What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2016-11-25 22:51:17 | Beware! Malicious JPG Images on Facebook Messenger Spreading Locky Ransomware (lien direct) | If you receive an image file sent by someone, even your friend, on your Facebook Messenger, LinkedIn or any other social media platform, just DO NOT CLICK ON IT.
Even JPG image file could eventually infect your computer with the infamous Locky Ransomware.
Earlier this week, we reported a new attack campaign that used Facebook Messenger to spread Locky Ransomware via .SVG image files,
|
|||
|
2016-11-24 10:34:46 | Microsoft Shares Telemetry Data Collected from Windows 10 Users with 3rd-Party (lien direct) | Cyber security is a major challenge in today's world, as cyber attacks have become more automated and difficult to detect, where traditional cyber security practices and systems are no longer sufficient to protect businesses, governments, and other organizations.
In past few years, Artificial Intelligence and Machine Learning had made a name for itself in the field of cyber security, helping
|
|||
|
2016-11-24 07:20:56 | THN Deal - Learn Wi-Fi Hacking & Penetration Testing [Online Course: 83% OFF] (lien direct) | Hacking Wi-Fi is not a trivial process, but it does not take too long to learn. If you want to learn WiFi Hacking and Penetration testing, you are at right place.
Don't associate hacking as a negative, as you can learn some hacking skills yourself to secure your networks and devices. WiFi hacking is an all time hot topic among hackers as well as penetration testers.
This week's featured deal
|
|||
|
2016-11-24 05:08:32 | Antivirus Firm Kaspersky launches Its Own Secure Operating System (lien direct) | The popular cyber security and antivirus company Kaspersky has unveiled its new hack-proof operating system: Kaspersky OS.
The new operating system has been in development for last 14 years and has chosen to design from scratch rather than relying on Linux.
Kaspersky OS makes its debut on a Kraftway Layer 3 Switch, CEO Eugene Kaspersky says in his blog post, without revealing many details
|
|||
|
2016-11-24 02:00:37 | FBI Hacked into 8,000 Computers in 120 Countries Using A Single Warrant (lien direct) | The FBI hacked into more than 8,000 computers in 120 different countries with just a single warrant during an investigation into a dark web child pornography website, according to a newly published court filings.
This FBI's mass hacking campaign is related to the high-profile child pornography Playpen case and represents the largest law enforcement hacking campaign known to date.
The warrant
|
|||
|
2016-11-23 10:24:19 | Your Headphones Can Spy On You - Even If You Have Disabled Microphone (lien direct) | Have you considered the possibility that someone could be watching you through your webcam? Or Listening to all your conversations through your laptop's microphone?
Even a bit of thought about this probability could make you feel incredibly creepy.
But most people think that they have a solution to these major issues i.e. simply covering their laptop's webcam and microphone with tape, just
|
|||
|
2016-11-23 01:49:30 | (Déjà vu) NTP DoS Exploit Released - Update Your Servers to Patch 10 Flaws (lien direct) | A proof-of-concept (PoC) exploit for a critical vulnerability in the Network Time Protocol daemon (ntpd) has been publically released that could allow anyone to crash a server with just a single maliciously crafted packet.
The vulnerability has been patched by the Network Time Foundation with the release of NTP 4.2.8p9, which includes a total of 40 security patches, bug fixes, and
|
|||
|
2016-11-22 00:53:49 | Hackers Steal Millions From European ATMs Using Malware That Spit Out Cash (lien direct) | ATM hackers who long relied on tactics of stealing payment card numbers and online banking credentials to steal millions are now targeting the bank itself to steal cash directly from the machines.
Earlier this year, a gang of cyber criminals infected several ATMs with malware in Taiwan and Thailand that caused the machines to spit out millions in cash, and the gang members then stood in front
|
|||
|
2016-11-22 00:17:07 | Oracle acquires DNS provider Dyn for more than $600 Million (lien direct) | Yes, Oracle just bought the DNS provider company that brought down the Internet last month.
