Yahoo Hack

Massive data breach hit 500 million users, Yahoo confirms

By on September 22, 2016 at 2:40 PM.

Massive data breach hit 500 million users, Yahoo confirms

Yahoo has confirmed that a data breach from 2014 hit 500 million users, allowing hackers access to sensitive information, including poorly encrypted passwords.

A press release from Yahoo confirms the news, and follows reports earlier today that Yahoo was set to confirm the breach. If true, stealing the user credentials from 500 million users would be one of the largest hacks ever to hit a US company.

More →

No Comments
Laptop Camera Cover Comey

FBI director assumes someone is spying on our webcams all the time21

By on September 15, 2016 at 9:00 PM.

FBI director assumes someone is spying on our webcams all the time21

FBI Director James Comey, a strong opponent of Apple’s way of encrypting software and hardware, just told us again that covering up that computer webcam with a lid is recommended. That means he strongly believes people can spy on you on devices that aren’t secure.

Imagine a world in which the iPhone would run an unencrypted version of iOS. We’d probably have to put fancy camera covers both on the front and the back of the device. Either that or accessory makers would simply sell premium cases that don’t have camera cutouts.
More →

No Comments
Reddit Scam

And this is why you don’t scam a security professional on Reddit

By on September 11, 2016 at 9:00 AM.

And this is why you don’t scam a security professional on Reddit

Trying to scam someone on the internet is always a bad idea, but if that someone turns out to be the head of a security research company, you’re in for a whole world of hurt.

Christian Haschek is an Austrian security researcher who was trying to sell $500 in US Apple gift cards on Reddit, since they’re a pain to use from overseas. He thought he had struck a deal with a buyer, but that buyer turned out to be less than honest.

More →

No Comments
Hacking software demo video

Terrifying video shows government spyware in action for the first time

By on September 6, 2016 at 9:00 PM.

Terrifying video shows government spyware in action for the first time

With the Snowden leaks, Stingray and FBI surveillance planes always in the news, most people just assume that The Man has god-like surveillance capabilities on tap. But the nuts and bolts of how government-sanctioned hacking actually works has always been a little mysterious.

A new video obtained by Motherboard shows an Italian software company showing off a hacking tool, intended for use by police forces and government agencies. The video shows how little technical knowledge cops really need to get a scary level of detail out of a target’s computer.

More →

No Comments
PayPal Support Scam

Brutally efficient phishing scam takes advantage of PayPal’s awfulness

By on September 5, 2016 at 5:20 PM.

Brutally efficient phishing scam takes advantage of PayPal’s awfulness

Phishing scams that use fake login pages to steal account usernames and passwords are nothing new. The trick for hackers is to fool customers into thinking that they’re following a legit link from a real company, and a new phishing scam is particularly good at that.

A raft of fake PayPal support accounts have popped up on Twitter. The accounts monitor for individuals who tweet support requests to @PayPal, and then reply to those messages with a link to a real-looking login page. Unless you look real close, anyone could fall for it.

More →

No Comments
Google Play Store Android Malware

Brand new malware discovered in Android apps on the Google Play store

By on September 2, 2016 at 7:00 PM.

Brand new malware discovered in Android apps on the Google Play store

Some people dismiss the threat that malware poses in the Android world, but the problem is still real. Individuals with malicious intent will always target the most popular operating systems, and Android is one of them. A new report details a troubling new malware strain that has been found in the wild, and this time around it wasn’t discovered just in shady third-party app stores. It was also found in apps approved in the Google Play store in spite of Google’s various protections.

More →

No Comments
Clinton Email Hacker

Hacker who revealed Hillary’s email server sentenced to 4 years in prison

By on September 1, 2016 at 1:17 PM.

Hacker who revealed Hillary’s email server sentenced to 4 years in prison

Marcel Lehel Lazar, the infamous hacker known as Guccifer, has been sentenced to 52 months in federal prison. Lazar pled guilty to a series of charges related to hacking a number of well-known celebrities between October 2012 and January 2014. Victims included former president George W Bush and former secretary of state Colin Powell.

More →

No Comments
Google Login Malware Vulnerability

Google won’t own up to a major security flaw, researcher says

By on August 31, 2016 at 8:00 PM.

Google won’t own up to a major security flaw, researcher says

A security researcher who hunts bugs for a living says that Google won’t acknowledge one of his findings. According to Aidan Woods, the way Google’s login pages are built would help an attacker either steal login information from unsuspecting users or convince them to install files which would appear to be downloading directly from Google. More →

No Comments
Dropbox Hack Email Password

Dropbox didn’t tell anyone about a giant hack for four years

By on August 31, 2016 at 7:00 PM.

Dropbox didn’t tell anyone about a giant hack for four years

We get it, companies get hacked all the time. And they’re not too eager to share details about data breaches, but they ultimately have to release details about it so that affected users can protect themselves. At least, they should disclose details. But Dropbox failed to do so, hiding for no less than four years the magnitude of a data breach that may have affected up to 68 million accounts. More →

No Comments
USBee Malware Air-Gapped PC

Researchers have replicated one of the NSA’s scariest hacking tools

By on August 30, 2016 at 9:00 PM.

Researchers have replicated one of the NSA’s scariest hacking tools

One defense against malware is locking sensitive data that hackers want to steal from the Internet. That’s done through air-gapped PCs or computers that are not connected to the Internet or any network. Theoretically, one could not retrieve anything from such a device without physical access to it. But researchers have been able to replicate a tool the NSA reportedly uses and improve it, to steal information from an air-gapped computer. More →

No Comments
1472573632413

Sri Lankan teen hacks president’s website to demand exam reschedule

By on August 30, 2016 at 8:30 PM.

Sri Lankan teen hacks president’s website to demand exam reschedule

It’s no secret that exam schedules can be annoying, but would you write your country’s president to voice your concerns? How about hacking their official website?

Enter this summer’s boldest Sri Lankan teenager. The BBC reported that a 17-year-old student has been arrested for allegedly hacking President Maithripala Sirisena’s website to express frustration over the country’s exam schedule. The announcement that the A-level (or advanced) exams were scheduled for April angered the teen, who pointed out that the exams coincided with celebrations for Sinhala and Tamil New Year.

More →

No Comments