Hacking and InfoSec - Cyber Security Informer

Threat actors target the infoSec community with fake PoC exploits

Security Affairs

MAY 22, 2022

Researchers uncovered a malware campaign targeting the infoSec community with fake Proof Of Concept to deliver a Cobalt Strike beacon. Researchers from threat intelligence firm Cyble uncovered a malware campaign targeting the infoSec community. SecurityAffairs – hacking, fake PoC). To nominate, please visit:? Pierluigi Paganini.

InfoSec

InfoSec Malware Cybercrime Information Security

Hacking Grindr Accounts with Copy and Paste

Troy Hunt

OCTOBER 2, 2020

Here's how they responded when approached by infosec journo Zack Whittaker : We are grateful for the researcher who identified a vulnerability. In fairness to Grindr, despite their triaging of security reports needing work, their response after I managed to get in touch with the right people was exemplary. The reported issue has been fixed.

Accountability

Accountability Hacking Passwords InfoSec

CIA Dirty Laundry Aired

Schneier on Security

MARCH 10, 2020

Joshua Schulte, the CIA employee standing trial for leaking the Wikileaks Vault 7 CIA hacking tools, maintains his innocence. The password for the Confluence virtual machine that held all the hacking tools that were stolen and leaked? And the answer is: absolutely terrible. And the answer is: absolutely terrible. That'll be 123ABCdef.

InfoSec

InfoSec Passwords Hacking Accountability

US Helped Ukraine With Infosec—Story is ‘Dangerous Arrogance’

Security Boulevard

MARCH 10, 2022

cleverly anticipated the Russian invasion of Ukraine and skilfully helped the country shore up its defences against Russian hacking. The post US Helped Ukraine With Infosec—Story is ‘Dangerous Arrogance’ appeared first on Security Boulevard. Mainstream media has been full of stories about how the U.S.

InfoSec

InfoSec Media Hacking Social Engineering

Is India's Aadhaar System Really "Hack-Proof"? Assessing a Publicly Observable Security Posture

Troy Hunt

JANUARY 10, 2018

Which brings us back to Aadhaar and some rather unpleasant headlines of late, particularly the likes of The World's Largest Biometric ID System Keeps Getting Hacked. They claim that they're hack-proof. But claiming the service is "hack-proof", that's something I definitely have an issue with. Can you prove otherwise?

Hacking

Hacking Government Encryption Risk

Inside the DemandScience by Pure Incubation Data Breach

Troy Hunt

NOVEMBER 13, 2024

But in all likelihood, there will be more than a handful of domain subscribers who take issue with that volume of people data sitting there in one corpus easily downloadable via a clear web hacking forum.

Data breaches

Data breaches Passwords B2B Technology

Cryptocurrency exchange BuyUcoin hacked, data of 325K+ users leaked

Security Affairs

JANUARY 25, 2021

Story – [link] #InfoSec pic.twitter.com/1xFOtLcd8F — Rajshekhar Rajaharia (@rajaharia) January 21, 2021. InfoSec pic.twitter.com/dJGN5VesEH — Rajshekhar Rajaharia (@rajaharia) January 21, 2021. SecurityAffairs – hacking, data breach). Again didn't informed to affected users by company. Pierluigi Paganini.

Cryptocurrency

Cryptocurrency Hacking InfoSec Data breaches

Hacking IoT & RF Devices with BürtleinaBoard

Security Affairs

JULY 28, 2020

Yet another Multipurpose Breakout Board to hack hardware in a clean and easy way! How to hack IoT & RF Devices with BürtleinaBoard. Despite FocacciaBoard is extremely useful during my night-to-night hardware hacking needs… there is another set of tools I cannot live without: pin enumeration ones. UART, JTAG, SWD, SPI, I2C).

IoT

IoT Hacking Firmware Advertising

Hotarus Corp gang hacked Ecuador’s Ministry of Finance and Banco Pichincha

Security Affairs

FEBRUARY 27, 2021

‘Hotarus Corp’ Ransomware operators hacked Ecuador’s largest private bank, Banco Pichincha, and the country’s Ministry of Finance. ?A breach #infosec #deepwebnews @FinanzasEc @EcuCERT_EC pic.twitter.com/WTbXz8EYLx — Security Chronicle (@SecurChronicle) February 23, 2021. Pierluigi Paganini.

