“If you torture the data long enough, it will confess.” – Ronald Coase, Economist Big data. Data collection. Data mining. Data aggregation. Data technology. Data privacy. Data breach. What do all those big data terms mean and how are they…
Have you ever thought that it would be possible to stop a cyber attack before it happens? A startup company, Cylance, not only believes it is possible but it also has started an AI project to show us how. Meet…
Mega (data) breaches are a major public problem, even though the public may not be too interested in the subject. If you’re a user of popular social media such as LinkedIn, Myspace, Tumblr, and dating websites like BeautifulPeople, you shouldn’t…
Aleksandar Nikolic, a researcher at Cisco Talos, has discovered a vulnerability in PDFium, the default PDF reader in Google Chrome. The flaw is an arbitrary code execution one, and is outlined as CVE-2016-1681. The vulnerability can be exploited when a…
LinkedIn users in Europe should be extra careful, as a highly personalized malicious campaign has been started. The campaign’s payload is banking malware. Specific people have received tailored malicious emails in different languages. The users’ credentials that were offered for…
Rapid7, a security firm, has just released a vast report (“National Exposure Index: Inferring Internet Security Posture by Country through Port Scanning“) focused on the nations mostly exposed to risks of Internet-based attacks. Researchers found that wealthier and more developed…
Image Source: https://blog.checkpoint.com Facebook is far from invincible. In fact, it may be way too easy for attackers to exploit vulnerabilities, especially when it comes to its standard chat function and its separate Messenger app. This is exactly what CheckPoint…
Mega data breaches affect all kinds of users, even famous ones like Mark Zuckerberg. Apparently, a hacker from a group dubbed OurMine Team succeeded to take over Zuckerberg’s Twitter and Pinterest accounts, using credentials leaked during the major LinkedIn incident,…
If you’re running an outdated WordPress, Drupal or some other CMS, you are in high danger of hacking. What is worse is that Mossack Fonseca, the law firm associated with the Panama Papers breach, already became a victim in such…
How Much Would You Pay for a Windows 0-Day? Author: Diana Stoykova An attacker, going by the name BuggiCorp, claims to have found a way to exploit a serious, yet undocumented, vulnerability in every version of Windows from Windows 2000…
Ransomware is not the only online extortion that a victim can be put through. The FBI’s Crime Complaint Center (IC3) has just released a public alert concerning an increase in post-breach extortion attempts. The attacks are aimed at US citizens…
“Website is locked. Please transfer 1.4 BitCoin to address 3M6SQh8Q6d2j1B4JRCe2ESRLHT4vTDbSM9 to unlock content.” – This message is what users and website publishers see after a website is attacked with this nasty web ransomware. It has been reported by malware researchers…
Tor Browser 6.0 has just been released, and it’s now based on Firefox 45-ESR (Extended Support Release) and accordingly a better support for HTML5 is available. This release can be downloaded from Tor Project’s official page and also from their…
Do you remember the hacker going by the nickname Peace who recently offered for sale 117 million Linkedin credentials? The hacker is now doing the same with 65,469,298 million hashed and salted passwords, along with the email addresses, of Tumblr…
On the left – original Sberbank of Russia app, on the right – fake app; Image Source: TrendMicro Fanta SDK is one of the latest malicious threats aimed at Android users. This particular malware is pretty good at protecting itself…
We are in the midst of multiple data breaches and passwords being dumped on the Dark Web, as more popular websites become victims to such incidents. It’s only good when a company decides to take things in their own hands…
Have you heard of the lawsuit between Google and Oracle? Filed several years ago, the lawsuit Oracle America, Inc. v. Google, Inc. has now been resolved, in Google’s favor. A jury in California’s Northern District federal court just declared that…
If you’re an Android user, you should be extra careful since another dangerous malware, a banking Trojan, is currently targeting the operating system. McAfee researchers have called the threat SpyLocker. SpyLocker displays phishing pop-up windows with credential prompts addressed at…
Passwords will soon be obsolete, and Google’s Advanced Technology and Projects (ATAP) Project Abacus is here to show us how the future may actually happen. We’ve heard many infosec gurus claim that the password as we know it is coming…
Encryption continues to be the center of discussions – be it ransomware’s encryption, WhatsApp’s end-to-end encryption… or Apple’s encryption debate. Speaking of Apple, the company just rehired a mobile encryption pioneer, Jon Callas, quite possibly to address the pressure from…
