10 matches found
Malware spent months hoovering up credit card details from 300 US restaurants
Criminal hackers have been able to steal at least 50,000 credit cards from 300 restaurants in the US, after launching two Magecart campaigns that target the MenuDrive, Harbortouch, and InTouchPOS online payment platforms: Magecart is a web-skimmer—malware that is injected onto a vulnerable websit...
The FBI Is Now Securing Networks Without Their Owners’ Permission
In January, we learned about a Chinese espionage campaign that exploited four zero-days in Microsoft Exchange. One of the characteristics of the campaign, in the later days when the Chinese probably realized that the vulnerabilities would soon be fixed, was to install a web shell in compromised...
Azure Sphere Security Research Challenge Now Open
The Azure Sphere Security Research Challenge is an expansion of Azure Security Lab, announced at Black Hat in August 2019. At that time, a select group of talented researchers was invited to come and do their worst, emulating criminal hackers in a customer-safe cloud environment. This new researc...
Misleading cybersecurity lessons from pop culture: how Hollywood teaches to hack
In pop culture, cybercrimes are often portrayed as mysterious and unrealistic. Hackers are enigmatic and have extraordinary tech abilities. They can discover top secrets in a short time and type at breakneck speed to hack into a database. In real life, though, hacking is not that straightforward...
Azure Security Lab: a new space for Azure research and collaboration
Azure is exceptionally secure. To help keep it that way, we are doubling the top bounty reward for Azure vulnerabilities to $40,000. But we aren’t stopping there. To make it easier for security researchers to confidently and aggressively test Azure, we are inviting a select group of talented...
US Charges Two Russian Spies & Two Hackers For Hacking 500 Million Yahoo Accounts
The 2014 Yahoo hack disclosed late last year that compromised over 500 million Yahoo user accounts was believed to be carried out by a state-sponsored hacking group. Now, two Russian intelligence officers and two criminal hackers have been charged by the US government in connection with the 2014...
D-Link Webcam Hack Turns IoT Device into Backdoor
Connecting a webcam to your home or office network might seem like a harmless thing, but researchers have figured out how to turn that connected device into a backdoor. Researchers at Vectra Networks today released a report demonstrating how a $30 D-Link webcam can be abused by attackers and turn...
Fake Payroll Confirmation Email Leads to Black Hole Exploit Kit
Criminal hackers launched an attack campaign earlier this week in which they sent a slew of emails purporting to come from the financial software developer Intuit. The emails contained links that led to sites hosting the Blackhole exploit kit in an apparent attempt to infect the machines of...
U.S. Brokerage Firm to Pay $375K for Breach
US brokerage D.A. Davidson has agreed to pay $375,000 to settle charges that lax security practices allowed criminal hackers from Latvia to pilfer the confidential information of some 192,000 of its customers. Read the full article. The Register...
Benjamin Jun talks anti-counterfeiting
Benjamin Jun of Cryptography Research talks about anti-counterfeiting measures in embedded technology at RSA 2009. In this segment Jun talks about the dangers of criminal hackers abusing diabetes monitors...