Hacking

Hacking Banking Ransomware Passwords

Rhysida ransomware gang claimed China Energy hack

Security Affairs

NOVEMBER 25, 2023

The Rhysida ransomware group claimed to have hacked the Chinese state-owned energy conglomerate China Energy Engineering Corporation. Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, Rhysida ransomware) Energy China [link] TL;DR That's huuuge!

Ransomware

Ransomware Hacking Engineering Manufacturing

HP Device Manager flaws expose Windows systems to hack

Security Affairs

OCTOBER 4, 2020

The vulnerabilities have been reported to HP by the infosec researchers Nick Bloor, an attacker could chain the three issues to achieve SYSTEM privileges on targeted devices and potentially take over them. SecurityAffairs – hacking, HP). The HP Device Manager allows administrators to remotely manage HP thin clients.

Hacking

Hacking Accountability Passwords Advertising

CFAA 101: A Computer Fraud & Abuse Act Primer for InfoSec Pros

Dark Reading

OCTOBER 1, 2020

From WarGames, to Aaron Swartz, to bug bounties, to Van Buren, here's what cybersecurity researchers should know about the US's primary anti-hacking law before it gets its day in the Supreme Court.

InfoSec

InfoSec Hacking Cybersecurity

Cisco was hacked by the Yanluowang ransomware gang

Security Affairs

AUGUST 10, 2022

cybersecurity #infosec #ransomware pic.twitter.com/kwrfjbwbkT — CyberKnow (@Cyberknow20) August 10, 2022. SecurityAffairs – hacking, Yanluowang ransomware). The post Cisco was hacked by the Yanluowang ransomware gang appeared first on Security Affairs. yanluowang ransomware has posted #Cisco to its leaksite.

Ransomware

Ransomware Hacking VPN Phishing

Hacking a X-RAY Machine with WHIDelite & EvilCrowRF

Security Affairs

APRIL 20, 2021

The popular cyber security expert Luca Bongiorni demonstrated how to hack an X-Ray Machine using his WHIDelite tool. In case of more cool hacking stuff, do follow @whid_ninja on Twitter! SecurityAffairs – hacking, X-Ray Machine). The first thing striked my curiosity, even before purchasing it, was its remote.

Hacking

Hacking InfoSec Engineering Internet

BSides Huntsville 2021 – David Hunt’s ‘Hack In Your Sleep’

Security Boulevard

MARCH 14, 2021

Many thanks to BSides Huntsville 2021 for publishing their tremendous conference videos on the organization's YouTube channel; one of the best BSides for this year, don't miss this 10-video infosec event. The post BSides Huntsville 2021 – David Hunt’s ‘Hack In Your Sleep’ appeared first on Security Boulevard.

Hacking

Hacking InfoSec Education Information Security

Hacking It as a CISO: Advice for Security Leadership

Dark Reading

AUGUST 10, 2020

A security leader shares tips for adopting a CISO mindset, creating risk management strategies, and "selling infosec" to IT and executives.

CISO

CISO InfoSec Hacking Risk

Hacking IoT devices with Focaccia-Board: A Multipurpose Breakout Board to hack hardware in a clean and easy way!

Security Affairs

FEBRUARY 18, 2020

But it saves my time while hacking (I)IoT targets. Luca is working as Principal Offensive Security Engineer and in his spare time is involved in InfoSec where the main fields of research are: Radio Networks, Hardware Reverse Engineering, Hardware Hacking, Internet of Things and Physical Security. Hope you will enjoy it too!

IoT

IoT Hacking Firmware Advertising

Lapsus$ gang claims to have hacked Microsoft source code repositories

Security Affairs

MARCH 21, 2022

Microsoft is investigating claims that the Lapsus$ hacking group breached its internal Azure DevOps source code repositories. campuscodi @vxunderground #cybersecurity #infosec @Microsoft pic.twitter.com/FAYl9Y29QT — Dominic Alvieri (@AlvieriD) March 20, 2022. SecurityAffairs – hacking, Microsoft). Pierluigi Paganini.

Hacking

Hacking InfoSec Telecommunications Cybercrime

Cyber Defense Magazine – November 2020 has arrived. Enjoy it!

Security Affairs

NOVEMBER 4, 2020

9TH ANNUAL INFOSEC AWARDSNOW OPEN FOR NOMINATIONS WITH AN INCREDIBLE 5 STAR AWARDS DINNER HELD DURING RSA CONFERENCE 2021 IN SAN FRANCISCO, CA, USA. SecurityAffairs – hacking, Cyber Defense Magazine November 2020 ). Click here to read it online in Yumpu. Click here to check out or media kit and market with us, today.

