Hacking, Information Security and InfoSec

Threat actors target the infoSec community with fake PoC exploits

Security Affairs

MAY 22, 2022

Researchers uncovered a malware campaign targeting the infoSec community with fake Proof Of Concept to deliver a Cobalt Strike beacon. Researchers from threat intelligence firm Cyble uncovered a malware campaign targeting the infoSec community. SecurityAffairs – hacking, fake PoC). To nominate, please visit:? Pierluigi Paganini.

InfoSec

InfoSec Malware Cybercrime Information Security

Cryptocurrency exchange BuyUcoin hacked, data of 325K+ users leaked

Security Affairs

JANUARY 25, 2021

Again didn't informed to affected users by company. Story – [link] #InfoSec pic.twitter.com/1xFOtLcd8F — Rajshekhar Rajaharia (@rajaharia) January 21, 2021. Please Inform your users Right Now. InfoSec pic.twitter.com/dJGN5VesEH — Rajshekhar Rajaharia (@rajaharia) January 21, 2021. Pierluigi Paganini.

Cryptocurrency

Cryptocurrency Hacking InfoSec Data breaches

Top 9 Trends In Cybersecurity Careers for 2025

eSecurity Planet

OCTOBER 18, 2024

EC-Council : The International Council of E-Commerce Consultants, or EC-Council, offers several certifications for different career paths but is best known for its white-hat hacking program. Chief Information Security Officer (CISO) As Chief Information Security Officer, you’ve arrived at the C-Suite.

Cybersecurity

Cybersecurity Artificial Intelligence Penetration Testing CISO

Hacking IoT & RF Devices with BürtleinaBoard

Security Affairs

JULY 28, 2020

Yet another Multipurpose Breakout Board to hack hardware in a clean and easy way! How to hack IoT & RF Devices with BürtleinaBoard. Despite FocacciaBoard is extremely useful during my night-to-night hardware hacking needs… there is another set of tools I cannot live without: pin enumeration ones. UART, JTAG, SWD, SPI, I2C).

IoT

IoT Hacking Firmware Advertising

Hotarus Corp gang hacked Ecuador’s Ministry of Finance and Banco Pichincha

Security Affairs

FEBRUARY 27, 2021

‘Hotarus Corp’ Ransomware operators hacked Ecuador’s largest private bank, Banco Pichincha, and the country’s Ministry of Finance. ?A breach #infosec #deepwebnews @FinanzasEc @EcuCERT_EC pic.twitter.com/WTbXz8EYLx — Security Chronicle (@SecurChronicle) February 23, 2021. Pierluigi Paganini.

Hacking

Hacking Banking Ransomware Passwords

Rhysida ransomware gang claimed China Energy hack

Security Affairs

NOVEMBER 25, 2023

The Rhysida ransomware group claimed to have hacked the Chinese state-owned energy conglomerate China Energy Engineering Corporation. Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, Rhysida ransomware) Energy China [link] TL;DR That's huuuge!

Ransomware

Ransomware Hacking Engineering Manufacturing

Cyber Defense Magazine – November 2020 has arrived. Enjoy it!

Security Affairs

NOVEMBER 4, 2020

150 PAGESLOADED WITH EXCELLENT CONTENT Learn from the experts, cybersecurity best practices Find out about upcoming information security related conferences, expos and trade shows. 9TH ANNUAL INFOSEC AWARDSNOW OPEN FOR NOMINATIONS WITH AN INCREDIBLE 5 STAR AWARDS DINNER HELD DURING RSA CONFERENCE 2021 IN SAN FRANCISCO, CA, USA.

InfoSec

InfoSec DNS Advertising Marketing

HP Device Manager flaws expose Windows systems to hack

Security Affairs

OCTOBER 4, 2020

The vulnerabilities have been reported to HP by the infosec researchers Nick Bloor, an attacker could chain the three issues to achieve SYSTEM privileges on targeted devices and potentially take over them. SecurityAffairs – hacking, HP). The HP Device Manager allows administrators to remotely manage HP thin clients.

