Post

Visualizzazione dei post da maggio, 2017

Microsoft patched more Malware Protection Engine bugs last week • The Register

https://www.theregister.co.uk/2017/05/29/microsoft_out_of_band_patches/

Popular RADIUS server exploitable with TLS session caching • The Register

https://www.theregister.co.uk/2017/05/29/freeradius_exploitable_via_tls_session_caching/

Aruba bugs squashed in seven-vuln splatfest

https://www.theregister.co.uk/2017/05/29/aruba_security_update/

Microsoft Master File Table bug exploited to BSOD Windows 7, 8.1 • The Register

https://www.theregister.co.uk/2017/05/29/microsoft_master_file_table_bug_exploited_to_bsod_windows_7_81/

Chipotle says ‘most’ of its restaurants were infected with credit card stealing malware

https://www.theverge.com/2017/5/26/15701776/chipotle-restaurants-hacked-credit-card-malware

Pirates hack was a hoax, says Disney boss • The Register

https://www.theregister.co.uk/2017/05/26/pirates_hack_hoax/

Hackers Make the First-Ever Ransomware for Smart Thermostats

https://motherboard.vice.com/en_us/article/internet-of-things-ransomware-smart-thermostat

'Cloak and dagger' vuln rolls critical hit against latest Android versions

https://www.theregister.co.uk/2017/05/25/cloak_dagger_android_vuln/

Fat-thumbed dev slashes Samba security • The Register

https://www.theregister.co.uk/2017/05/25/fatthumbed_dev_slashes_samba_security/

Investigados alumnos de bachillerato por hackear el correo de profesores

http://ccaa.elpais.com/ccaa/2017/05/25/galicia/1495737302_094648.html

Ransomware hits Australian hospitals after botched patch • The Register

https://www.theregister.co.uk/2017/05/25/ransomware_hits_australian_hospitals/

Rogues reset 'passwords', steal W-2 info from Equifax subsidiary customer employees

https://www.grahamcluley.com/rogues-reset-passwords-steal-w-2-info-from-equifax-subsidiary-customer-employees/

WannaCry Ransomware picture collection from infected countries around the world

http://b0n1.blogspot.com/2017/05/wannacry-ransomware-picture-collection_17.html

An Analysis of the WannaCry Ransomware Outbreak

https://securingtomorrow.mcafee.com/executive-perspectives/analysis-wannacry-ransomware-outbreak/

Patches Pending for Medical Devices Hit By WannaCry

https://threatpost.com/patches-pending-for-medical-devices-hit-by-wannacry/125758/

UN experts hacked while investigating violations of sanctions on North Korea

https://www.theguardian.com/world/2017/may/22/un-experts-hacked-sanctions-north-korea-cyber-attack

Cron has fallen arrest gang for infecting 1 million smartphones

http://blog.group-ib.com/cron

Twitter flaw allowed you to tweet from any account | ZDNet

http://www.zdnet.com/article/twitter-flaw-allowed-you-to-tweet-from-any-account/

Subtitle Hack Leaves 200 Million Vulnerable to Remote Code Execution

https://threatpost.com/subtitle-hack-leaves-200-million-vulnerable-to-remote-code-execution/125868/

Last week: 'OpenVPN client is secure!'This week: 'Unpatched bug in OpenVPN server' • The Register

https://www.theregister.co.uk/2017/05/24/last_week_openvpn_client_is_secure_brthis_week_unpatched_bug_in_openvpn_server/

Yahoo! retires! bleeding! ImageMagick! to! kill! 0-day! vulnerability! • The Register

https://www.theregister.co.uk/2017/05/21/yahoo_retires_imagemagick_library/

consorzio basso valdarno 2017

https://pagamenti.poste.it/mdp-be/archive/receipt/5098218

Three home security systems found to be vulnerable – if hackers were hiding in bushes • The Register

https://www.theregister.co.uk/2017/05/18/home_system_insecurity/

Adylkuzz Cryptocurrency Mining Malware Spreading for Weeks Via EternalBlue/DoublePulsar

https://www.proofpoint.com/us/threat-insight/post/adylkuzz-cryptocurrency-mining-malware-spreading-for-weeks-via-eternalblue-doublepulsar

