je internetový portál zaměřený na počítačovou bezpečnost, hacking, anonymitu, počítačové sítě, programování, šifrování, exploity, Linux a BSD systémy. Provozuje spoustu zajímavých služeb a podporuje příznivce v zajímavých projektech.


Hacked Republican website skimmed donor credit cards for 6 months

Ars Technica - 17 Říjen, 2016 - 21:00


A website used to fund the campaigns of Republican senators was infected with malware that for more than six months collected donors' personal information, including full names, addresses, and credit card data, a researcher said.

The storefront for the National Republican Senatorial Committee was one of about 5,900 e-commerce platforms recently found to be compromised by malicious skimming software, according to researcher and developer Willem de Groot. He said the NSRC site was infected from March 16 to October 5 by malware that sent donors' credit card data to attacker-controlled domains. One of the addresses—jquery-code[dot]su—is hosted by dataflow[dot]su, a service that provides so-called bulletproof hosting to money launderers, sellers of synthetic drugs and stolen credit card data, and other providers of illicit wares or services.

De Groot said it's not clear how many credit cards were compromised over the six months the site was infected. Based on data from TrafficEstimates, the NRSC site received about 350,000 visits per month. Assuming 1 percent of those visits involved the visitor using a credit card, that would translate to 3,500 transactions per month, or about 21,000 transactions over the time the site was compromised. Assuming a black market value of $4 to $21 per compromised card, the crooks behind the hack may have generated revenue of $600,000.

Read 4 remaining paragraphs | Comments

Kategorie: Hacking & Security

Julian Assange is not Dead, but his Internet Connection is Cut by 'State Party'

The Hacker News - 17 Říjen, 2016 - 20:14
Don't worry — Julian Assange is alive and kicking! But his Internet connection is dead. Earlier today, Wikileaks tweeted that its co-founder, Julian Assange, had his internet connection intentionally cut by an unidentified "state party." The non-profit organization said it had "activated appropriate contingency plans," giving no further explanation. The tweet came after Wikileaks posted a
Kategorie: Hacking & Security

US Reps Requesting Further Intel Around Yahoo Surveillance Story

Threatpost - 17 Říjen, 2016 - 18:49
U.S. representatives are asking Yahoo for clarity around a surveillance program mentioned in reports earlier this month.
Kategorie: Hacking & Security

Netflix finds users’ passwords floating around online: change yours now!

Sophos Naked Security - 17 Říjen, 2016 - 18:23
You don't want to be footing the bill for some crook's film-watching! It's just one of many dangers of password reuse.

Amerika údajně chystá kyberútok na Rusko, který odhalí „nechutnou taktiku“ Vladimíra Putina - bezpečnost - 17 Říjen, 2016 - 16:12
Podle zdrojů NBC chystají USA hackerský útok na Rusko, který by měl zdiskreditovat tamní Putinův establishment. Akce má být odplatou za údajné zásahy do amerického předvolebního boje, ze kterých federální agentury obviňují právě východního medvěda . Podle NBC již operace rámcově začala výběrem ...
Kategorie: Hacking & Security

How We See the Future of Information Security

InfoSec Institute Resources - 17 Říjen, 2016 - 15:26
In the world where we are facing cyber wars and cyber threats, businesses have to think more effectively and differently about cyber security as it is the only thing that will assure their existence. There are near to zero chances that we outrun these threats and attacks, but there is a lot that we can […]
Kategorie: Hacking & Security

Technologies for Conducting Privacy Compliance Assessments

InfoSec Institute Resources - 17 Říjen, 2016 - 14:00
Section 1. Introduction Most jurisdictions worldwide have developed comprehensive privacy laws which impose a number of obligations on organizations collecting personal data. However, the processes of ensuring compliance with privacy laws may be complex, lengthy, and costly. This is because such compliance work is usually undertaken by highly qualified experts, who need to examine in […]
Kategorie: Hacking & Security

‘Adult’ video for Facebook users

Kaspersky Securelist - 17 Říjen, 2016 - 10:57

In April of this year, we registered some mass attacks on Facebook users in Russia. As a result, many Russian-speaking users of the social network fell victim to fraudsters. Half a year later the fraudsters have used the same tactics to attack Facebook users in Europe.

The attackers use a compromised Facebook account to post a link to an adult video that is supposedly on the popular YouTube service. In order to attract potential victims, “likes” are added from the account holder’s list of friends. The fraudsters rely on the user or their friends being curious and those who would like to watch an “18+” video.

Clicking on the link opens a page made to look like YouTube.

However, a quick look at the address bar is enough to see that the page has nothing to do with YouTube. During the latest attack the fraudsters distributed a “video” located on the domain. The domain is not currently available, but we discovered more than 140 domains with the same registration data that can be used for similar purposes.
After trying to start the video, a pop-up banner appears prompting the user to install a browser extension. In this particular example, it was called ‘Profesjonalny Asystent’ (Professional assistant), but we also came across other names.

The “View details” message explains that if the extension is not installed, the video cannot be viewed.

The attackers are banking on an intrigued victim not being interested in the details and just installing the extension. As a result, the extension gains rights to read all the data in the browser, which the fraudsters can later use to get all the passwords, logins, credit card details and other confidential user information that is entered. The extension can also continue spreading links to itself on Facebook, but now in your name and among your friends.