Hacking

Hacking Accountability Passwords Advertising

Cisco was hacked by the Yanluowang ransomware gang

Security Affairs

AUGUST 10, 2022

cybersecurity #infosec #ransomware pic.twitter.com/kwrfjbwbkT — CyberKnow (@Cyberknow20) August 10, 2022. SecurityAffairs – hacking, Yanluowang ransomware). The post Cisco was hacked by the Yanluowang ransomware gang appeared first on Security Affairs. yanluowang ransomware has posted #Cisco to its leaksite.

Ransomware

Ransomware Hacking VPN Phishing

Hacking a X-RAY Machine with WHIDelite & EvilCrowRF

Security Affairs

APRIL 20, 2021

The popular cyber security expert Luca Bongiorni demonstrated how to hack an X-Ray Machine using his WHIDelite tool. In case of more cool hacking stuff, do follow @whid_ninja on Twitter! The expert published a video PoC of the attack: Author Biography: Luca Bongiorni is working as Head of Offensive Security.

Hacking

Hacking InfoSec Engineering Internet

New Leak Shows Business Side of China’s APT Menace

Krebs on Security

FEBRUARY 22, 2024

A new data leak that appears to have come from one of China’s top private cybersecurity firms provides a rare glimpse into the commercial side of China’s many state-sponsored hacking groups. In 2021, the Sichuan provincial government named i-SOON as one of “the top 30 information security companies.”

Government

Government Hacking Cyber threats Mobile

BSides Huntsville 2021 – David Hunt’s ‘Hack In Your Sleep’

Security Boulevard

MARCH 14, 2021

Many thanks to BSides Huntsville 2021 for publishing their tremendous conference videos on the organization's YouTube channel; one of the best BSides for this year, don't miss this 10-video infosec event. The post BSides Huntsville 2021 – David Hunt’s ‘Hack In Your Sleep’ appeared first on Security Boulevard.

Hacking

Hacking InfoSec Education Information Security

Lapsus$ gang claims to have hacked Microsoft source code repositories

Security Affairs

MARCH 21, 2022

Microsoft is investigating claims that the Lapsus$ hacking group breached its internal Azure DevOps source code repositories. campuscodi @vxunderground #cybersecurity #infosec @Microsoft pic.twitter.com/FAYl9Y29QT — Dominic Alvieri (@AlvieriD) March 20, 2022. SecurityAffairs – hacking, Microsoft). Pierluigi Paganini.

Hacking

Hacking InfoSec Telecommunications Cybercrime

INC RANSOM ransomware gang claims to have breached Xerox Corp

Security Affairs

DECEMBER 30, 2023

The INC RANSOM ransomware group claims to have hacked the American multinational corporation Xerox Corp. The INC RANSOM ransomware group claims responsibility for hacking the American multinational corporation Xerox Corp and threatens to disclose the alleged stolen data. Xerox Corp provides document management solutions worldwide.

Ransomware

Ransomware InfoSec Data breaches Hacking

Life360 Selling Location Data, NSO Group Spyware Hacks Government Employees, Homecoming Queen Contest Hacked

Security Boulevard

DECEMBER 12, 2021

State Department employees were hacked with spyware from the infamous NSO Group, and details on a bizarre story about a mother and daughter that face 16 years in prison for […]. The post Life360 Selling Location Data, NSO Group Spyware Hacks Government Employees, Homecoming Queen Contest Hacked appeared first on The Shared Security Show.

Spyware

Spyware Hacking Government InfoSec

An initial access broker claims to have hacked Deutsche Bank

Security Affairs

NOVEMBER 11, 2022

An initial access broker claims to have hacked Deutsche Bank and is offering access to its systems for sale on Telegram. A threat actor ( 0x_dump ) claims to have hacked the multinational investment bank Deutsche Bank and is offering access to its network for sale online. SecurityAffairs – hacking, Deutsche Bank).

Banking

Banking Hacking InfoSec Insurance

Are our infosec controls sufficient?

Notice Bored

JUNE 25, 2021

begging questions about which infosec-related matters are particularly important, and how they stack up in relation to other business priorities, issues, pressures etc. begging questions about which infosec-related matters are particularly important, and how they stack up in relation to other business priorities, issues, pressures etc.

