HackDig : Dig high-quality web security articles for hackers

Meet Jigsaw, the ransomware that taunts victims and offers live support

Further ReadingNew and improved CryptXXX ransomware rakes in $45,000 in 3 weeksLatest version fixes crypto flaws that allowed victims to recover data for free.The crypto ransomware racket is a booming business that generates lots of revenue, so it only makes sense that the scourge is growing. And with new titles entering the market on almost a weekly basis,
Publish At:2016-06-29 09:35 | Read:4505 | Comments:0 | Tags:Law & Disorder Risk Assessment Technology Lab crypto ransomw

High-severity bugs in 25 Symantec/Norton products imperil millions

Much of the product line from security firm Symantec contains a raft of vulnerabilities that expose millions of consumers, small businesses, and large organizations to self-replicating attacks that take complete control of their computers, a researcher warned Tuesday."These vulnerabilities are as bad as it gets," Tavis Ormandy, a researcher with Google's Pro
Publish At:2016-06-29 09:35 | Read:3744 | Comments:0 | Tags:Risk Assessment Technology Lab exploits malware Symantec vul

New and improved CryptXXX ransomware rakes in $45,000 in 3 weeks

Whoever said crime doesn't pay didn't know about the booming ransomware market. A case in point, the latest version of the scourge known as CryptXXX, which raked in more than $45,000 (£34,344) in less than three weeks.Further ReadingNo more get-out-of-jail-free card for CryptXXX ransomware victimsVictims have few options for recovering data other than paying
Publish At:2016-06-27 21:05 | Read:4666 | Comments:0 | Tags:Law & Disorder Risk Assessment Technology Lab bitcoin crypto

“Godless” apps, some found in Google Play, root 90% of Android phones

Researchers have detected a family of malicious apps, some that were available in Google Play, that contain malicious code capable of secretly rooting an estimated 90 percent of all Android phones.Further ReadingHow a few legitimate app developers threaten the entire Android userbaseThere's a dark side to Android root providers, even when they're fully discl
Publish At:2016-06-24 01:50 | Read:5832 | Comments:0 | Tags:Gear & Gadgets Law & Disorder Risk Assessment Technology Lab

Firm pays $950,000 penalty for using Wi-Fi signals to secretly track phone users

A mobile advertising company that tracked the locations of hundreds of millions of consumers without consent has agreed to pay $950,000 (£640,000) in civil penalties and implement a privacy program to settle charges that it violated federal law.The US Federal Trade Commission alleged in a complaint filed Wednesday that Singapore-based InMobi undermined phone
Publish At:2016-06-23 07:35 | Read:5127 | Comments:0 | Tags:Law & Disorder Risk Assessment Technology Lab federal trade

Bitcoin rival Ethereum fights for its survival after $50 million heist

Imagine a $50 million diamond heist that isn't investigated by any police body, and more than four days later, the broken vault that made the whole thing possible remains unfixed and suffers follow-on attacks by a group of marauding copycats. In essence, that's what's happening to an elite group of investors holding Bitcoin rival Ethereum, and the events thr
Publish At:2016-06-21 19:05 | Read:4518 | Comments:0 | Tags:Law & Disorder Risk Assessment Technology Lab bitcoin crypto

“Guccifer” leak of DNC Trump research has a Russian’s fingerprints on it

We still don't know who he is or whether he works for the Russian government, but one thing is for sure: Guccifer 2.0—the nom de guerre of the person claiming he hacked the Democratic National Committee and published hundreds of pages that appeared to prove it—left behind fingerprints implicating a Russian-speaking person with a nostalgia for the country's l
Publish At:2016-06-17 05:35 | Read:4888 | Comments:0 | Tags:Law & Disorder Risk Assessment Technology Lab democratic nat

GitHub attacker launched massive login campaign using stolen passwords

On June 14, someone using what appears to have been a list of e-mail addresses and passwords obtained from the breach of "other online services" made a massive number of login attempts to GitHub's repository service. A review of logins by GitHub's administrators found that the attacker had gained access to a number of accounts, according to a blog post by Sh
Publish At:2016-06-17 05:35 | Read:4993 | Comments:0 | Tags:Risk Assessment Technology Lab GitHub password leak

Lone wolf claims responsibility for DNC hack, dumps purported Trump smear file

In an intriguing follow-up to Tuesday's report that Russian hackers gained access to Democratic National Committee servers, an anonymous blogger has claimed he alone was responsible for the breach and backed up the claim by publishing what purport to be authentic DNC documents taken during the online heist.Further ReadingHackers invade Dems’ servers, steal e
Publish At:2016-06-16 11:20 | Read:4950 | Comments:0 | Tags:Law & Disorder Risk Assessment Technology Lab Crowdstrike de

For sale: 70k hacked government and corporate servers—for as little as $6 apiece

Underscoring the flourishing world of for-profit hacking, researchers have uncovered a thriving marketplace that sells access to more than 70,000 previously compromised servers, in some cases for as little as $6 apiece.As of last month, the xDedic trading platform catalogued 70,624 servers, many belonging to government agencies or corporations from 173 count
Publish At:2016-06-15 17:05 | Read:5397 | Comments:0 | Tags:Law & Disorder Risk Assessment Technology Lab exploits hacki

Goodbye Obamaberry, hello Obamadroid

The S4 is currently the only device supported under DISA's DOD Mobility Classified Capability-Secret (DMCC-S) program. In 2014, a number of Samsung devices were the first to win approval from the National Security Agency under its National Information Assurance Partnership (NIAP) Commercial Solutions for Classified (CSfC) program—largely because of Samsung's
Publish At:2016-06-14 22:50 | Read:3958 | Comments:0 | Tags:Risk Assessment Technology Lab Barack Obama clinton e-mail s

Hackers invade Dems’ servers, steal entire Trump opposition file

A hack on the Democratic National Committee has given attackers access to a massive trove of data, including all opposition research into presidential candidate Donald Trump and almost a year's worth of private e-mail and chat messages, according to a published report.In an article published Wednesday, The Washington Post reported that researchers with Crowd
Publish At:2016-06-14 22:50 | Read:4245 | Comments:0 | Tags:Law & Disorder Risk Assessment Technology Lab data breach de

Critical Adobe Flash bug under active attack currently has no patch

Attackers are exploiting a critical vulnerability in Adobe's widely used Flash Player, and Adobe says it won't have a patch ready until later this week.The active zero-day exploit works against the most recent Flash version and was detected earlier this month by researchers from antivirus provider Kaspersky Lab, according to a blog post published
Publish At:2016-06-14 22:50 | Read:4791 | Comments:0 | Tags:Risk Assessment Technology Lab Adobe exploits flash malware

More corporate shared folders in cloud filled with malware, research finds

Internet file sharing has long been a prime route for malware to spread. The situation is one of the reasons (aside from the exposure of proprietary data) that many companies restrict the use of cloud file sharing to corporate-approved systems. But it turns out that those enterprise cloud folders are just as bad. As more companies sanction the use of cloud a
Publish At:2016-06-09 15:05 | Read:3230 | Comments:0 | Tags:Risk Assessment Technology Lab cloud file sharing malware Cl

Be wary of claims that 32 million Twitter passwords are circulating online

The jury is still out, but at this early stage, there's good reason to doubt the legitimacy of claims that more than 32 million Twitter passwords are circulating online.The purported dump went live on Wednesday night on LeakedSource, a site that bills itself as a breach notification service. The post claimed that the 32.88 million Twitter credentials contain
Publish At:2016-06-09 15:05 | Read:3871 | Comments:0 | Tags:Risk Assessment Technology Lab Data breaches passwords Twitt


Tag Cloud