Il malware Adylkuzz diffuso sfruttando gli stessi exploit di WannaCry

https://www.certnazionale.it/news/2017/05/17/il-malware-adylkuzz-diffuso-sfruttando-gli-stessi-exploit-di-wannacry/

HP Inc wireless mouse can be spoofed • The Register

https://www.theregister.co.uk/2017/05/18/hps_wireless_mouse_can_be_spoofed/

Thieves hide in servers to hoover up victims' bank card numbers mid-order • The Register

https://www.theregister.co.uk/2017/05/17/tatcha_payment_card_data_stolen_midorder/

La truffa al videogame da 18 milioni di dollari

http://www.repubblica.it/tecnologia/sicurezza/2017/05/17/news/la_truffa_al_videogame_da_18_milioni_di_dollari-165695205/

Edmodo confirms hackers breached its education platform, stole user data and hashed passwords

https://www.grahamcluley.com/edmodo-hackers-breached-education-platform-stole-user-data-hashed-passwords/

Breach at DocuSign Led to Targeted Email Malware Campaign

https://krebsonsecurity.com/2017/05/breach-at-docusign-led-to-targeted-email-malware-campaign/

Edmodo confirms hackers breached its education platform, stole user data and hashed passwords

https://www.grahamcluley.com/edmodo-hackers-breached-education-platform-stole-user-data-hashed-passwords/

Apple Patches Pwn2Own Vulnerabilities in Safari, macOS, iOS

https://threatpost.com/apple-patches-pwn2own-vulnerabilities-in-safari-macos-ios/125725/

Chrome on Windows has credential theft bug

https://www.theregister.co.uk/2017/05/17/chrome_on_windows_has_credential_theft_bug/

Bell Canada hacked: 2m account details swiped by mystery miscreants • The Register

https://www.theregister.co.uk/2017/05/16/bell_canada_quieting_fears_post_data_heist/

Cisco warns: Some products might have WannaCrypt vuln • The Register

https://www.theregister.co.uk/2017/05/17/cisco_warns_some_products_might_have_wannacrypt/

Gizmodo security test proves everyone (even Donald Trump's team) can get phished

https://www.grahamcluley.com/gizmodo-security-test-proves-everyone-even-trump-team-can-get-phished/

Porn Aired on Video Ad Screen at Union Station

http://www.nbcwashington.com/news/local/Porn-Aired-on-Video-Ad-Screen-at-Union-Station-422592524.html

Il ricatto degli hacker, rubato 'Pirati dei Caraibi', e ora chiedono un riscatto milionario

http://www.repubblica.it/spettacoli/cinema/2017/05/16/news/_pirati_dei_caraibi_5_-165564670/

It's 2017 – and your Mac, iPad, iPhone can all be pwned by an e-book

https://www.theregister.co.uk/2017/05/16/apple_security_updates/

Sophos waters down 'NHS is totally protected' by us boast

https://www.theregister.co.uk/2017/05/15/sophos_nhs/

WannaCry: Detailed Technical Analysis • reddit

https://www.reddit.com/r/netsec/comments/6b2o5z/wannacry_detailed_technical_analysis/

Global ‘Wana’ Ransomware Outbreak Earned Perpetrators $26,000 So Far — Krebs on Security

https://krebsonsecurity.com/2017/05/global-wana-ransomware-outbreak-earned-perpetrators-26000-so-far/

WCry/WanaCry Ransomware Technical Analysis | Endgame

https://www.endgame.com/blog/wcrywanacry-ransomware-technical-analysis

The worm that spreads WanaCrypt0r - Malwarebytes Labs

https://blog.malwarebytes.com/threat-analysis/2017/05/the-worm-that-spreads-wanacrypt0r/