InfoSec

InfoSec Risk Information Security Government

Hacking Ham Radio: Why It’s Still Relevant and How to Get Started

Security Boulevard

JUNE 13, 2022

This week we discuss hacking ham radio with special guests Caitlin Johanson, Rick Osgood, and Larry Pesce. In this episode you’ll learn what ham radio is, why its still relevant, why would attackers want to hack ham radio, all about packet radio and APRS (Automatic Packet Reporting System), and what equipment and licensing you need […].

Hacking

Hacking Healthcare Data privacy InfoSec

CISO Stories Podcast: Hacking Your Way Into Cybersecurity

Security Boulevard

AUGUST 11, 2021

Kerissa Varma is Group Chief Information Security Officer of Old Mutual Limited, one of the largest financial services organizations on the African continent. The post CISO Stories Podcast: Hacking Your Way Into Cybersecurity appeared first on Security Boulevard.

CISO

CISO Hacking Cybersecurity Financial Services

Hacking Radio Blasting Systems for Fun & Explosions

Security Affairs

AUGUST 5, 2019

What about hacking Radio Blasting Systems? Luca is working as Principal Offensive Security Engineer and in his spare time is involved in InfoSec where the main fields of research are: Radio Networks, Hardware Reverse Engineering, Hardware Hacking, Internet of Things and Physical Security. Pierluigi Paganini.

Hacking

Hacking Firmware Engineering Advertising

BSidesPDX 2022 – Ben Kendall’s ‘Breaking Into Infosec Or, How I Hacked My Way Out Of Poverty’

Security Boulevard

NOVEMBER 6, 2022

The post BSidesPDX 2022 – Ben Kendall’s ‘Breaking Into Infosec Or, How I Hacked My Way Out Of Poverty’ appeared first on Security Boulevard. Our sincere thanks to BSidesPDX 2022 for publishing their outstanding conference videos on the organization's YouTube channel.

InfoSec

InfoSec Hacking Education Information Security

Lockbit leak sites hit by mysterious DDoS attack after Entrust hack

Security Affairs

AUGUST 22, 2022

LockBit ransomware gang claims to have hacked the IT giant Entrust and started leaking the stolen files. The Lockbit ransomware gang claimed to have hacked the company and is threatening to leak the stolen files. Entrust security incident dated June 18th. SecurityAffairs – hacking, Lockbit). Entrust Corp. Entrust Corp.

DDOS

DDOS Hacking Ransomware InfoSec

BSidesAugusta 2021 – George Bilbrey’s ‘Hacking The Brain With Gamified Learning’

Security Boulevard

FEBRUARY 26, 2022

The post BSidesAugusta 2021 – George Bilbrey’s ‘Hacking The Brain With Gamified Learning’ appeared first on Security Boulevard. Many thanks to BSidesAugusta for publishing their outstanding videos from the BSidesAugusta 2021 Conference on the organization’s YouTube channel.

Hacking

Hacking Education InfoSec Information Security

Cyber Defense Magazine – November 2021 has arrived. Enjoy it!

Security Affairs

NOVEMBER 3, 2021

This is the biggest INFOSEC show on earth and we will be there! It’s our 10th anniversary in business and at @RSAConference #RSAC: Where the world talks #security There is No better INFOSEC event on Earth. SecurityAffairs – hacking, Europol). appeared first on Security Affairs. OSINT ROCKS!

InfoSec

InfoSec Cybersecurity Media Hacking

Lockbit ransomware gang claims to have stolen data from Boeing

Security Affairs

OCTOBER 27, 2023

The Lockbit ransomware gang claims to have hacked the aerospace manufacturer and defense contractor Boeing and threatened to leak the stolen data. Boeing Good luck with that #lockbit [link] — Dominic Alvieri (@AlvieriD) October 27, 2023 In mid-October, the Lockbit ransomware gang claimed to have hacked the technology services giant CDW.

Ransomware

Ransomware Manufacturing InfoSec Hacking

Cyber Defense Magazine – February 2021 has arrived. Enjoy it!

