HackDig : Dig high-quality web security articles for hackers

Microsoft Partners with BitPay, Begins Accepting Cryptocurrency Payments

Microsoft is the latest major company to partner with bitcoin payment processor BitPay, allowing customers to purchase digital goods with the increasingly popular method of payment.In one of the largest sponsorships to date, the tech giant will now give customers the ability to purchase apps and games for Windows operating system, Windows phone and Xbox.The
Publish At:2014-12-12 01:55 | Read:3800 | Comments:0 | Tags:Top Security Stories Bitcoin cyrptocurrency microsoft

Infiltrating the ‘Dark Web’ – NCA and GCHQ to Root Out Digital Hiding Spots for Pedophiles

David Cameron has announced the creation of a specialist unit that will target users who view child abuse images online.The National Crime Agency and GCHQ will head the task force, whose objective it is to expose those who use “dark web” Internet networks to exploit children.The dark web refers to thousands of websites that are oftentimes only accessible via
Publish At:2014-12-11 12:25 | Read:5494 | Comments:0 | Tags:Top Security Stories Dark Web GCHQ NCA

The Pirate Bay Back Online After Swedish Police Raid

The Pirate Bay, a popular torrent website which shares copyrighted materials including movies and TV shows free of charge, temporarily went down Tuesday morning following a raid by Swedish police.The site remained offline for several hours after authorities seized hosting equipment in its server room based in Stockholm. The Pirate Bay has since appeared back
Publish At:2014-12-10 09:25 | Read:4007 | Comments:0 | Tags:Top Security Stories Hacked Infosec PirateBay

Linux-Based Turla Trojan May Have Been Used in Cyber-Espionage Campaign

Researchers have discovered a stealthy form of malware that hackers may have used in a massive campaign of cyber-espionage discovered earlier this year.Kaspersky Lab recently published its findings on the ‘Penguin’ Turla, which is the first known Turla Trojan sample that targets the Linux operating system.The piece of malware is unique because of its stealth
Publish At:2014-12-09 19:55 | Read:5160 | Comments:0 | Tags:Top Security Stories cyber espionage Linux Penguin Turla Tro

POODLE Redux: Now Affecting Some TLS Implementations

The POODLE vulnerability (CVE-2014-3566 and CVE-2014-8730) that we saw in October affecting SSL v3, has been found to also be present in some implementations of TLS.Although vendors of tools that were vulnerable to the flaw quickly fixed their systems to rely on TLS vs SSL v3, a problem still exists due to TLS padding being a subset of SSLv3’s so that
Publish At:2014-12-09 19:55 | Read:4172 | Comments:0 | Tags:Top Security Stories Vulnerability Management POODLE Redux S

Hacker Group ‘Lizard Squad’ Hits Xbox Live and PlayStation Network with DDoS Attacks

A hacker group used distributed denial of service (DDoS) attacks against two giants in the gaming industry, causing widespread service outages among users.First, Lizard Squad, the self-professed “king of DDoS,” took down Xbox Live early last week. The ensuing outage lasted all of Monday night, with Microsoft support announcing that service had been restored
Publish At:2014-12-08 16:55 | Read:3817 | Comments:0 | Tags:Top Security Stories DDoS Attacks Hacker Group PlayStation X

Researchers Discover More Than 30 Serious Security Issues in Google App Engine

A group of security researchers have announced their findings after encountering more than 30 serious security issues in Google App Engine (GAE) for Java, including a bug that could allow for a complete “sandbox escape.”As part of Google’s Cloud Platform – a platform-as-a-service (PaaS) for developing and hosting web applications, GAE is widely used by a var
Publish At:2014-12-08 16:55 | Read:3849 | Comments:0 | Tags:Top Security Stories Adam Gowdiak GAE Google App Engine Java

German Court Blocks Extradition of “World’s Number Two” Hacker to U.S.