Arranca la segunda oleada del ciberataque: Más de 30.000 organismos infectados en China

http://www.elmundo.es/economia/empresas/2017/05/15/59197aa0268e3e01388b463f.html

Romanian 'ransomware victim' hangs self and 4-year-old son – report

https://www.theregister.co.uk/2014/03/18/romania_ransomware_murder_suicide/

All OnePlus Devices Vulnerable to Remote Attacks Due to 4 Unpatched Flaws

http://thehackernews.com/2017/05/oneplus-mobile-vulnerabilities.html

Cybercrime on the high seas: the new threat facing billionaire superyacht owners

http://www.theguardian.com/world/2017/may/05/cybercrime-billionaires-superyacht-owners-hacking

Ransomware scum have already unleashed kill-switch-free WannaCry‬pt‪ variant • The Register

https://www.theregister.co.uk/2017/05/15/wannacrypt_variant/

More UPNP woes: Crashable library bites routers and software • The Register

https://www.theregister.co.uk/2017/05/15/more_upnp_woes_crashable_library_bites_routers_and_software/

Wannacrypt0r-FACTSHEET.md

https://gist.github.com/rain-1/989428fa5504f378b993ee6efbc0b168

Un dominio de 10 euros, el freno inesperado al ciberataque en EE UU

http://internacional.elpais.com/internacional/2017/05/13/estados_unidos/1494660056_269061.html

Everything you need to know about the WannaCry / Wcry / WannaCrypt ransomware

https://www.troyhunt.com/everything-you-need-to-know-about-the-wannacrypt-ransomware/

WannaCry ransomware used in widespread attacks all over the world

https://securelist.com/blog/incidents/78351/wannacry-ransomware-used-in-widespread-attacks-all-over-the-world/

Nissan confirm Sunderland car plant brought to a halt by cyber attack which swept NHS

http://www.chroniclelive.co.uk/news/north-east-news/nissan-confirm-sunderland-car-plant-13030041

El ciberataque que se propagó por medio mundo por la desidia de las empresas

http://tecnologia.elpais.com/tecnologia/2017/05/13/actualidad/1494661227_809039.html

74 countries hit by NSA-powered WannaCrypt ransomware backdoor

https://www.theregister.co.uk/2017/05/13/wannacrypt_ransomware_worm/

>10,000 Windows computers may be infected by advanced NSA backdoor

https://arstechnica.com/security/2017/04/10000-windows-computers-may-be-infected-by-advanced-nsa-backdoor/

Multiple vulnerabilities discovered in popular printer models

https://isc.sans.edu/diary.html

Full Disclosure: Vulnerabilities in Samsung SyncThru Web Service

http://seclists.org/fulldisclosure/2014/Dec/105

Identificado ataque de ransomware que afecta a sistemas Windows

https://www.ccn-cert.cni.es/seguridad-al-dia/comunicados-ccn-cert/4464-ataque-masivo-de-ransomware-que-afecta-a-un-elevado-numero-de-organizaciones-espanolas.html

WanaCrypt ransomware snatches NSA exploit, fscks over Telefónica, other orgs in Spain • The Register

https://www.theregister.co.uk/2017/05/12/spain_ransomware_outbreak/

After years of warnings, mobile network hackers exploit SS7 flaws to drain bank accounts

https://www.theregister.co.uk/2017/05/03/hackers_fire_up_ss7_flaw/

Turns out, pacemaker security is terrifying

https://www.engadget.com/2017/04/21/pacemaker-security-is-terrifying/

Password reuse, credential stuffing and another billion records in Have I been pwned

https://www.troyhunt.com/password-reuse-credential-stuffing-and-another-1-billion-records-in-have-i-been-pwned/

Thieves drain 2fa-protected bank accounts by abusing SS7 routing protocol

https://arstechnica.com/security/2017/05/thieves-drain-2fa-protected-bank-accounts-by-abusing-ss7-routing-protocol/

