Iran-Linked Hackers Breach FBI Director’s Personal Email, Hit Stryker With Wiper Attack

Threat actors with ties to Iran successfully broke into the personal email account of Kash Patel, the director of the U.S. Federal Bureau of Investigation FBI, and leaked a cache of photos and other documents to the internet. Handala Hack Team, which carried out the breach, said on its website th...

U.S. Federal Agencies Ordered to Hunt for Signs of Microsoft Breach and Mitigate Risks

The U.S. Cybersecurity and Infrastructure Security Agency CISA on Thursday issued an emergency directive ED 24-02 urging federal agencies to hunt for signs of compromise and enact preventive measures following the recent compromise of Microsoft's systems that led to the theft of email...

Ukrainian Hackers Breach Email of APT28 Leader, Who’s Wanted by FBI

By Waqas APT28, or Fancy Bear, is a Russian government-backed nefarious hacking group known for using spear-phishing campaigns against its targets. This is a post from HackRead.com Read the original post: Ukrainian Hackers Breach Email of APT28 Leader, Whos Wanted by FBI...

Hackers Abused Microsoft's "Verified Publisher" OAuth Apps to Breach Corporate Email Accounts

Microsoft on Tuesday said it took steps to disable fake Microsoft Partner Network MPN accounts that were used for creating malicious OAuth applications as part of a phishing campaign designed to breach organizations' cloud environments and steal email. "The applications created by these fraudulen...

FBI's Email System Hacked to Send Out Fake Cyber Security Alert to Thousands

The U.S. Federal Bureau of Investigation FBI on Saturday confirmed unidentified threat actors have breached one of its email servers to blast hoax messages about a fake "sophisticated chain attack." The incident, which was first publicly disclosed by threat intelligence non-profit SpamHaus,...

Chipotle Emails Serve Up Phishing Lures

Customers who signed up for emails from fast-food chain Chipotle Mexican Grill were recently faced with bigger challenges than queso versus sour cream. A breach of the restaurant’s email marketing service last month lead to customers being served phishing lures and malicious links that redirected...

Zynga Faces Lawsuit Over Massive Words with Friends Breach

Mobile game developer Zynga could face a class-action lawsuit stemming from a massive data breach last September, which impacted 218 million users of the Words with Friends mobile app. The news comes as other big names face security incidents: T-Mobile and Carnival Cruise Lines have admitted this...

Yahoo Hacker linked to Russian Intelligence Gets 5 Years in U.S. Prison

A 23-year-old Canadian man, who pleaded guilty last year for his role in helping Russian government spies hack into email accounts of Yahoo users and other services, has been sentenced to five years in prison. Karim Baratov a.k.a Karim Taloverov, a.k.a Karim Akehmet Tokbergenov, a Kazakhstan-born...

Coinbase: 2FA settings allowed to be changed with no delay/freeze on funds

With the nature of bitcoin's instant transactions and the increase level of phishing/malware attempts on users, many bitcoin related businesses have freeze/delays on funds once a user changes their 2FA settings. That design keeps the 2FA from being defeated instantly if the user's email account h...

Turkish PM Erdogan's staff emails hacked and leaked by Syrian Electronic Army Hackers as #OpTurkey

Syrian Electronic army appears to be taking part in ongoing operation against Turkey government website. Hackers collectively called Anonymous and SEA breached into Turkish Ministry of Interior website and the private information of staffers in PM Tayyip Erdogan's office. Hackers claimed that the...

Syrian Electronic Army Hijack Sky News's Twitter & Facebook Accounts

Syrian Electronic Army strike again! This time hacking group hijack Twitter accounts and a Facebook page of Sky News Arabia and also hack their Emails. The accounts affected were the channel’s main twitter handle @skynewsarabia and the @skynewsarabia account used for cultural and entertainment...

ISI Chief - Ahmed Shuja Pasha Email ID hacked by Indian Hacker

ISI Chief - Ahmed Shuja Pasha Email ID hacked by Indian Hacker An Indian Hacker "creatrix " Claim to hack into the email id of ISI Chief Ahmed Shuja Pasha's .The Directorate for Inter-Services Intelligence more commonly known as Inter-Services Intelligence or simply by its initials ISI, is...

Rich Mogull on the RSA Attack and the Epsilon Breach

Dennis Fisher talks with Rich Mogull of Securosis about the fallout from the RSA attack, the way that the communications with the public and customers are being handled and the effects of the email breach at Epsilon. Podcast audio courtesy of sykboy65 Subscribe to the Digital Underground podcast ...

HBGary Emails A Sweet Valentine For Social Engineers

SAN FRANCISCO– The news keeps getting worse for security firm HBGary Federal. Members of the online mischief-making group Anonymous posted another cache of 20,000 company e-mails Sunday, following a similar disclosure last week. But the real damage from the leak may be yet to come, as sophisticat...

Anonymous launches Anonleaks.ru to expose HBGary 27,000 Emails, Data available soon !

Anonymous launches Anonleaks.ru to expose HBGary 50000 Emails, data available soon ! Anonymous plans to release 27,000 emails from the server of Greg Hoglund, chief executive of the software security firm HBGary. It has posted 50,000 emails of Aaron Barr from the CEO of its sister organization, H...

CVE-2001-0292

CVE-2001-0292 concerns PHP-Nuke 4.4.1a. The vulnerability allows remote attackers to modify a user’s email address and obtain the password by guessing the user id (UID) and invoking the user.php page with the saveuser operator. The description indicates an unauthenticated vector that leverages UI...