When AIs Start Hacking

If you dont have enough to worry about already, consider a world where AIs are hackers. Hacking is as old as humanity. We are creative problem solvers. We exploit loopholes, manipulate systems, and strive for more influence, power, and wealth. To date, hacking has exclusively been a human activit...

They Hacked McDonald’s Ice Cream Machines—and Started a Cold War

Secret codes. Legal threats. Betrayal. How one couple built a device to fix McDonald’s notoriously broken soft-serve machines—and how the fast-food giant froze them out...

EFB Tampering 2. Device Integrity

TL;DR Electronic Flight Bag EFB integrity varies between different airlines and devices Aviation cyber security is becoming increasingly prominent with regulators EFBs often connect to unsecure networks including public Wi-Fi Security measures are not always effective and can be inconsistent Devi...

The FBI Takes a Drastic Step to Fight China’s Hacking Spree

The agency's approach to protecting vulnerable victims of the recent Hafnium attack manages to be at once controversial and refreshingly restrained...

FBI Clears ProxyLogon Web Shells from Hundreds of Orgs

The Feds have cleared malicious web shells from hundreds of vulnerable computers in the United States that had been compromised via the now-infamous ProxyLogon Microsoft Exchange vulnerabilities. ProxyLogon comprises a group of security bugs affecting on-premises versions of Microsoft Exchange...

Windows, Ubuntu, Zoom, Safari, MS Exchange Hacked at Pwn2Own 2021

The 2021 spring edition of Pwn2Own hacking contest concluded last week on April 8 with a three-way tie between Team Devcore, OV, and Computest researchers Daan Keuper and Thijs Alkemade. A total of $1.2 million was awarded for 16 high-profile exploits over the course of the three-day virtual even...

Call of Duty Cheats Expose Gamers to Malware

Activision, the company behind Call of Duty: Warzone, has issued a warning that a threat actor is taking out ads for cheat tools, which instead turn out to be remote-access trojan RAT malware . The scam was first floated in March when a cyberattacker posted in hacking forums that they had a free,...

Water Supply Hacks Are a Serious Threat—and Only Getting Worse

An ex-employee allegedly tampered with a Kansas water system. It was too easy, and it's happening too often...

Malware Hidden in Call of Duty Cheating Software

News article: Most troublingly, Activision says that the "cheat" tool has been advertised multiple times on a popular cheating forum under the title "new COD hack." Gamers looking to flout the rules will typically go to such forums to find new ways to do so. While the report doesnt mention which...

DoJ charges man for hacking, tempering with public water facility

By Deeba Ahmed According to a DoJ, Travnichek was accused of hacking a public water facility's computer and tampering with the local water supply system. This is a post from HackRead.com Read the original post: DoJ charges man for hacking, tempering with public water facility...

[Security Nation] Beau Woods and Fotios Chantzis Discuss Their New Book, "Practical IoT Hacking"

!\Security Nation\ Beau Woods and Fotios Chantzis Discuss Their New Book, https://blog.rapid7.com/content/images/2021/04/securitynationlogo-63.jpg In our latest episode of Security Nation, we speak with Beau Woods and Fotios Chantzis about their newly released book, "Practical IoT Hacking." Stick...

MangaDex Site Offline Following Hacking Incident

MangaDex, the online repository of manga animation comics, will be closed until further notice following a hacking incident. Last week, the site reported that a cyberattacker had gained access to an administrative account, “through the reuse of a session token found in an old database leak throug...

Vajra - A Highly Customi zable Target And Scope Based Automated Web Hacking Framework To Automate Boring Recon Tasks

An automated web hacking framework for web applications Detailed insight about Vajra can be found at https://hackwithproxy.medium.com/introducing-vajra-an-advanced-web-hacking-framework-bd8307a01aa8 About Vajra Vajra is an automated web hacking framework to automate boring recon tasks and same...

A Homecoming Queen Was Arrested for Alleged Vote Hacking

Plus: A mysterious zero-day spree, a high-profile hacker indictment, and more of the week’s top security news...

Easy SMS Hijacking

Vice is reporting on a cell phone vulnerability caused by commercial SMS services. One of the things these services permit is text message forwarding. It turns out that with a little bit of anonymous money -- in this case, $16 off an anonymous prepaid credit card -- and a few lies, you can forwar...

Cybersecurity Bug-Hunting Sparks Enterprise Confidence

Nearly three-quarters of IT security professionals 73 percent surveyed say they prefer to buy technology and services from vendors who are proactive about security, including leveraging ethical hacking and having transparent communications about vulnerabilities. But less than half of vendors...

CompTIA Security Certification Prep — Lifetime Access for just $30

At long last, top companies are starting to take cybersecurity seriously. As a consequence, technical recruiters are looking for people with hacking skills and certifications to prove it. CompTIA is seen as the gold standard when it comes to cybersecurity exams, with several certifications to...

150,000 Verkada security cameras hacked—to make a point

Hackers were able to gain access to camera feeds from Verkada, a tech company that specializes in video security and physical access control, to demonstrate how prevalent surveillance is, reports say. Unfortunately, it also exposed the inner workings of hospitals, clinics, and mental health...

SolarWinds Hack — New Evidence Suggests Potential Links to Chinese Hackers

A malicious web shell deployed on Windows systems by leveraging a previously undisclosed zero-day in SolarWinds' Orion network monitoring software may have been the work of a possible Chinese threat group. In a report published by Secureworks on Monday, the cybersecurity firm attributed the...

Apple Issues Patch for Remote Hacking Bug Affecting Billions of its Devices

Apple has released out-of-band patches for iOS, macOS, watchOS, and Safari web browser to address a security flaw that could allow attackers to run arbitrary code on devices via malicious web content. Tracked as CVE-2021-1844, the vulnerability was discovered and reported to the company by Clémen...