Don’t trust OAuth: Why the “Google Docs” worm was so convincing

https://arstechnica.com/security/2017/05/dont-trust-oauth-why-the-google-docs-worm-was-so-convincing/

Rediscovering the Intel AMT Vulnerability

https://www.tenable.com/blog/rediscovering-the-intel-amt-vulnerability

New IoT bot Persirai ensnaring IP cameras

https://www.scmagazine.com/iot/new-iot-bot-persirai-ensnaring-ip-cameras/article/655875/

SEC brings new charges over global press release hacking scheme

http://www.reuters.com/article/us-trading-cyber-sec-idUSKCN0VR25N

Hackers who stole information from law firms and made millions by insider trading, fined $9 million

https://www.welivesecurity.com/2017/05/11/hackers-stole-information-law-firms-made-millions-insider-trading-fined-9-million/

Chinese stock traders hacked lawyers, profited from Intel's Altera gobble, now fined $9m

https://www.theregister.co.uk/2017/05/10/sec_fines_three_chinese_traders/

Website Flaw Let True Health Diagnostics Users View All Medical Records

https://krebsonsecurity.com/2017/05/website-flaw-let-true-health-diagnostics-users-view-all-medical-records/

SOP bypass / UXSS – Stealing Credentials Pretty Fast (Edge)

https://www.brokenbrowser.com/sop-bypass-uxss-stealing-credentials-pretty-fast/

Cisco kills leaked CIA 0-day that let attackers commandeer 318 switch models

https://arstechnica.com/security/2017/05/cisco-kills-leaked-cia-0day-that-let-attackers-commandeer-318-switch-models/

Mac users installing popular DVD ripper get nasty backdoor instead

https://arstechnica.com/security/2017/05/mac-users-installing-popular-dvd-ripper-get-nasty-backdoor-instead/

Massive vulnerability in Windows Defender leaves most Windows PCs vulnerable

https://arstechnica.com/information-technology/2017/05/windows-defender-nscript-remote-vulnerability/

NHS hit by 'cyber attack', at least one hospital shut down

https://www.theregister.co.uk/2017/05/12/nhs_hospital_shut_down_due_to_cyber_attack/

Telefonica e Tuenti vittime di attacco infomatico, chiesto riscatto

http://www.ilsole24ore.com/art/tecnologie/2017-05-12/telefonica-e-tuenti-vittime-attacco-infomatico-chiesto-riscatto-150842.shtml?uuid=AEqwtHLB

CEO fraud: Google and Facebook

https://www.ncsc.gov.uk/report/weekly-threat-report-5th-may-2017

HP Inc ships laptops with sinister key-logger • The Register

https://www.theregister.co.uk/2017/05/11/audio_driver_accidental_keystroke_logger/

Google's PHP API client has XSS vulnerability • The Register

https://www.theregister.co.uk/2017/05/12/googles_php_api_client_has_xss_vulnerability/

Another IoT botnet has been found feasting on vulnerable IP cameras • The Register

https://www.theregister.co.uk/2017/05/10/persirai_iot_botnet/

Avast blocks the entire internet – again • The Register

https://www.theregister.co.uk/2017/05/11/avast_web_connection_snafu/

Attention, Asus RT wireless router owners: Patch your gear now to squash web hijack bugs • The Register

https://www.theregister.co.uk/2017/05/11/asus_routers_need_patching/

Veritas plugs a bunch of NetBackup vulns • The Register

https://www.theregister.co.uk/2017/05/10/veritas_plugs_a_bunch_of_netbackup_vulns/