Security Affairs

FEBRUARY 2, 2021

108 PAGESLOADED WITH EXCELLENT CONTENT Learn from the experts, cybersecurity best practices Find out about upcoming information security related conferences, expos and trade shows. If you want to receive the weekly Security Affairs Newsletter for free subscribe here. SecurityAffairs – hacking, Cyber Defense Magazine).

InfoSec

InfoSec DNS Media Marketing

Stepping on the cracks

Notice Bored

MAY 24, 2021

Anyone seeking information security standards or guidance is spoilt for choice e.g. : ISO27k - produced by a large international committee of subject matter experts and national representatives NIST SP 800 series – well researched, well written, actively maintained. and loads more. and loads more. Studying these is hard work.

InfoSec

InfoSec Risk IoT Information Security

Okta Hacked Again, Quishing Is The New Phishing, Google Play Protect Real-Time Scanning

Security Boulevard

NOVEMBER 5, 2023

Finally, we discuss Google Play Protect’s new feature, “Real-time App Analysis,” which […] The post Okta Hacked Again, Quishing Is The New Phishing, Google Play Protect Real-Time Scanning appeared first on Shared Security Podcast.

Phishing

Phishing Hacking Data privacy Data breaches

Episode 203: Don’t Hack The Water and Black Girls Hack Founder Tennisha Martin

The Security Ledger

FEBRUARY 15, 2021

In this episode of the Security Ledger Podcast (#203) we talk about the apparent hack of a water treatment plant in Oldsmar Florida with Frank Downs of the firm BlueVoyant. In our second segment: is infosec’s lack of diversity a bug or a feature? Episode 200: Sakura Samurai Wants To Make Hacking Groups Cool Again.

Hacking

Hacking InfoSec Information Security Risk

Records of 45 million+ travelers to Thailand and Malaysia surfaced in the darkweb

Security Affairs

JULY 13, 2020

Records of 45 Million+ travelers to Thailand and Malaysia Leaked on #Darkweb (Blog Link) [link] #infosec #leaks #CyberSecurity pic.twitter.com/zHOujQ8CMm — Cyble (@AuCyble) July 12, 2020. SecurityAffairs – hacking, travelers). Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini.

Mobile

Mobile InfoSec Data breaches Advertising

Security BSides London 2021 – Jamie Riden’s ‘How We Hacked Your Billion Dollar Company For Forty-Two Bucks’

Security Boulevard

JANUARY 22, 2022

Our thanks to Security BSides London for publishing their tremendous videos from the Security BSides London 2021 Conference on the organization’s YouTube channel.

Hacking

Hacking Education InfoSec Information Security

Cyber Defense Magazine – September 2020 has arrived. Enjoy it!

Security Affairs

SEPTEMBER 3, 2020

We hope you enjoy this month’s edition…packed with over 150 pages of excellent content. 150 Pages Loaded with excellent content Learn from the experts, cybersecurity best practices Find out about upcoming information security related conferences, expos and trade shows. appeared first on Security Affairs.

InfoSec

InfoSec Advertising Mobile Media

DEF CON 29 Blockchain Village – Michael Lewellen’s ‘Ethereum Hacks & How To Stop Them’

Security Boulevard

SEPTEMBER 17, 2021

The post DEF CON 29 Blockchain Village – Michael Lewellen’s ‘Ethereum Hacks & How To Stop Them’ appeared first on Security Boulevard. Our thanks to DEFCON for publishing their outstanding DEFCON Conference Blockchain Village Videos on the groups' YouTube channel.

Hacking

Hacking Education InfoSec Information Security

Cyber Defense Magazine – May 2021 has arrived. Enjoy it!

Security Affairs

MAY 5, 2021

OVER 90+ PAGESLOADED WITH EXCELLENT CONTENT Learn from the experts, cybersecurity best practices Find out about upcoming information security related conferences, expos and trade shows. SecurityAffairs – hacking, Cyber Defense Magazine). appeared first on Security Affairs. Cyber Defense Magazine May 2021.

InfoSec

InfoSec Media Cybersecurity Government

Cyber Defense Magazine – January 2022 has arrived. Enjoy it!

