets of t
Publish At:2016-02-24 20:10 | Read:4476 | Comments:0 | Tags:Blog Featured Incidents APT Cyber espionage Cybercrime Destr

Beware of Backdoored Linux Mint ISOs

Background Yesterday a blog post on “The Linux Mint Blog” caught our attention. Apparently criminals managed to compromise a vulnerable instance of WordPress which the project used to run their website. The attackers modified download links pointing to backdoored ISO files of Linux Mint 17.3 Cinnamon edition. This “should only impact people
Publish At:2016-02-22 13:55 | Read:2500 | Comments:0 | Tags:Blog Incidents Backdoor Botnets Linux Website Hacks

Linux Mint Website Hack: A Timeline of Events

Last night, the Linux Mint team announced that someone had hacked their servers and started pointing user downloads to malicious ISO images for the Linux Mint 17.3 Cinnamon edition. Our Linux editor already covered the initial details of the attack, which we recommend reading before going forward with this article.Since then, in the last ten hours, the Linux
Publish At:2016-02-21 16:15 | Read:1745 | Comments:0 | Tags:Incidents

Phone Hacking Group Is Selling Fake Bomb Threats for Bitcoin

French police have arrested Vincent L., 18, from Paris, for failing to cooperate with authorities in an investigation related to a series of fake bomb threats that took place in France, but also in other countries such as Australia, the UK, and the US, LeMonde reports.Vincent L. is the owner of the Darkness.su website, which provides anonymous XMPP services
Publish At:2016-02-15 15:30 | Read:2740 | Comments:0 | Tags:Incidents

Cyber-Scammers Steal €50 Million from Austrian Airplane Manufacturer

FACC Operations GmbH, an Austrian company that produces various airplane parts for companies like Airbus and Boeing, has announced a cyber-incident during which cyber-fraudsters managed to steal around €50 million from their bank accounts.The company published a note about the incident on January 19, saying it was "a victim of a crime act using com
Publish At:2016-01-21 18:45 | Read:1102 | Comments:0 | Tags:Incidents

Announce

Share high-quality web security related articles with you:)

Tools

Tag Cloud