Business software vendor Oracle announced on Monday that it is buying cloud-based Internet performance and Domain Name System (DNS) provider Dyn.
Dyn is the same company that was hit by a massive distributed denial of service (DDoS) attack by the Mirai botnet last month which knocked the entire
|
|||
|
2016-11-21 19:47:20 | Spammers using Facebook Messenger to Spread Locky Ransomware (lien direct) | If you came across any Facebook Message with an image file (exactly .SVG file format) send by any of your Facebook friends, just avoid clicking it.
An ongoing Facebook spam campaign is spreading malware downloader among Facebook users by taking advantage of innocent-looking SVG image file to infect computers.
If clicked, the file would eventually infect your PC with the nasty Locky
|
|||
|
2016-11-20 03:40:10 | Dangerous Rootkit found Pre-Installed on nearly 3 Million Android Phones (lien direct) | Here's some bad news for Android users again.
Nearly 3 Million Android devices worldwide are vulnerable to man-in-the-middle (MITM) attacks that could allow attackers to remotely execute arbitrary code with root privileges, turning over full control of the devices to hackers.
According to a new report from security rating firm BitSight, the issue is due to a vulnerability in the insecure
|
|||
|
2016-11-18 06:15:21 | Elon Musk Plans to Launch 4,425 Satellites to provide Global Internet from Space (lien direct) | Big tech companies, including Facebook, Google, and Microsoft, are in the race of bringing Internet connectivity to unconnected parts of the world through wireless devices, flying drones, high-altitude balloons, and laser beams.
But, SpaceX founder Elon Musk has big plans for bringing low-cost Internet service worldwide, and it all starts in space.
Private rocket launch
|
|||
|
2016-11-18 02:03:57 | 3 Mobile UK Hacked – 6 Million Customers\' Private Data at risk (lien direct) | Three, one of UK's biggest mobile operators, has become the latest victim of a massive data breach that reportedly left the personal information and contact details of 6 Million of its customers exposed.
The company admitted the data breach late Thursday, saying that computer hackers gained access to a Three Mobile customer phone upgrade database containing the account details of nearly 6
|
|||
|
2016-11-18 01:17:41 | iPhone Secretly Sends Your Call History to Apple Even If iCloud Backups are Turned Off (lien direct) | In the fight against encryption, Apple has positioned itself as a staunch defender of its user privacy by refusing the federal officials to provide encryption backdoors into its products, as well as implementing better encryption for its products.
However, a new report from a security firm suggests Apple's online syncing service iCloud secretly stores logs of its users' private information
|
|||
|
2016-11-17 01:14:58 | New Hack: How to Bypass iPhone Passcode to Access Photos and Messages (lien direct) | Setting a passcode on your iPhone is the first line of defense to help prevent other people from accessing your personal details.
However, it's pretty much easy for anyone with access to your iPhone to bypass the passcode protection (doesn't matter if you configured Touch ID or not) and access your personal photos and messages.
A new critical security flaw discovered in iOS 8 and newer,
|
|||
|
2016-11-16 11:09:03 | Microsoft Joins The Linux Foundation - Turns Love Affair Into a Relationship (lien direct) | You won't believe your eyes while reading this, but this is true. Microsoft just joined the Linux Foundation as a high-paying Platinum member.
Microsoft's love with open source community is embracing as time passes. At its first Connect event in 2013, the company launched Visual Studio 2013. A year later, Microsoft open sourced .NET, and last year, it open sourced the Visual Studio Code
|
|||
|
2016-11-16 08:53:21 | This $5 Device Can Hack your Password-Protected Computers in Just One Minute (lien direct) | You need to be more careful next time while leaving your computer unattended at your office, as it cost hackers just $5 and only 30 seconds to hack into any computer.