Security Affairs

JANUARY 9, 2022

Are you Questioning your InfoSec posture right now? CDM #CDMG #OSINT #CYBERSECURITY #INFOSEC #BEST #PRACTICES #TIPS #TECHNIQUES. SecurityAffairs – hacking, cyber defense magazine). appeared first on Security Affairs. We hope you enjoy this month’s edition…packed with 155 pages of excellent content. OSINT ROCKS!

InfoSec

InfoSec Media Hacking Cybersecurity

Russia Gets Hacked, Microsoft 365 Credential Stuffing, McDonald’s Ice Cream Machine Hackers

Security Boulevard

MARCH 6, 2022

This week we discuss some of the more interesting hacks of Russian assets, technology, and more. The post Russia Gets Hacked, Microsoft 365 Credential Stuffing, McDonald’s Ice Cream Machine Hackers appeared first on The Shared Security Show.

Hacking

Hacking Technology Accountability InfoSec

Security BSides Dublin 2021 – Caitlin Long’s ‘Hacking The Planet: An Intro To Avionics Security’

Security Boulevard

FEBRUARY 5, 2022

Additionally, the Security BSides Dublin organization has slated their eponymous Security BSides Dublin 2022 confab at the The Convention Centre Dublin ( CCD ) on 2022/03/19. Just a month and a half away.

Hacking

Hacking Education InfoSec Information Security

LAPSUS$ Hacks Okta, Browser-in-the Browser Phishing Attack, Popular Software Package Updated to Wipe Russian Systems

Security Boulevard

MARCH 27, 2022

The LAPSUS$ hacking group has claimed to have hacked both Microsoft and Okta, details about a novel phishing technique called a browser-in-the-browser (BitB) attack, and how a popular software package that has 1.1

Phishing

Phishing Software Hacking Social Engineering

Security Affairs newsletter Round 367 by Pierluigi Paganini

Security Affairs

MAY 29, 2022

Please vote for Security Affairs and Pierluigi Paganini in every category that includes them (e.g. sections “The Underdogs – Best Personal (non-commercial) Security Blog” and “The Tech Whizz – Best Technical Blog”). SecurityAffairs – hacking, newsletter). To nominate, please visit:?. Pierluigi Paganini.

InfoSec

InfoSec Spyware DDOS Firewall

Episode 219: LGBTQ+Cyber – A Pride Month Conversation On Being Queer In Infosec

The Security Ledger

JUNE 30, 2021

In this week’s episode of the podcast (#219) we speak with four cybersecurity professionals about what it means to be Queer in the industry: their various paths to the information security community, finding support among their peers and the work still left to do to make information security inclusive.

InfoSec

InfoSec Information Security Engineering Antivirus

Multi-Factor Authentication Fatigue Attack, Signal Account Twilio Hack, Facebook and Instagram In-App Browser

Security Boulevard

AUGUST 21, 2022

The post Multi-Factor Authentication Fatigue Attack, Signal Account Twilio Hack, Facebook and Instagram In-App Browser appeared first on The Shared Security Show. The post Multi-Factor Authentication Fatigue Attack, Signal Account Twilio Hack, Facebook and Instagram In-App Browser appeared first on Security Boulevard.

Authentication

Authentication Accountability Hacking Ransomware

Magecart attacks are still around but are more difficult to detect

Security Affairs

JUNE 22, 2022

net injected into #magento db and loading #JavaScript on a hacked store's checkout page. net/static/counter.js [link] #infosec #cybersecurity #malware pic.twitter.com/F6LJ6CBCCA — Luke Leal (@rootprivilege) June 13, 2022. SecurityAffairs – hacking, Magecart). staticounter[.]net staticounter[.]net/static/counter.js

eCommerce

eCommerce InfoSec Malware Hacking

Expert discloses 4 zero-days in IBM Data Risk Manager

Security Affairs

APRIL 21, 2020

A security researcher disclosed details of four zero-day flaws impacting an IBM security product after the IT giant refused to address them. The latest version Agile InfoSec has access to is 2.0.3, SecurityAffairs – IBM Data Risk Manager , hacking). and that one is certainly vulnerable.” Pierluigi Paganini.