InfoSec

InfoSec DNS Advertising Marketing

The Hacker Mind Podcast: The Right To Repair

Security Boulevard

FEBRUARY 10, 2021

How do the current DMCA laws impact those who hack digital devices? To answer these questions, Paul Roberts, Editor-in-Chief of the Security Ledger, founded secureparis.org, a group of infosec experts who are volunteering to fight for the right to repair.

InfoSec

InfoSec Hacking

INC RANSOM ransomware gang claims to have breached Xerox Corp

Security Affairs

DECEMBER 30, 2023

The INC RANSOM ransomware group claims to have hacked the American multinational corporation Xerox Corp. The INC RANSOM ransomware group claims responsibility for hacking the American multinational corporation Xerox Corp and threatens to disclose the alleged stolen data. Xerox Corp provides document management solutions worldwide.

Ransomware

Ransomware InfoSec Data breaches Hacking

Life360 Selling Location Data, NSO Group Spyware Hacks Government Employees, Homecoming Queen Contest Hacked

Security Boulevard

DECEMBER 12, 2021

State Department employees were hacked with spyware from the infamous NSO Group, and details on a bizarre story about a mother and daughter that face 16 years in prison for […]. The post Life360 Selling Location Data, NSO Group Spyware Hacks Government Employees, Homecoming Queen Contest Hacked appeared first on The Shared Security Show.

Spyware

Spyware Hacking Government InfoSec

New Leak Shows Business Side of China’s APT Menace

Krebs on Security

FEBRUARY 22, 2024

A new data leak that appears to have come from one of China’s top private cybersecurity firms provides a rare glimpse into the commercial side of China’s many state-sponsored hacking groups. APT stands for Advanced Persistent Threat, a term that generally refers to state-sponsored hacking groups.

Government

Government Hacking Cyber threats Mobile

An initial access broker claims to have hacked Deutsche Bank

Security Affairs

NOVEMBER 11, 2022

An initial access broker claims to have hacked Deutsche Bank and is offering access to its systems for sale on Telegram. A threat actor ( 0x_dump ) claims to have hacked the multinational investment bank Deutsche Bank and is offering access to its network for sale online. SecurityAffairs – hacking, Deutsche Bank).

Banking

Banking Hacking InfoSec Insurance

Hacking Ham Radio: Why It’s Still Relevant and How to Get Started

Security Boulevard

JUNE 13, 2022

This week we discuss hacking ham radio with special guests Caitlin Johanson, Rick Osgood, and Larry Pesce. In this episode you’ll learn what ham radio is, why its still relevant, why would attackers want to hack ham radio, all about packet radio and APRS (Automatic Packet Reporting System), and what equipment and licensing you need […].

Hacking

Hacking Healthcare Data privacy InfoSec

"Pwned", the Book, is Finally Here!

Troy Hunt

SEPTEMBER 8, 2022

Captivating stuff, apart from infosec, you really feel as though you’ve been taken on a journey with Troy through the years of living in paradise a.k.a. Plenty of tech, data breaches, career hacks, IoT, Cloud, password management, application security, and more, delivered in a fun way. This book has it all.

InfoSec

InfoSec Password Management Passwords IoT

Friday Five 2/12

Digital Guardian

FEBRUARY 12, 2021

A hack of a water treatment plant, SIM swapping used on celebrities, and a popular barcode app turned into malware - catch up on all of the week's infosec news with the Friday Five!

InfoSec

InfoSec Malware Hacking

Hacking Radio Blasting Systems for Fun & Explosions

Security Affairs

AUGUST 5, 2019

What about hacking Radio Blasting Systems? Luca is working as Principal Offensive Security Engineer and in his spare time is involved in InfoSec where the main fields of research are: Radio Networks, Hardware Reverse Engineering, Hardware Hacking, Internet of Things and Physical Security. About the author: Luca Bongiorni.

Hacking

Hacking Firmware Engineering Advertising

Malicious Life Podcast: The Tesla Hack

Security Boulevard

SEPTEMBER 13, 2021

The post Malicious Life Podcast: The Tesla Hack appeared first on Security Boulevard.

Hacking

Hacking Malware InfoSec Cybercrime

Friday Five 4/2

Digital Guardian

APRIL 2, 2021

Hacking team-ups, Turing Award winners, and scammers targeting universities - catch up on all of the week's infosec news with the Friday Five!

