Review of Beta ProtonMail Android App
So we have all heard about the recent DDoS attack on ProtonMail over the last week or so, but that hasn't stopped them cracking…
ProtonMail targeted by a large DDoS attack
ProtonMail, the secure encrypted email service in Switzerland have been having bad time recently. ProtonMail, an encrypted email provider, has been coerced into forking over 15 bitcoin (the equivalent of…
TalkTalk hack affected far fewer customers than first thought
In total 4% of the customer base had personal data compromised. The cyber-attack on TalkTalk was successful on a much smaller scale than the company initially estimated, according to…
Fitbit trackers can be hacked in ’10 seconds’
So it seems there is a Fitbit vulnerability involving the BlueTooth implementation that can be used to embed self replicating malware onto the wearable fitness tracker. Fitbit trackers may have…
MOKER: A new APT undetected by VirusTotal
Recently, enSilo found an Advanced Persistent Threat (APT) residing in a sensitive network of a customer. This APT appears to be a Remote Access Trojan (RAT) that is capable of…
Hackers Breach Microsoft OWA Server, Steal 11,000 User Passwords
A malicious DLL was able to read & log passwords in clear text An attack exploiting the Microsoft Outlook Web Application (OWA) allowed hackers to record authentication credentials via a…
Linux.Wifatch ‘malware’ may be patching up security flaws
SYMANTEC is reporting about Linux.Wifatch They are suggesting that it might be a good guy type of internet threat that wants to solve problems with the Internet of Things. I know…
Linux botnet is launching crippling DDoS attacks at more than 150Gbps
The XOR DDoS botnet can generate attacks more powerful than most businesses can withstand A Linux botnet has grown so powerful that it can generate crippling distributed denial-of-service attacks at over…
Problems I have found with Kippo Honeypot
Kippo! Great honeypot..... But there are problems, i mean 2 seconds with metasploit and BAM! honeypot detected! Then there are other ways to detect it, once logged in. Its a…
Twitter is having problems
This is just an update for anyone else wondering. There seems to be issues with twitter.com But it seems the guys are working on it
Netflix Announce Sleepy Puppy XSS Payload Management Tool
Sleepy Puppy is a XSS payload management framework that enables security engineers to simplify the process of capturing, managing, and tracking XSS propagation over long…
BrowserFox variant High Stairs
Browsefox aka Sambreel aka Yontoo is a family of browser hijackers. When advertised they promise to “customize and enhance your interaction with the websites you visit”, but in reality they…
CVE-2015-2502 Microsoft issues emergency patch for all versions of Windows
This is the second "critical" out-of-band patch issued in as many months. It's all Internet Explorer's fault -- again. Microsoft has released an emergency out-of-band patch for a "critical"-rated security…
VW tried to hide hacking exploits on its cars
For 2 years VW tried to hide the exploits that made its cars hack-able . Now, many might be getting quite paranoid about the recent spate of stories revolving around…
Lenovo stuffs laptops with a rootkit in the BIOS
Lenovo has sold laptops bundled with irremovable software that features a bonus exploitable security vulnerability. If the crapware is deleted, or the hard drive wiped and Windows reinstalled from scratch,…
Androids still vulnerable, even after Google patch
Update flawed, new one needed for countless gadgets Google's security update to fix the Stagefright vulnerability in millions of Android smartphones is buggy – and a new patch is needed.…
Are you being tracked by your battery power levels.
A team of European security researchers has published a paper analyzing how the battery life of mobile devices could be used to track web browsing habits of Firefox users on Linux, using the HTML5…
Firefox 0day – CVE-2015-4495
Same origin violation and local file stealing via PDF reader Security researcher Cody Crews reported on a way to violate the same origin policy and inject script into a non-privileged…
WordPress 4.2.4 Fixes Three XSS Vulnerabilities and One Potential SQL Injection
Six WordPress security bugs fixed in version 4.2.4 WordPress, the darling CMS of the open source community, has released moments ago version 4.2.4, which contains lots of security fixes addressing…
BitDefender fails to encrypt usernames and passwords
BitDefender has compromised the details of around 250 users after a data breach revealed that it doesn't encrypt details of certain customers. First reported by Forbes, the DetoxRansome group behind…
Security flaw can render an Android device temporarily useless
Days after a security flaw in Android's media playback system Stagefright was publicly revealed, threatening nearly a billion Android devices, another wide-reaching security flaw could be used to make a…
Major Android Security Flaw: 1 Billion Devices vulnerable
Got an Android phone? Then read on - your beloved smartphone could be at risk from an alarmingly easy hack. The flaw has been discovered in the way that Android's Hangout…
DefCon Hackers Cracked Brink’s Safe in 60 Seconds
Gone in 60 seconds. Security researchers will demonstrate at DefCon on August 8 how they can crack a modern Brink's safe in just a minute. When it comes to security,…