Risk

Risk Authentication Advertising InfoSec

Microsoft releases IOC Detection Tool for Microsoft Exchange Server flaws

Security Affairs

MARCH 6, 2021

Cyber #Cybersecurity #InfoSec — US-CERT (@USCERT_gov) March 6, 2021. ” If you want to receive the weekly Security Affairs Newsletter for free subscribe here. SecurityAffairs – hacking, MS Exchange). ” states CISA. Follow me on Twitter: @securityaffairs and Facebook. Pierluigi Paganini.

InfoSec

InfoSec Hacking Accountability Cybersecurity

Threat actors target the infoSec community with fake PoC exploits

Cryptocurrency exchange BuyUcoin hacked, data of 325K+ users leaked

Trending Sources

Top 9 Trends In Cybersecurity Careers for 2025

Hacking IoT & RF Devices with BürtleinaBoard

Hotarus Corp gang hacked Ecuador’s Ministry of Finance and Banco Pichincha

Rhysida ransomware gang claimed China Energy hack

Cyber Defense Magazine – November 2020 has arrived. Enjoy it!

HP Device Manager flaws expose Windows systems to hack

Cisco was hacked by the Yanluowang ransomware gang

Hacking a X-RAY Machine with WHIDelite & EvilCrowRF

New Leak Shows Business Side of China’s APT Menace

BSides Huntsville 2021 – David Hunt’s ‘Hack In Your Sleep’

Lapsus$ gang claims to have hacked Microsoft source code repositories

INC RANSOM ransomware gang claims to have breached Xerox Corp

Life360 Selling Location Data, NSO Group Spyware Hacks Government Employees, Homecoming Queen Contest Hacked

An initial access broker claims to have hacked Deutsche Bank

Are our infosec controls sufficient?

Hacking Ham Radio: Why It’s Still Relevant and How to Get Started

CISO Stories Podcast: Hacking Your Way Into Cybersecurity

Hacking Radio Blasting Systems for Fun & Explosions

BSidesPDX 2022 – Ben Kendall’s ‘Breaking Into Infosec Or, How I Hacked My Way Out Of Poverty’

Lockbit leak sites hit by mysterious DDoS attack after Entrust hack

BSidesAugusta 2021 – George Bilbrey’s ‘Hacking The Brain With Gamified Learning’

Cyber Defense Magazine – November 2021 has arrived. Enjoy it!

Lockbit ransomware gang claims to have stolen data from Boeing

Cyber Defense Magazine – February 2021 has arrived. Enjoy it!

Stepping on the cracks

Okta Hacked Again, Quishing Is The New Phishing, Google Play Protect Real-Time Scanning

Episode 203: Don’t Hack The Water and Black Girls Hack Founder Tennisha Martin

Records of 45 million+ travelers to Thailand and Malaysia surfaced in the darkweb

Security BSides London 2021 – Jamie Riden’s ‘How We Hacked Your Billion Dollar Company For Forty-Two Bucks’

Cyber Defense Magazine – September 2020 has arrived. Enjoy it!

DEF CON 29 Blockchain Village – Michael Lewellen’s ‘Ethereum Hacks & How To Stop Them’

Cyber Defense Magazine – May 2021 has arrived. Enjoy it!

Cyber Defense Magazine – January 2022 has arrived. Enjoy it!

Russia Gets Hacked, Microsoft 365 Credential Stuffing, McDonald’s Ice Cream Machine Hackers

Security BSides Dublin 2021 – Caitlin Long’s ‘Hacking The Planet: An Intro To Avionics Security’

LAPSUS$ Hacks Okta, Browser-in-the Browser Phishing Attack, Popular Software Package Updated to Wipe Russian Systems

Security Affairs newsletter Round 367 by Pierluigi Paganini

Episode 219: LGBTQ+Cyber – A Pride Month Conversation On Being Queer In Infosec

Multi-Factor Authentication Fatigue Attack, Signal Account Twilio Hack, Facebook and Instagram In-App Browser

Magecart attacks are still around but are more difficult to detect

Expert discloses 4 zero-days in IBM Data Risk Manager

Microsoft releases IOC Detection Tool for Microsoft Exchange Server flaws

Stay Connected