We strongly recommend not clicking such links and not installing suspicious browser extensions. It’s also worth checking if any suspicious extensions have already been installed. If any are discovered, they should be immediately removed via the browser settings, and the passwords for sites that are visited most often, especially online banking, should be changed.

Kritické bezpečnostní chyby mají Windows, Internet Explorer i Office - bezpečnost - 17 Říjen, 2016 - 10:55
Hned několik kritických chyb bylo odhaleno v softwarových produktech společnosti Microsoft. Trhliny byly nalezeny v operačním systému Windows, prohlížečích Internet Explorer i Edge a také v kancelářském balíku Office. Americký softwarový gigant již nicméně pro všechny zranitelnosti vydal opravy.
Kategorie: Hacking & Security

$5 million dollars paid as Facebook’s bug bounty program turns 5

Sophos Naked Security - 17 Říjen, 2016 - 10:45
Since its birth, Facebook's pioneering bug bounty program has uncovered 900 bugs and paid out over $5,000,000.

Monday review – the hot 22 stories of the week

Sophos Naked Security - 17 Říjen, 2016 - 09:16
From the 12-year-old who ended up with a $100,000 Google bill to Amazon resetting user passwords, catch up with everything we've written in the last seven days. It's weekly roundup time!

USA prý připravují odvetný kyberútok proti Rusku - bezpečnost - 17 Říjen, 2016 - 08:30
Americká Ústřední zpravodajská služba (CIA) na žádost prezidenta Baracky Obamy připravuje možnosti, jak proti Rusku provést odvetný kybernetický útok. Informovala o tom stanice NBC News s odvoláním na nejmenovaného představitelé americké tajné služby. Vláda Spojených států tento měsíc vůbec poprvé oficiálně obvinila Rusko z kybernetických útoků ve snaze narušit prezidentské volby v zemi, Moskva všechna nařčení odmítla.
Kategorie: Hacking & Security

Sierra Wireless Warns Cellular Data Gear Targeted by Mirai Malware

Threatpost - 15 Říjen, 2016 - 15:00
Sierra Wireless warns that its AirLink gateways are being infected by the Mirai malware, and urges customers to change default passwords on devices.
Kategorie: Hacking & Security

Crack for Charity — GCHQ launches 'Puzzle Book' Challenge for Cryptographers

The Hacker News - 15 Říjen, 2016 - 14:47
The UK's Signals Intelligence and Cyber Security agency GCHQ has launched its first ever puzzle book, challenging researchers and cryptographers to crack codes for charity. Dubbed "The GCHQ Puzzle Book," the book features more than 140 pages of codes, puzzles, and challenges created by expert code breakers at the British intelligence agency. <!-- adsense --> Ranging from easy to complex, the
Kategorie: Hacking & Security

FBI is Investigating Theft of $1.3 Million in Bitcoin from a Massachusetts Man

The Hacker News - 15 Říjen, 2016 - 14:15
Over two months ago, the world's third largest Bitcoin Exchange Bitfinex lost around $72 Million worth of Bitcoins in a major hack. Shortly after the company encountered a $72,000,000 Bitcoin theft, an unnamed Bitfinex user from Cambridge, Massachusetts, filed a police report in September, alleging that $1.3 Million of funds were stolen from his account. Since then the Cambridge police have
Kategorie: Hacking & Security

Android Banking Trojan Tricks Victims into Submitting Selfie Holding their ID Card

The Hacker News - 15 Říjen, 2016 - 09:31
While some payment card companies like Mastercard have switched to selfies as an alternative to passwords when verifying IDs for online payments, hackers have already started taking advantage of this new security verification methods. Researchers have discovered a new Android banking Trojan that masquerades primarily as a video plugin, like Adobe Flash Player, pornographic app, or video codec
Kategorie: Hacking & Security

Ghost Push Trojan Flourishing Via Malicious Links

Threatpost - 14 Říjen, 2016 - 23:24
Cheetah Mobile reports the origins of mobile Trojans are still coming from Ghost Push, which can root devices, show ads and install unwanted apps.
Kategorie: Hacking & Security

Beware of all-powerful DDoS malware infecting cellular gateways, feds warn

Ars Technica - 14 Říjen, 2016 - 21:37

Enlarge / One of the Sierra Wireless devices that can be infected by Mirai. (credit: Sierra Wireless)

This week, the US government-backed ICS-CERT warned that the troubling new generation of computer attacks is powered by malware that can infect cellular modems used to connect automotive and industrial equipment to the Internet.

An advisory published Wednesday listed five industrial control devices manufactured by Sierra Wireless that are vulnerable to malware known as Mirai when default passwords that ship with the equipment aren't changed on the gateways. The advisory referenced a separate notice from Sierra Wireless (PDF) that reported infections have succeeded against actual devices by connecting to the ACEmanager, a graphical interface used to remotely administer and configure them.

The Sierra Wireless post stated:

Read 7 remaining paragraphs | Comments

Kategorie: Hacking & Security

Is your router taking part in DDoS attacks right under your nose?

Sophos Naked Security - 14 Říjen, 2016 - 18:50
Akamai calls this one "SSHowDowN", which is shorthand for "DON'T SET DEFAULT PASSWORDS BECAUSE EVERYBODY KNOWS WHAT THEY ARE."

Doh! Government inadvertently reveals hacker’s private info

Sophos Naked Security - 14 Říjen, 2016 - 17:16
When you're prosecuting a hacker for exposing private information to the world, you really shouldn't do the same thing yourself!
Syndikovat obsah