On Febrauary 15th, Kickstarter sent an email to its customers and published a news on its blog about a data breach on kickstarter. The accessed information includes usernames, email addresses, mailing addresses, phone numbers and encrypted passwords. The sophistication on the hacker is not known yet but its possible that passwords can be extracted by […]
Recently a zero day vulnerability in Internet Explorer was discovered(CVE-2014-0322)). Researchers from Fireeye has identified that hackers are using this vulnerability in targeting US military personals. Furthermore they also suspect that this may be a very strategic campaign (Operation Snowman) during the President’s day weekend. FireEye researchers observed drive-by-download attack which alters HTML code of the […]
Bradley Williams, a security researcher has discovered a vulnerability in iOS 7 that can allow the disabling of ” Find My iPhone” without having to enter a password. This new vulnerability allows someone who has access to your i-phone to quickly disable “Find My iPhone” service, which is used to track the location of all registered […]
Bank of the west confirmed that the login credentials of candidates applied for jobs was compromised during the month of December 2013. Although it was unclear, what other information was compromised, but Bank of the West promptly sent an email to all its candidates informing the incident and that necessary measures were taken to secure […]
Jamie Sanchez, a security researcher discovered a vulnerability within Snapchat mobile app which can crash your iphone by Denial of Service attack. The vulnerability can enable a hacker to launch DoS attacks which can potentially crash a users phone or requires that the user perform a hard reset. He further says with a video that […]
Researchers from Kaspersky discovered a Brazilian Java Trojan that spreads via phishing email. Dmitry Bestuzhev explains that he never owned a Playstation but received an email with an attachment with a unusual ways of spreading Trojan bankers via .Jar files ( 14KB). It appeared to be a strange Trojan because even if a user just clicks on a .jar […]
Adobe released an emergency patch for a critical vulnerability affecting Flash Player for Windows, Linux and OS X, the exploitation of which can result in an attacker gaining remote control of the compromised systems. The security flaw exists in Adobe Flash Player 12.0.0.43 and earlier versions Adobe thanks Alexander Polyakov and Anton Ivanov of Kaspersky Labs […]
The world’s largest mobile operator Orange was compromised by a massive data breach on January and stole 800,000 customer records. The attack appears to have affected 3% of the population. Orange has since reported PCInpact that “My Account” portal on the website was hacked and added that three percent of customers (that’s approximately 800,000) were compromised.” […]
A new type of DDoS ( Distributed Denial of Service) attack has taken down several servers last weekend. Popular games servers for Steam, Origin, Battle.net, and League of Legends were victim of the attack The new type of DDoS abuses the Network Time Protocol (NTP), which keeps computers’ clocks synced up to Coordinated Universal Time, […]
Cisco users are vulnerable to a critical vulnerability that could allow attackers to gain root access to the equipment. The exploit is already in the wild and software update has not been released so far as per Cisco. A vulnerability in the Cisco WAP4410N Wireless-N Access Point, Cisco WRVS4400N Wireless-N Gigabit Security Router, and the Cisco […]