InfoSec

InfoSec Hacking

Friday Five 9/3

Digital Guardian

SEPTEMBER 3, 2021

How not to get hacked, a $9 million ransomware attack, and the FTC cracks down on a spyware app - catch up on the infosec news of the week with the Friday Five!

InfoSec

InfoSec Spyware Ransomware Hacking

Lockbit leak sites hit by mysterious DDoS attack after Entrust hack

Security Affairs

AUGUST 22, 2022

LockBit ransomware gang claims to have hacked the IT giant Entrust and started leaking the stolen files. The Lockbit ransomware gang claimed to have hacked the company and is threatening to leak the stolen files. SecurityAffairs – hacking, Lockbit). Entrust Corp. Entrust Corp. Tor leak site. No one seen taking credit to date.

DDOS

DDOS Hacking Ransomware InfoSec

The cybersecurity researcher Dan Kaminsky has died

Security Affairs

APRIL 24, 2021

One of the brightest lights in infosec and probably the kindest soul I knew. Dan Kaminsky was very active in the cyber security community, he was a regular speaker at major cybersecurity and hacking conferences, including Black Hat and DEFCON. SecurityAffairs – hacking, Kaminsky). I guess theres no hiding it now.

Cybersecurity

Cybersecurity InfoSec DNS Hacking

Missouri Governor and F12 Hacking, Global Ransomware Meeting, Fake Government Websites

Security Boulevard

OCTOBER 24, 2021

Details on the F12 “hacking” incident of the Missouri state education website and the foolish response from the Missouri governor, Over 30 countries (except China and Russia) meet to fight ransomware globally, and the FBI’s warning about fake unemployment benefit websites. ** Links mentioned on the show ** Gov.

Government

Government Hacking Ransomware Education

Friday Five 2/4

Digital Guardian

FEBRUARY 4, 2022

Hacking North Korea, inside the Trickbot ransomware group, and more - catch up on the infosec news of the week with the Friday Five!

InfoSec

InfoSec Ransomware Hacking

Friday Five 4/1

Digital Guardian

APRIL 1, 2022

Hacked satellites, how technology enables data protection, and the fastest ransomware - catch up on the infosec news of the week with the Friday Five!

InfoSec

InfoSec Ransomware Technology Hacking

8 top penetration testing certifications employers value

CSO Magazine

DECEMBER 20, 2021

Penetration testing, sometimes called ethical hacking or red team hacking, is an exciting career path in which you simulate cyberattacks on target systems in order to test (and, ultimately, improve) their security.

Penetration Testing

Penetration Testing InfoSec Hacking

Hack the Capitol returns Tuesday, as all eyes look toward critical infrastructure security

SC Magazine

MAY 3, 2021

Hack the Capitol is the yearly stand-alone event from ICS Village, a touring industrial security education group most often seen bringing hands-on control systems demonstrations to security conferences. What is ICS Village trying to accomplish with Hack the Capitol? That’s fundamentally what Hack The Capitol is all about.

Hacking

Hacking Education InfoSec Media

Is the SolarWinds Hack Really a Seismic Shift?

Threatpost

APRIL 30, 2021

Oliver Tavakoli, CTO of Vectra AI, discusses the massive supply-chain hack's legacy and ramifications for security professionals.

Hacking

Hacking InfoSec Government Malware

Cyber Defense Magazine – April 2019 has arrived. Enjoy it!

Security Affairs

APRIL 2, 2019

InfoSec Knowledge is Power. GARY BERMAN AND HIS TEAM BELIEVE THAT INFOSEC KNOWLEDGE IS POWERFUL – TAKE YOUR AVERAGE EMPLOYEE AND MAKE THEM A CYBER HERO – YOU WILL EMPOWERED THEM AGAINST THE LATEST SPEAR PHISHING ATTACKS AND RANSOMWARE, IN A FUN EDUCATIONAL WAY. INFOSEC AWARDS 2019 RESULTS HERE – CONGRATS TO WINNERS!

InfoSec

InfoSec Advertising Education Media

BSidesAugusta 2021 – George Bilbrey’s ‘Hacking The Brain With Gamified Learning’

Security Boulevard

FEBRUARY 26, 2022

The post BSidesAugusta 2021 – George Bilbrey’s ‘Hacking The Brain With Gamified Learning’ appeared first on Security Boulevard. Many thanks to BSidesAugusta for publishing their outstanding videos from the BSidesAugusta 2021 Conference on the organization’s YouTube channel.