Germany’s highest court has blocked the extradition of a man accused of having stolen over $60 million in a number of massive global card heists to the United States.Ercan Findikoglu, 33, was first arrested at the Frankfurt Airport in December 2013. Over the course of the past year, a lower court decided to permit Findikoglu’s extradition. However, Germany’s
Publish At:2014-12-05 21:25 | Read:2386 | Comments:0 | Tags:Top Security Stories German Court Hacker Infosec

Judge Ruling Favors Financial Institutions in Target Lawsuits, Paves Legal Roadmap For Cases To Follow

On Tuesday, a federal judge rejected Target Corporation’s attempt to dismiss multiple claims made by several banks in an effort to minimize their financial burdens caused by the retailer’s massive data breach in late 2013.Following the compromise of 40 million customers’ credit cards, a group of financial institutions filed lawsuits against Target, claiming
Publish At:2014-12-05 21:25 | Read:3346 | Comments:0 | Tags:Top Security Stories breach Target

Wiper Malware Behind Sony Hack Illustrates the Importance of Risk Management

The recent hack against Sony Pictures Entertainment offers companies a lesson on the value of protecting against data loss.Earlier this week, the FBI issued a “flash” alert on the malware behind a breach that thus far has not only leaked five unreleased motion pictures onto the Internet but also may have resulted in the theft of sensitive employee data, incl
Publish At:2014-12-04 18:25 | Read:4199 | Comments:0 | Tags:Top Security Stories malware Sony Wiper

LusyPOS: New Point-of-Sale Malware Puts Retailers At Risk

Retailers are urged to tread lightly after another piece of point-of-sale malware has been found and seen traded on the underground markets.The malicious software, known as LusyPOS, was submitted on Nov. 30 to VirusTotal – a free online virus, malware and URL scanner. The tool revealed the malware is now currently detected by 30 of its 55 AV engines.Security
Publish At:2014-12-04 18:25 | Read:4133 | Comments:0 | Tags:Top Security Stories Chewbacca Dexter LusyPOS malware point-

FBI Alerts U.S. Companies of Malware Following Disruptive Sony Breach

The Federal Bureau of Investigation (FBI) issued an alert to U.S. companies on Monday warning them of malicious software following the recent large-scale network disruption at Sony Pictures Entertainment.According to Reuters, the five-page confidential alert included details of how Sony’s attack was successfully carried out, as well as advice on how to respo
Publish At:2014-12-03 01:55 | Read:3589 | Comments:0 | Tags:Top Security Stories breach FBI malware Sony

Cybercriminal Group ‘FIN4’ Hacks Companies for Inside Information

For more than a year, a group of cybercriminals has been targeting more than 100 companies in an attempt to steal information that could affect global financial markets.FireEye, a security company, recently published a report on the group, which it has dubbed “FIN4.”The report explains how FIN4 has been using sophisticated spearphishing techniques to trick e
Publish At:2014-12-02 12:25 | Read:4501 | Comments:0 | Tags:Top Security Stories Cybercriminal FIN4 Wall Street Hack

Opinion: Premature Attribution of Sony Breach to North Korea Irresponsible

The media has been active the last few days regarding the Sony breach and publishing claims that North Korea may be connected to the breach. The source of the attribution is from a  post on Re/code, stating an anonymous source provided information that Sony and security analysts were “actively exploring the theory” that North Korea was involved in the attack
Publish At:2014-11-30 19:50 | Read:3718 | Comments:0 | Tags:Top Security Stories Data Breaches Network Security

Security Breach Hits Banks in Virgin Islands

Several banks in the U.S. and British Virgin Islands have discovered a security breach in their customers’ accounts.Scotiabank, Banco Popular, and FirstBank have not reported how many of their cardholders have been affected by the incident. However, estimates suggest that as many as 10,000 FirstBank customers’ card numbers have already been compromised.First
Publish At:2014-11-28 13:45 | Read:6463 | Comments:0 | Tags:Top Security Stories banks Fraud security breach


Tag Cloud