FCC blames DDoS for weekend web lockout • The Register

https://www.theregister.co.uk/2017/05/09/fcc_ddos/

Android O-mg. Google won't kill screen hijack nasties on Android 6, 7 until the summer

https://www.theregister.co.uk/2017/05/10/android_marshmallow_overlay/

It's 2017 and Windows PCs are being owned by EPS files, webpages • The Register

https://www.theregister.co.uk/2017/05/09/may_2017_ms_patch_tuesday/

Cisco patches switch hijacking hole – the one exploited by the CIA • The Register

https://www.theregister.co.uk/2017/05/09/cisco_switches_patch_telnet_command/

DDoS attack that disrupted internet was largest of its kind in history, experts say

http://www.theguardian.com/technology/2016/oct/26/ddos-attack-dyn-mirai-botnet

'Crazy bad' bug in Microsoft's Windows malware scanner can be used to install malware

https://www.theregister.co.uk/2017/05/09/microsoft_windows_remote_code_flaw/

'Crazy bad' bug in Microsoft's Windows malware scanner can be used to install malware • The Register

https://www.theregister.co.uk/2017/05/09/microsoft_windows_defender_security_hole/

Email client lib blown apart by CC: list of death • The Register

https://www.theregister.co.uk/2017/05/09/libetpan_email_library_vulnerable/

HandBrake Hacked! OSX/Proton (re)Appears

https://objective-see.com/blog/blog_0x1D.html

How to remote hijack computers using Intel's insecure chips: Just use an empty login string • The Register

https://www.theregister.co.uk/2017/05/05/intel_amt_remote_exploit/

You only need 60 bytes to hose Linux's rpcbind • The Register

https://www.theregister.co.uk/2017/05/04/linux_rpcbind_vulnerability/

WikiLeaks just dropped the CIA’s secret how-to for infecting Windows

https://arstechnica.com/tech-policy/2017/04/wikileaks-just-dropped-the-cias-secret-how-to-for-infecting-windows/

CVE-2017-2416 Remote code execution triggered by malformed GIF in ImageIO framework, affecting most iOS/macOS apps

https://blog.flanker017.me/cve-2017-2416-gif-remote-exec/

metasploit-framework/modules/exploits/multi/http/struts_code_exec_classloader.rb at master · rapid7/metasploit-framework · GitHub

https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/multi/http/struts_code_exec_classloader.rb

Evilginx - Advanced Phishing with Two-factor Authentication Bypass

https://breakdev.org/evilginx-advanced-phishing-with-two-factor-authentication-bypass/

Four Indian universities website hacked by pro Pakistani hackers

http://www.ehackingnews.com/2017/04/four-indian-universities-website-hacked.html

Let’s Encrypt and Comodo issue thousands of certificates for phishing

https://news.netcraft.com/archives/2017/04/12/lets-encrypt-and-comodo-issue-thousands-of-certificates-for-phishing.html

Russian-controlled telecom hijacks financial services’ Internet traffic

https://arstechnica.com/security/2017/04/russian-controlled-telecom-hijacks-financial-services-internet-traffic/

CVE-2017-0199 Practical exploitation ! (PoC)

http://rewtin.blogspot.com/2017/04/cve-2017-0199-practical-exploitation-poc.html

Apple Revokes Certificate Used By OSX/Dok Malware

https://threatpost.com/apple-revokes-certificate-used-by-osxdok-malware/125322/

Intel's remote AMT vulnerablity

http://mjg59.dreamwidth.org/48429.html

SNMP Flaw Affects Several Online Devices

http://www.ehackingnews.com/2017/05/snmp-flaw-affects-several-online-devices.html

Intel patches remote hijacking vulnerability that lurked in chips for 7 years

https://arstechnica.com/security/2017/05/intel-patches-remote-code-execution-bug-that-lurked-in-cpus-for-10-years/

Gatekeeper won't stop OSX/Dok, the first 'major scale' Mac malware

http://www.cultofmac.com/478813/gatekeeper-wont-stop-latest-mac-malware/

Pen-tester gets past Microsoft VB macro barriers • The Register

https://www.theregister.co.uk/2017/05/02/microsoft_vb_macro_cracked/

Software flaw makes HP, Fujitsu and Philips notebooks vulnerable

http://www.ehackingnews.com/2017/04/software-flaw-makes-hp-fujitsu-and.html