Hacking

Hacking Education InfoSec Information Security

The Arsenal Behind the Australian Parliament Hack

Security Affairs

FEBRUARY 26, 2019

Contextually to the cyber incident disclosure to the public, the ACSC declassified some of the samples involved in the parliament hack, so the Cybaze-Yoroi ZLab team decided to investigate these artifacts to have an insight of Tools and Capabilities of part of this APT cyber arsenal. The Arsenal Behind the Australian Parliament Hack.

Hacking

Hacking Malware Cyber Attacks Advertising

US Hacker ‘P4x’ Gets Back at Pyongyang (but We Smell a Rat)

Security Boulevard

FEBRUARY 3, 2022

An infosec researcher was hacked by North Korea. law enforcement did nothing, so he took matters into his own hands. The post US Hacker ‘P4x’ Gets Back at Pyongyang (but We Smell a Rat) appeared first on Security Boulevard.

InfoSec

InfoSec Hacking Social Engineering IoT

Cyber Defense Magazine – November 2021 has arrived. Enjoy it!

Security Affairs

NOVEMBER 3, 2021

This is the biggest INFOSEC show on earth and we will be there! It’s our 10th anniversary in business and at @RSAConference #RSAC: Where the world talks #security There is No better INFOSEC event on Earth. CDM #CDMG #OSINT #CYBERSECURITY #INFOSEC #BEST #PRACTICES #TIPS #TECHNIQUES We rarely ask our readership for anything.

InfoSec

InfoSec Cybersecurity Media Hacking

Threat actors target the infoSec community with fake PoC exploits

Hacking Grindr Accounts with Copy and Paste

Trending Sources

CIA Dirty Laundry Aired

US Helped Ukraine With Infosec—Story is ‘Dangerous Arrogance’

Is India's Aadhaar System Really "Hack-Proof"? Assessing a Publicly Observable Security Posture

Inside the DemandScience by Pure Incubation Data Breach

Cryptocurrency exchange BuyUcoin hacked, data of 325K+ users leaked

Hacking IoT & RF Devices with BürtleinaBoard

Hotarus Corp gang hacked Ecuador’s Ministry of Finance and Banco Pichincha

Rhysida ransomware gang claimed China Energy hack

HP Device Manager flaws expose Windows systems to hack

CFAA 101: A Computer Fraud & Abuse Act Primer for InfoSec Pros

Cisco was hacked by the Yanluowang ransomware gang

Hacking a X-RAY Machine with WHIDelite & EvilCrowRF

BSides Huntsville 2021 – David Hunt’s ‘Hack In Your Sleep’

Hacking It as a CISO: Advice for Security Leadership

Hacking IoT devices with Focaccia-Board: A Multipurpose Breakout Board to hack hardware in a clean and easy way!

Lapsus$ gang claims to have hacked Microsoft source code repositories

Cyber Defense Magazine – November 2020 has arrived. Enjoy it!

The Hacker Mind Podcast: The Right To Repair

INC RANSOM ransomware gang claims to have breached Xerox Corp

Life360 Selling Location Data, NSO Group Spyware Hacks Government Employees, Homecoming Queen Contest Hacked

New Leak Shows Business Side of China’s APT Menace

An initial access broker claims to have hacked Deutsche Bank

Hacking Ham Radio: Why It’s Still Relevant and How to Get Started

"Pwned", the Book, is Finally Here!

Friday Five 2/12

Hacking Radio Blasting Systems for Fun & Explosions

Malicious Life Podcast: The Tesla Hack

Friday Five 4/2

Friday Five 9/3

Lockbit leak sites hit by mysterious DDoS attack after Entrust hack

The cybersecurity researcher Dan Kaminsky has died

Missouri Governor and F12 Hacking, Global Ransomware Meeting, Fake Government Websites

Friday Five 2/4

Friday Five 4/1

8 top penetration testing certifications employers value

Hack the Capitol returns Tuesday, as all eyes look toward critical infrastructure security

Is the SolarWinds Hack Really a Seismic Shift?

Cyber Defense Magazine – April 2019 has arrived. Enjoy it!

BSidesAugusta 2021 – George Bilbrey’s ‘Hacking The Brain With Gamified Learning’

The Arsenal Behind the Australian Parliament Hack

US Hacker ‘P4x’ Gets Back at Pyongyang (but We Smell a Rat)

Cyber Defense Magazine – November 2021 has arrived. Enjoy it!

Stay Connected