Well-known hardware hacker Samy Kamkar has once again devised a cheap exploit tool, this time that takes just 30 seconds to install a privacy-invading backdoor into your computer, even if it is locked with a strong password.
|
|||
|
2016-11-16 02:11:38 | Hack Allows Linux Root Shell Just By Pressing \'ENTER\' for 70 Seconds (lien direct) | A hacker with little more than a minute can bypass the authentication procedures on some Linux systems just by holding down the Enter key for around 70 seconds.
The result? The act grants the hacker a shell with root privileges, which allows them to gain complete remote control over encrypted Linux machine.
The security issue relies due to a vulnerability (CVE-2016-4484) in the
|
|||
|
2016-11-15 22:46:15 | Pre-installed Backdoor On 700 Million Android Phones Sending Users\' Data To China (lien direct) | Do you own an Android smartphone? You could be one of those 700 Million users whose phone is secretly sending text messages to China every 72 hours.
You heard that right. Over 700 Million Android smartphones contain a secret 'backdoor' that surreptitiously sends all your text messages, call log, contact list, location history, and app data to China every 72 hours.
Security researchers from
|
|||
|
2016-11-15 09:39:14 | Dutch Hacker Who Almost Broke The Internet Escapes Jail (lien direct) | The Dutch hacker, who in 2013 was accused of launching the biggest cyberattack to date against the anti-spam group Spamhaus, escaped prison Monday even after he was sentenced to nearly 8 months in jail because most of his term was suspended.
Sven Olaf Kamphuis, 39, was arrested in April 2013 by Spanish authorities in Barcelona based on a European arrest warrant for launching massive
|
|||
|
2016-11-15 00:49:49 | WhatsApp Adds​ ​2-Step Verification Passcode - Enable this Security Feature (lien direct) | WhatsApp has introduced a new security feature that fixes a loophole in the popular messaging platform, which if exploited, could allow an attacker to hijack victim's account with just knowing the victim's phone number and some hacking skills.
The attack does not exploit any vulnerability in WhatsApp; instead, it relies on the way the account setup mechanism works.
WhatsApp allows users to sign
|
|||
|
2016-11-14 10:52:07 | Wi-Fi Signal Interference Can Leak Your Passwords and Keystrokes (lien direct) | Hackers can steal your sensitive information, such as your Passwords, PINs and Keystrokes, from your phone by observing changes in the wireless signal as you enter them into your smartphones.
A group of researchers from the Shanghai Jaio Tong University, the University of South Florida and the University of Massachusetts at Boston have demonstrated a new technique that can reveal private
|
|||
|
2016-11-14 02:50:39 | Even A Single Computer Can Take Down Big Servers Using BlackNurse Attack (lien direct) | Yes, you only need a single laptop with a decent internet connection, rather a massive botnet, to launch overwhelming denial of service (DoS) attacks in order to bring down major Internet servers and modern-day firewalls.
Researchers at TDC Security Operations Center have discovered a new attack technique that lone attackers with limited resources (in this case, a laptop and at least 15Mbps
|
|||
|
2016-11-14 00:51:21 | Over 300 Million AdultFriendFinder Accounts Exposed in Massive Data Breach (lien direct) | Adult Friend Finder, a casual dating website with the tagline "hookup, find sex or meet someone hot now," has suffered another massive data breach, but this time it is much worse than the last year.
Over 300 Million AdultFriendFinder accounts have reportedly been exposed in a massive data breach that hit adult dating and entertainment company Friend Finder Network.
Friend Finder Network is
|
|||
|
2016-11-12 00:44:28 | Russian Court bans LinkedIn in Russia; Facebook and Twitter Could be Next (lien direct) | As reported late October, the world's largest online professional network LinkedIn is going to ban in Russia beginning Monday following a Moscow court decision this week that found Microsoft-owned LinkedIn to be in violation of the country's data protection laws.
