HackDig : Dig high-quality web security articles for hackers

OpenWRT forum hacked, intruders stole user data

The OpenWRT forum, the community behind the open-source project for embedded operating systems based on Linux, disclosed a data breach. OpenWrt is an open-source project for embedded operating systems based on Linux, primarily used on embedded devices to route network traffic. The main components are Linux, util-linux, musl, and BusyBox. All components ha
Publish At:2021-01-18 21:42 | Read:160 | Comments:0 | Tags:Breaking News Data Breach Hacking hacking news information s

IObit forums hacked in widespread DeroHE ransomware attack

Windows utility developer IObit was hacked over the weekend to perform a widespread attack to distribute the strange DeroHE ransomware to its forum members.IObit is a software developer known for Windows system optimization and anti-malware programs, such as Advanced SystemCare.Over the weekend, IObit forum members began receiving emails claiming to be from
Publish At:2021-01-18 18:07 | Read:118 | Comments:0 | Tags:Security ransomware hack

No US Trial for Irish Hacker

The United States has withdrawn an extradition request for an Irish hacker convicted of breaking into virtual wallets to steal millions of dollars in cryptocurrency.Conor Freeman was identified by US Homeland Security as one of at least five co-conspirators involved in a string of digital thefts that robbed multiple victims of their life savings in 2018
Publish At:2021-01-18 15:26 | Read:81 | Comments:0 | Tags: hack

Apple paid a $50,000 bounty to two bug bounty hunters for hacking its hosts

A duo of white hat hackers claims to have earned $50,000 from Apple for reporting serious flaws that allowed them to company’s servers. The Indian white hat hackers Harsh Jaiswal and Rahul Maini claim to have discovered multiple flaws that allowed them to access Apple servers. The duo started focusing on Apple’s infrastructure in an attemp
Publish At:2021-01-18 13:54 | Read:115 | Comments:0 | Tags:Breaking News Hacking Apple Bug Bounty information security

Researchers Earn $50,000 for Hacking Apple Servers

A couple of researchers claim they have earned $50,000 from Apple for finding some serious vulnerabilities that gave them access to the tech giant’s servers.Harsh Jaiswal and Rahul Maini, India-based bug bounty hunters who specialize in application security, said they discovered the flaws in recent months, being inspired by a group of researchers who in Octo
Publish At:2021-01-18 12:35 | Read:90 | Comments:0 | Tags:NEWS & INDUSTRY Vulnerabilities hack

EMA said that hackers manipulated stolen documents before leaking them

The European Medicines Agency (EMA) revealed Friday that COVID-19 vaccine documents stolen from its servers have been manipulated before the leak. The European Medicines Agency (EMA) declared that COVID-19 vaccine documents stolen from its servers in a recent cyber attack have been manipulated. In December, a cyber attack hit the European Medicines Age
Publish At:2021-01-17 18:55 | Read:172 | Comments:0 | Tags:Breaking News Data Breach coronavirus COVID-19 European Medi

EU Regulator: Hackers ‘Manipulated’ Stolen Vaccine Documents

The European Union’s drug regulator said Friday that COVID-19 vaccine documents stolen from its servers by hackers have been not only leaked to the web, but “manipulated.”The European Medicines Agency said that an ongoing investigation showed that hackers obtained emails and documents from November related to the evaluation of experimental coronavirus vaccin
Publish At:2021-01-16 13:47 | Read:150 | Comments:0 | Tags:NEWS & INDUSTRY Cybercrime hack

Hackers leaked altered Pfizer data to sabotage trust in vaccines

The European Medicines Agency (EMA) today revealed that some of the stolen Pfizer/BioNTech vaccine candidate data was doctored by threat actors before being leaked online with the end goal of undermining the public's trust in COVID-19 vaccines.EMA is the decentralized agency that reviews and approves COVID-19 vaccines in the European Union, and the agency th
Publish At:2021-01-15 16:01 | Read:102 | Comments:0 | Tags:Security hack

Verified Twitter accounts hacked in $580k ‘Elon Musk’ crypto scam

Threat actors are hacking verified Twitter accounts in an Elon Musk cryptocurrency giveaway scam that has recently become widely active.There is nothing new about cryptocurrency scams on Twitter, especially ones pretending to be giveaways from Elon Musk. In 2018, scammers raked in $180,000 using a successful Elon Musk giveaway scam promoted on Twit
Publish At:2021-01-14 20:31 | Read:143 | Comments:0 | Tags:Security CryptoCurrency hack

Vulnerabilities Can Allow Hackers to Create Backdoors in Comtrol Industrial Gateways

Several vulnerabilities have been identified in Pepperl+Fuchs Comtrol IO-Link Master industrial gateways, including flaws that researchers claim can be exploited to gain root access to a device and create backdoors.A researcher at Austria-based cybersecurity consultancy SEC Consult discovered five types of vulnerabilities in Pepperl+Fuchs Comtrol industrial
Publish At:2021-01-14 11:05 | Read:158 | Comments:0 | Tags:NEWS & INDUSTRY SCADA / ICS Vulnerabilities hack

CISA: Hackers bypassed MFA to access cloud service accounts

The US Cybersecurity and Infrastructure Security Agency (CISA) said today that threat actors bypassed multi-factor authentication (MFA) authentication protocols to compromise cloud service accounts."CISA is aware of several recent successful cyberattacks against various organizations’ cloud services," the cybersecurity agency said on Wednesday."The cyb
Publish At:2021-01-13 21:07 | Read:104 | Comments:0 | Tags:Security Cloud CISA hack

Official: Number of Victims of Russian Hack Likely to Grow

The number of federal agencies and private companies who learn that they have been affected by a massive Russian hack is expected to grow as the investigation into it continues, the U.S. government’s chief counterintelligence official said Tuesday.The FBI and other agencies last week attributed the intrusions to Russia as part of what officials described as
Publish At:2021-01-13 15:35 | Read:101 | Comments:0 | Tags:NEWS & INDUSTRY Incident Response hack

Google discloses hacking campaign targeting Windows, Android users

Project Zero, Google's 0day bug-hunting team, revealed a hacking campaign coordinated by "a highly sophisticated actor" and targeting Windows and Android users with zero-day and n-day exploits.The Project Zero team, in collaboration with the Google Threat Analysis Group (TAG), discovered a watering hole attack using two exploit servers in early 2020, each of
Publish At:2021-01-13 13:19 | Read:109 | Comments:0 | Tags:Security Google Microsoft android hack

Mimecast Discloses Certificate Incident Possibly Related to SolarWinds Hack

Email security company Mimecast on Tuesday revealed that a sophisticated threat actor had obtained a certificate provided to certain customers.According to Mimecast, it learned from Microsoft that hackers had compromised a certificate used to authenticate Mimecast Continuity Monitor, Internal Email Protect (IEP), and Sync and Recover products with Microsoft
Publish At:2021-01-13 11:41 | Read:115 | Comments:0 | Tags:Cyberwarfare NEWS & INDUSTRY Email Security Incident Res

SolarLeaks: Files Allegedly Obtained in SolarWinds Hack Offered for Sale

Someone has set up a website named SolarLeaks where they are offering to sell gigabytes of files allegedly obtained as a result of the recently disclosed SolarWinds breach.The SolarLeaks website offers source code allegedly obtained from Microsoft, Cisco, SolarWinds and FireEye. The information allegedly taken from Microsoft, offered for $600,000, is contain
Publish At:2021-01-13 11:41 | Read:134 | Comments:0 | Tags:Cyberwarfare NEWS & INDUSTRY Cybercrime hack

Tools

Tag Cloud