HackDig : Dig high-quality web security articles for hacker

“TorWitness” Docker Container: Automated (Tor) Websites Screenshots

The idea of this Docker container came after reading the excellent Micah Hoffman’s blog post: Dark Web Report + TorGhost + EyeWitness == Goodness. Like Micah, I’m also receiving a daily file with new websites discovered on the (dark|deep) web (name it as you prefer). This service is provided by @hunchly Twitter account. Once a day, you get an XLS
Publish At:2017-10-25 15:50 | Read:2564 | Comments:0 | Tags:Docker Software Tor Website

KFC Urges Users to Change Passwords After Attack against Website

Kentucky Fried Chicken (KFC) has told members of its Colonel’s Club to change their passwords following an attack against its website.The fast food giant confirmed that the attack affected only Colonel’s Club users. The loyalty program allows its 1.2 million registered members to collect Chicken Stamps and exchange them for rewards like meals.KFC
Publish At:2016-12-13 17:55 | Read:4201 | Comments:0 | Tags:Latest Security News attack KFC password Website

Five Tell-Tale Signs of a Compromised Website

Everyone has done it at least once – entered the wrong URL when trying to visit a website. Maybe instead of “google.com” you fat-fingered “google.cm,” Google’s main search page for Cameroon. No big deal there, and we hear the scenery there is lovely.But sometimes a tiny mistake can result in big problems. Entering a URL that’s o
Publish At:2016-09-21 06:55 | Read:6093 | Comments:0 | Tags:Featured Articles Security Awareness data IT Security Privac

The official Dido website: “Cheap flower delivery”

We’ve noticed some oddities on singer Dido‘s website and thought we’d take a closer look. The news page has been silent since January, until the 6th of June rolled around and now we have two decidedly not-very-Dido updates about “cheap flower delivery”: The text reads as follows, complete with links to the flowers site and her
Publish At:2016-05-12 07:20 | Read:4401 | Comments:0 | Tags:Cybercrime Privacy dido music tumblr website

Blast from the Past: Blackhole Exploit Kit Resurfaces in Live Attacks

The year is 2015 and a threat actor is using the defunct Blackhole exploit kit in active drive-by download campaigns via compromised websites. We noticed Java and PDF exploits collected by our honeypot which we haven’t seen in ages. Looking closer at the structure of this attack, we were surprised when we realized this was the infamous Blackhole. Black
Publish At:2015-11-17 21:05 | Read:2934 | Comments:0 | Tags:Exploits drive-by downloads exploit exploit kit website

SSL Malvertising Campaign Continues

The actors behind the recent Yahoo! malvertising attack are still very much active and able to infect people who browse popular websites. We have been tracking this campaign and noticed that is has recently moved to a new ad network used by many top publishers. drudgereport.com 61.8M visits per month wunderground.com 49.9M visits per month findagrave.com 6M
Publish At:2015-08-13 20:55 | Read:2564 | Comments:0 | Tags:Malvertising exploit malvertising website

Of Counterfeit Sites and Denali Jackets

At hpHosts, Malwarebytes’s trusted blacklist of malicious sites, we also receive tip-offs or reports from users about one or two dodgy URLs they may have encountered while surfing the Web on top of those our engineers gather themselves. The latest tip we received recently was on a fake The North Face website. As per Hosts‘s classification, itR
Publish At:2015-06-11 10:10 | Read:5724 | Comments:0 | Tags:Fraud/Scam Alert counterfeit sites fake scam website

Unusual Exploit Kit Targets Chinese Users (Part 1)

We are very accustomed to seeing the same exploit kits over and over. Angler EK, Nuclear EK or Fiesta EK all have become familiar faces on this blog. Today, we are looking at an exploit kit that we have not seen before. Contrary to its counterparts, it is not used on mainstream websites or via malvertising attacks but rather it specifically targets Chinese w
Publish At:2015-05-29 01:10 | Read:3104 | Comments:0 | Tags:Exploits anti exploit exploit exploit kit Malwarebytes websi

Booby-trapped Hugo Boss Advert Spreads Cryptowall Ransomware

Malicious advertising attacks (malvertising) have been plaguing mainstream sites and their visitors a lot these past few years. While some are easy to spot and get rid of, others tend to be much more sophisticated and hard to shine light on. On Saturday 11th, we discovered a malicious advert that was displayed on huffingtonpost.com as well as other popular s
Publish At:2015-04-14 03:05 | Read:3104 | Comments:0 | Tags:Malvertising anti exploit Anti-Malware exploit flash malvert

A history lesson brought to you by the Nuclear exploit kit

During our malware investigations, we are often learning about new techniques or ways the bad guys try to bypass us. But sometimes, we also experience cultural differences or discover some new things about people or countries. Today is such a case, with a bit of a geography lesson brought to us by the Nuclear exploit kit, which takes us to Croatia. Our journ
Publish At:2015-04-10 19:05 | Read:3687 | Comments:0 | Tags:Exploits compromise exploit hack website

Jamieoliver[dot]com still compromised, now drops digitally signed malware

Almost one month ago we blogged about popular Chef Jamie Oliver having his website hacked and serving malware. The issue was quickly resolved following our disclosure and Jamie Oliver’s management team issued a public statement: The team at jamieoliver.com found a low-level malware problem and dealt with it quickly. The site is now safe to use. We have
Publish At:2015-03-13 18:10 | Read:2686 | Comments:0 | Tags:Exploits exploit hack malware website

Association of Internet Researchers Website Compromised

The Association of Internet Researchers is an “Academic association dedicated to the advancement of…Internet studies” – [Wikipedia]. They’ve held conferences since 1999, and the next is scheduled to take place in October. One suspects they might get a few submissions for talks about this: There’s no other content on the c
Publish At:2015-03-07 01:55 | Read:2433 | Comments:0 | Tags:Hacking hack hacked website

Philippine .Gov Compromised by Anti-ISIS Defacement, Phishing

There’s a ph(dot)gov website located at canaman(dot)gov(dot)ph which serves the region of Canaman in the Philippines. The homepage as it currently stands: We heal diseases, imperfect world. War is declared against you [expletive deleted] Whoever our Moroccan hacker is, they’re not particularly happy about ISIS from the looks of it (there’s
Publish At:2015-02-25 20:15 | Read:2375 | Comments:0 | Tags:Hacking compromise hacked hacking website

Major malvertising campaign hits sites with combined total monthly traffic of 1.5bn visitors

Last year was a busy year for malvertising with top rank ad networks such as Google’s DoubleClick caught in large scale attacks, and popular sites unwillingly infecting their visitors because of malicious advertisements. And 2015 is getting off a rough start was well. As Nick Bilogorskiy from Cyphort reported earlier this week, a new campaign has been
Publish At:2015-01-08 14:35 | Read:5935 | Comments:0 | Tags:Malvertising advertisement exploit malvertising news website

Hackers Compromise Official Bryan Adams Website

2015 may be just around the corner but it’s business as usual online, where a hacking group taking up 50 pages of Zone-H archives with a mixture of politically charged messages and more general webpage admin warnings have, er, hacked the website of musician Bryan Adams (please forgive them, they know not what they do) in an apparent attempt to encourag
Publish At:2014-12-29 12:05 | Read:2695 | Comments:0 | Tags:Hacking bryan adams hacked hackers website


Share high-quality web security related articles with you:)


Tag Cloud