Here's why LinkedIn is facing ban in Russia:
In July 2014, Russia approved amendments to the Russian Personal Data Law that came
|
|||
|
2016-11-11 23:04:18 | Facebook Bug Declares Millions of Users Dead, Including Zuckerberg! (lien direct) | Last night, Facebook declared everyone dead, including the company's CEO Mark Zuckerberg, in a massive memorial 'remembering' profile glitch.
Well, that's awkward.
Despite being very much alive, Facebook users, when logged on to their accounts on Friday afternoon, found their accounts turned to a "memorialized account," strongly suggesting that they are dead to everyone who visits their
|
|||
|
2016-11-11 10:25:14 | Google Pixel Phone Hacked in 60 Seconds at PwnFest 2016 (lien direct) | The brand new Android smartphone launched by Google just a few months back has been hacked by Chinese hackers just in less than a minute.
Yes, the Google's latest Pixel smartphone has been hacked by a team white-hat hackers from Qihoo 360, besides at the 2016 PwnFest hacking competition in Seoul.
The Qihoo 360 team demonstrated a proof-of-concept exploit that used a zero-day vulnerability in
|
|||
|
2016-11-11 08:47:56 | 5 Major Russian Banks Hit With Powerful DDoS Attacks (lien direct) | Distributed Denial of Service (DDoS) attacks have risen enormously in past few months and, mostly, they are coming from hacked and insecure internet-connected devices, most commonly known as Internet of Things (IoT).
Recent DDoS attack against DNS provider Dyn that brought down a large chunk of the Internet came from hacked and vulnerable IoT devices such as DVRs, security cameras, and smart
|
|||
|
2016-11-11 01:10:14 | Warning: Beware of Post-Election Phishing Emails Targeting NGOs and Think Tanks (lien direct) | Just a few hours after Donald Trump won the 2016 US Presidential Election, a hacking group launched a wave of cyber attacks targeting U.S.-based policy think-tanks with a new spear phishing campaign designed to fool victims into installing malware.
The group of nation-state hackers, also known as Cozy Bear, APT29, and CozyDuke, is the one of those involved in the recent data breach of the
|
APT 29 | ||
|
2016-11-10 10:31:29 | Facebook Buys Leaked Passwords From Black Market, But Do You Know Why? (lien direct) | Facebook is reportedly buying stolen passwords that hackers are selling on the underground black market in an effort to keep its users' accounts safe.
On the one hand, we just came know that Yahoo did not inform its users of the recently disclosed major 2014 hacking incident that exposed half a billion user accounts even after being aware of the hack in 2014.
On the other hand, Facebook
|
Yahoo | ||
|
2016-11-10 10:03:33 | OpenSSL Releases Patch For "High" Severity Vulnerability (lien direct) | As announced on Tuesday, the OpenSSL project team released OpenSSL version 1.1.0c that addresses three security vulnerabilities in its software.
The most serious of all is a heap-based buffer overflow bug (CVE-2016-7054) related to Transport Layer Security (TLS) connections using *-CHACHA20-POLY1305 cipher suites.
The vulnerability, reported by Robert Święcki of the Google Security Team on
|
|||
|
2016-11-09 23:33:37 | SWIFT Hack: Bangladesh Bank Recovers $15 Million from a Philippines Casino (lien direct) | Part of the $81 Million stolen from Bangladesh bank's New York Federal Reserve account earlier this year in the wake of the major malware attack on the SWIFT interbank transfer network has been tracked down to a casino in the Philippines.
SWIFT, or Society for Worldwide Interbank Telecommunication, is a global financial messaging system that thousands of banks and organizations around the
|
|||
|
2016-11-09 09:12:11 | Microsoft Patches Windows Zero-Day Flaw Disclosed by Google (lien direct) | Microsoft was very upset with Google last week when its Threat Analysis Group publically disclosed a critical Windows kernel vulnerability (CVE-2016-7255) that had yet to be patched.
The company criticized Google's move, claiming that the disclosure of the vulnerability, which was being exploited in the wild, put its customers "at potential risk."
