HackDig : Dig high-quality web security articles for hackers

OpenWRT Forum user data stolen in weekend data breach

The OpenWRT forum, a large community of enthusiasts of alternative, open-source operating systems for routers, announced a data breach.Forum administrators posted the announcement in a high-visibility area, explaining what happened and the risks to users stemming from exposing their data.Good password not enoughThe attack occurred on Saturday, around 04:00 (
Publish At:2021-01-18 18:07 | Read:130 | Comments:0 | Tags:Security

Microsoft Defender to enable full auto-remediation by default

Microsoft will enable fully automated threat remediation by default for Microsoft Defender for Endpoint customers who have opted into public previews starting next month, on February 16, 2021.This change of the default automation level from Semi to Full comes after finding that organizations using full automation by default were more successful in remed
Publish At:2021-01-18 18:07 | Read:120 | Comments:0 | Tags:Security Microsoft

IObit forums hacked in widespread DeroHE ransomware attack

Windows utility developer IObit was hacked over the weekend to perform a widespread attack to distribute the strange DeroHE ransomware to its forum members.IObit is a software developer known for Windows system optimization and anti-malware programs, such as Advanced SystemCare.Over the weekend, IObit forum members began receiving emails claiming to be from
Publish At:2021-01-18 18:07 | Read:75 | Comments:0 | Tags:Security ransomware hack

FBI warns of vishing attacks stealing corporate accounts

The Federal Bureau of Investigation (FBI) has issued a notification warning of ongoing vishing attacks attempting to steal corporate accounts and credentials for network access and privilege escalation from US and international-based employees.Vishing (also known as voice phishing) is a social engineering attack where attackers impersonat
Publish At:2021-01-18 14:13 | Read:99 | Comments:0 | Tags:Security FBI Vishing

Rob Joyce is the new NSA Cyber Director

The U.S. National Security Agency has appointed Rob Joyce as the agency’s new director of cybersecurity, who has long experience in US cybersecurity The National Security Agency (NSA) has appointed US cybersecurity official Rob Joyce as the new chief of the Cybersecurity Directorate. Joyce served as the NSA’s top representative in the UK since 2018,
Publish At:2021-01-18 13:54 | Read:192 | Comments:0 | Tags:Breaking News Security Cybersecurity Hacking hacking news in

Thales and TT Electronics Partner to Enable OT Cybersecurity Initiatives and Research

Multinational technology company Thales and global provider of engineered electronics for performance critical applications TT Electronics have announced a partnership to enable the development of operational technology cybersecurity initiatives and research.These programs will be delivered out of the National Digital Exploitation Center (NDEC) in South Wale
Publish At:2021-01-18 11:32 | Read:56 | Comments:0 | Tags: security cyber cybersecurity

Rob Joyce Appointed Director of Cybersecurity at NSA

The U.S. National Security Agency on Friday announced that Rob Joyce, an official who is highly respected in the cybersecurity community, has been named the agency’s new director of cybersecurity.Joyce, who according to his LinkedIn profile has been working for the Defense Department for the past 32 years, replaces Anne Neuberger, who has been appointed Depu
Publish At:2021-01-18 08:41 | Read:138 | Comments:0 | Tags:NEWS & INDUSTRY Management & Strategy security cyber

A week in security (January 11 – January 17)

Last week on Malwarebytes Labs, we looked at IoT problems, Microsoft’s Patch Tuesday, and how cybercriminals want access to your cloud services. We also explored how VPNs can protect your privacy, and asked if MSPs have picked the right PSA. Other cybersecurity news Hot phishing targets: Some brands are more appealing to scammers than others (Source: Z
Publish At:2021-01-18 08:30 | Read:106 | Comments:0 | Tags:A week in security a week in security exploits mac malware p

President Biden’s Peloton exercise equipment under scrutiny

President Joe Biden can’t bring his Peloton exercise equipment to the White House due to security reasons. According to a Popular Mechanics report, President Joe Biden is going to move to the White House and likely he will have to give up his Peloton exercise equipment for security reasons. Peloton exercise equipment’s popularity surged dur
Publish At:2021-01-17 22:18 | Read:156 | Comments:0 | Tags:Breaking News Internet of Things Security Hacking hacking ne

Windows 10 bug causes a BSOD crash when opening a certain path

A bug in Windows 10 causes the operating system to crash with a Blue Screen of Death simply by opening a certain path in a browser's address bar or using other Windows commands.Last week, BleepingComputer learned of two bugs disclosed on Twitter by a Windows security researcher that can be abused by attackers in various attacks.The first bug allows an unpriv
Publish At:2021-01-17 18:43 | Read:93 | Comments:0 | Tags:Security

Privacy-focused search engine DuckDuckGo grew by 62% in 2020

The privacy-focused search engine DuckDuckGo continues to grow rapidly as the company reached 102M daily search queries for the first time in January.DuckDuckGo is a search engine that builds its search index using its DuckDuckBot crawler, indexing WikiPedia, and through partners like Bing. The search engine does not use any data from Google.What makes
Publish At:2021-01-17 14:49 | Read:153 | Comments:0 | Tags:Technology Security Software

Security Affairs newsletter Round 297

A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs free for you in your email box. It is time to re-evaluate Cyber-defence solutionsNew Zealand central bank hit by a cyber attackTeamTNT botnet now steals Docker API and AWS credentialsConnecting the dots between SolarWinds and Russia-li
Publish At:2021-01-17 09:20 | Read:117 | Comments:0 | Tags:Breaking News Hacking information security news IT Informati

Pro-Trump 'Enemies of the People' doxing site is still active

Enemies of the People, the website inciting violence against U.S. officials who refused to support the President's claims to voter fraud, is still active and continues to expose personal details from more individuals.The main site went offline shortly before a report from the FBI emerged saying that Iranian actors were "almost certainly" behind the
Publish At:2021-01-16 19:19 | Read:145 | Comments:0 | Tags:Security

Massive stolen credit card shop Joker's Stash shuts down

The administrator of Joker's Stash, one of the longest-running marketplace for stolen credit cards, announced on Friday that they would permanently shut down the operation next month.They published messages on multiple cybercriminal forums to inform about the retirement, set for February 15, and that all servers and backups would be wiped.End of Joker's acti
Publish At:2021-01-16 15:25 | Read:67 | Comments:0 | Tags:Security

Siemens fixed tens of flaws in Siemens Digital Industries Software products

Siemens has addressed tens of vulnerabilities in Siemens Digital Industries Software products that can allow arbitrary code execution. Siemens has addressed 18 vulnerabilities affecting some products of Siemens Digital Industries Software which provides product lifecycle management (PLM) solutions. The vulnerabilities affect Siemens JT2Go, a 3D viewing
Publish At:2021-01-16 11:12 | Read:102 | Comments:0 | Tags:ICS-SCADA Security code execution Hacking hacking news infor

Tools

Tag Cloud