The vulnerability affects
|
|||
|
2016-11-09 03:23:42 | DDoS Attack Takes Down Central Heating System Amidst Winter In Finland (lien direct) | Just Imaging - What if, you enter into your home from a chilling weather outside, and the heating system fails to work because of a cyber attack, leaving you in the sense of panic?
The same happened late last month when an attack knocks heating system offline in Finland.
Last week, a Distributed Denial of Service (DDoS) attack led to the disruption of the heating systems for at least two
|
|||
|
2016-11-09 00:25:46 | Over 300,000 Android Devices Hacked Using Chrome Browser Vulnerability (lien direct) | A vulnerability in Chrome for Android is actively being exploited in the wild that allows hackers to quietly download banking trojan apps (.apk) onto victim's' device without their confirmation.
You might have encountered a pop-up advertisement that appears out of nowhere and surprise you that your mobile device has been infected with a dangerous virus and instructs you to install a security
|
|||
|
2016-11-08 00:33:31 | Facebook agrees to Stop using UK Users\' WhatsApp Data for Targeted Ads (lien direct) | In August, Facebook introduced a hugely controversial data sharing plan to start harvesting data from its WhatsApp messaging app from September 25 for delivering more relevant ads on the social network.
Many users were not happy with the move, because there was no real way of opting out from the data sharing – WhatsApp users could only do so within a short period – and even if users did opt
|
|||
|
2016-11-07 23:08:57 | \'Web Of Trust\' Browser Add-On Caught Selling Users\' Data - Uninstall It Now (lien direct) | Browser extensions have become a standard part of the most popular browsers and essential part of our lives for surfing the Internet.
But not all extensions can be trusted.
One such innocent looking browser add-on has been caught collecting browsing history of millions of users and selling them to third-parties for making money.
An investigation by German television channel
|
|||
|
2016-11-07 10:09:57 | Wikileaks Gets DDoSed after Leaking 8,200 DNC Emails One Day before U.S. Election (lien direct) | With just two days before the presidential election, WikiLeaks late Sunday night published a new trove of emails apparently hacked from the Democratic National Committee (DNC).
The most recent dump of more than 8,000 emails came after the whistleblowing site, on a daily basis over last four weeks, has already leaked over 50,000 emails stolen from the key figure in the DNC – Hillary Clinton's
|
|||
|
2016-11-07 05:43:27 | Tesco Bank Hacked - Cyber Fraudsters Stole Money From 20,000 Accounts (lien direct) | Almost 20,000 Tesco Bank customers have had their money stolen from their accounts after the banking arm of UK's biggest retailer fall victim to a hacking attack this weekend.
As a result of the hack, Tesco Bank has frozen online transactions in an attempt to protect its customers from, what it described as, the “online criminal activity.â€
However, customers can still use their debit and
|
|||
|
2016-11-07 04:23:54 | China Passes Cybersecurity Law to Tighten its Control over the Internet (lien direct) | China has long been known for its strict censorship policies, which has already made it difficult for foreign companies to do business in the world's most populous country of more than 1.35 Billion people.
Now, the Chinese government has approved a broad new controversial cybersecurity regulations that would further strengthen the country's censorship regime, making it more difficult for
|
|||
|
2016-11-07 02:01:05 | Websites of Indian Embassy in 7 Countries Hacked; Database Leaked Online (lien direct) | Indian embassy websites in seven different countries have been hacked, and attackers have leaked personal data, including full name, residential address, email address, passport number and phone number, of Indian citizens living abroad.
This incident is extremely worrying because it involves diplomatic personnel working in the embassies that have always been a favorite target of
|
|||
|
2016-11-05 12:03:35 | More Insights On Alleged DDoS Attack Against Liberia Using Mirai Botnet (lien direct) | On Thursday, we compiled a story based on research published by a British security expert reporting that some cyber criminals are apparently using Mirai Botnet to conduct DDoS attacks against the telecommunication companies in Liberia, a small African country.
In his blog post, Kevin Beaumont claimed that a Liberian transit provider confirmed him about the DDoS attack of more than 500 Gbps
|
|||
|
2016-11-04 23:12:08 | Over 1 Billion Mobile App Accounts can be Hijacked Remotely with this Simple Hack (lien direct) | Security researchers have discovered a way to target a huge number of Android and iOS apps that could allow them to remotely sign into any victim's mobile app account without any knowledge of the victim.
A group of three researchers – Ronghai Yang, Wing Cheong Lau, and Tianyu Liu – from the Chinese University of Hong Kong has found [PPT] that most of the popular mobile apps that support
|
|||
|
2016-11-04 09:58:04 | Privatoria - Protect Your Privacy Online with Fast and Encrypted VPN Service (lien direct) | Today, most of you surf the web unaware of the fact that websites collect your data and track your locations and makes millions by sharing your search histories, location data, and buying habits with advertisers and marketers.
And if this isn't enough, there are hackers and cyber criminals out there who have the ability to easily steal your sensitive and personal data from the ill-equipped
|
|||
|
2016-11-04 07:28:37 | Learn Python Online - From Scratch to Penetration Testing (lien direct) | When we started our brand new THN Deals Store last week on the special occasion of company's 6th Anniversary, we introduced its very first product, Professional Hacking Certification Package, and received great response from our readers.
Thank you!
If you have not yet, you can still get this deal - Computer Hacker Professional Certification Package - at 96% discount.
This Package offers you
|
|||
|
2016-11-04 02:01:03 | Wi-Fi can be turned into IMSI Catcher to Track Cell Phone Users Everywhere (lien direct) | Here's a new danger to your smartphone security: Your mobile device can be hijacked and tracked without your knowledge.
Remember Stingrays?
The controversial cell phone spying tool, also known as "IMSI catchers," has long been used by law enforcement to track and monitor mobile users by mimicking a cellphone tower and tricking their devices to connect to them. Sometimes it even intercepts
|
|||
|
2016-11-03 12:15:10 | Someone is Using Mirai Botnet to Shut Down Internet for an Entire Country (lien direct) | Someone is trying to take down the whole Internet of a country by launching massive distributed denial-of-service (DDoS) attacks using a botnet of insecure IoT devices infected by the Mirai malware.
It all started early October when a cybercriminal publically released the source code of Mirai – a piece of nasty IoT malware designed to scan for insecure IoT devices and enslaves them into a
|
|||
|
2016-11-03 04:17:35 | Hundreds Of Operations Canceled After Malware Hacks Hospitals Systems (lien direct) | Computer viruses do not discriminate.
They are not just hacking your email and online banking accounts anymore.
Computer viruses do not distinguish between a personal computer or a hospital machine delivering therapy to patients - and the results could prove deadly.
Cyber attacks on hospitals have emerged as a significant cyber security risk in 2016, which not only threaten highly sensitive
|
|||
|
2016-11-03 01:21:58 | Critical Flaws in MySQL Give Hackers Root Access to Server (Exploits Released) (lien direct) | Over a month ago we reported about two critical zero-day vulnerabilities in the world's 2nd most popular database management software MySQL:
MySQL Remote Root Code Execution (CVE-2016-6662)
Privilege Escalation (CVE-2016-6663)
At that time, Polish security researcher Dawid Golunski of Legal Hackers who discovered these vulnerabilities published technical details and proof-of-concept exploit
|
|||
|
2016-11-02 09:33:47 | 19-Year-Old Teenage Hacker Behind DDoS-for-Hire Service Pleads Guilty (lien direct) | Due to the worldwide promotion of Mirai botnet that knocked down half of the Internet last Friday, hackers and even script kiddies have started creating their own botnet networks by hacking millions of IoT devices and selling them as DDoS-for-hire service to overwhelm targets with data.
A 19-year-old student from Hertford has pled guilty to running one such DDoS-for-hire service that shortly
|
To see everything:
Our RSS (filtrered)
