Posts


Mar. 10, 2018

SgxSpectre Attack Can Extract Data from Intel SGX Enclaves

SgxSpectre Attack Can Extract Data from Intel SGX Enclaves

A new variation of the Spectre attack has been revealed this week by six scientists from the Ohio State University. Named SgxSpectre, researchers say this attack can extract information from Intel SGX enclaves. Intel Software Guard eXtensions (SGX) is a feature of modern Intel processors that allow an application to create so-called enclaves.

This enclave is a hardware-isolated section of the CPU’s processing memory where applications can run operations that deal with extremely sensitive details, such as encryption keys, passwords, user data, and more.

Mar. 10, 2018

Potent malware that hid for six years spread through routers

Potent malware that hid for six years spread through routers

Slingshot—which gets its name from text found inside some of the recovered malware samples—is among the most advanced attack platforms ever discovered, which means it was likely developed on behalf of a well-resourced country, researchers with Moscow-based Kaspersky Lab reported Friday. The sophistication of the malware rivals that of Regin—the advanced backdoor that infected Belgian telecom Belgacom and other high-profile targets for years—and Project Sauron, a separate piece of malware suspected of being developed by a nation-state that also remained hidden for years.

Mar. 10, 2018

Hackers, Not Users, Lose Money in Attempted Cryptocurrency Exchange Heist

Hackers, Not Users, Lose Money in Attempted Cryptocurrency Exchange Heist

Binance, one of the largest cryptocurrency exchanges on the Internet, said today that hackers and a well-executed phishing campaign are to blame for the Bitcoin sell-offs from yesterday’s afternoon.

Source: bleepingcomputer.com

Mar. 10, 2018

FCC Accuses Stealthy Startup of Launching Rogue Satellites

FCC Accuses Stealthy Startup of Launching Rogue Satellites

On 12 January, a Polar Satellite Launch Vehicle (PSLV) rocket blasted off from India’s eastern coast. While its primary cargo was a large Indian mapping satellite, dozens of secondary CubeSats from other countries travelled along with it. Seattle-based Planetary Resources supplied a spacecraft that will test prospecting tools for future asteroid miners, Canadian company Telesat launched a broadband communications satellite, and a British Earth-observation mission called Carbonite will capture high-definition video of the planet’s surface.

Mar. 10, 2018

APT Hackers Infect Routers to Covertly Implant Slingshot Spying Malware

APT Hackers Infect Routers to Covertly Implant Slingshot Spying Malware

Researchers Uncovers a Previously Undetected Highly-Skilled APT Hacking Group Operating Covertly Since 2012, Infecting Mikrotik Routers to Implant Advance ‘Slingshot’ Spying Malware

Source: thehackernews.com

Mar. 10, 2018

Getting any Facebook user’s friend list and partial payment card details

Getting any Facebook user’s friend list and partial payment card details

Facebook has a GraphQL endpoint which can only be used by some of their own first-party applications. Generally, you need a user (or page) access_token to query the GraphQL endpoint.

I have decided to try using Facebook for Android application’s client token, but the endpoint returned an error message:

Source: josipfranjkovic.com

Mar. 10, 2018

ISPs Caught Injecting Cryptocurrency Miners and Spyware In Some Countries

ISPs Caught Injecting Cryptocurrency Miners and Spyware In Some Countries

Governments and Internet Service Providers in Turkey, Syria and Egypt Caught Infecting Citizens with Cryptocurrency Mining and surveillance malware.

Source: thehackernews.com

Mar. 10, 2018

Echidna, a smart fuzzer for Ethereum

Echidna, a smart fuzzer for Ethereum

Today we released Echidna, our next-generation EVM smart fuzzer at EthCC. It’s the first-ever fuzzer to target smart contracts, and has powerful features like abstract state-machine modeling and automatic minimal test case generation. We’ve been working on it for quite some time, and are thrilled to finally share it with the world.

Source: trailofbits.com

Mar. 10, 2018

New traces of Hacking Team in the wild

New traces of Hacking Team in the wild

The capabilities of its flagship product, the Remote Control System (RCS), include extracting files from a targeted device, intercepting emails and instant messaging, as well as remotely activating a device’s webcam and microphone. The company has been criticized for selling these capabilities to authoritarian governments – an allegation it has consistently denied.

Source: welivesecurity.com

Mar. 9, 2018

Russian hackers stole 860,000 euros from 32 ATMs belonging to the Raiffeisen Romania in just one night

Russian hackers stole 860,000 euros from 32 ATMs belonging to the Raiffeisen Romania in just one night

Cybercriminals stole 3.8 million slopes (860,000 euros) from 32 ATMs belonging to the Raiffeisen Romania bank using an infected RTF document. The criminal organization led by Dmitriy Kvasov operated in Romania, the gang stole the money in just one night in 2016.

Source: securityaffairs.co

Mar. 9, 2018

This Is What Happens When Bitcoin Miners Take Over Your Town

This Is What Happens When Bitcoin Miners Take Over Your Town

Hands on the wheel, eyes squinting against the winter sun, Lauren Miehe eases his Land Rover down the main drag and tells me how he used to spot promising sites to build a bitcoin mine, back in 2013, when he was a freshly arrived techie from Seattle and had just discovered this sleepy rural community.

Source: politico.com

Mar. 9, 2018

Documents Prove Local Cops Have Bought Cheap iPhone Cracking Tech

Documents Prove Local Cops Have Bought Cheap iPhone Cracking Tech

GrayShift is a new lawful access company, with an ex-Apple engineer on its staff, that promises to break into the latest iPhones. At least one local police department has already signed up to its GrayKey service.

Source: vice.com

Mar. 9, 2018

Amazon Partnership with British Police Alarms Privacy Advocates

Amazon Partnership with British Police Alarms Privacy Advocates

A partnership with police will permit some Amazon Echo owners to report crimes directly through their smart speakers.

Source: theintercept.com

Mar. 8, 2018

New Cryptocurrency Mining Malware Infected Over 500,000 PCs in Just Few Hours

New Cryptocurrency Mining Malware Infected Over 500,000 PCs in Just Few Hours

Two days ago, Microsoft encountered a rapidly spreading cryptocurrency-mining malware that infected almost 500,000 computers within just 12 hours and successfully blocked it to a large extent. Dubbed Dofoil, aka Smoke Loader, the malware was found dropping a cryptocurrency miner program as payload on infected Windows computers that mines Electroneum coins, yet another cryptocurrency, for attackers using victims’ CPUs.

Mar. 8, 2018

Look-Alike Domains and Visual Confusion

Look-Alike Domains and Visual Confusion

Go ahead and click on the link above or cut-and-paste it into a browser address bar. If you’re using Google Chrome, Apple’s Safari, or some recent version of Microsoft‘s Internet Explorer or Edge browsers, you should notice that the address converts to “xn–80a7a.com.” This is called “punycode,” and it allows browsers to render domains with non-Latin alphabets like Cyrillic and Ukrainian.

Source: krebsonsecurity.com

Mar. 8, 2018

That Sketchy Steven Seagal-Endorsed ICO Is Under Siege By State Regulators

That Sketchy Steven Seagal-Endorsed ICO Is Under Siege By State Regulators

Bitcoiin—an Etheruem-based token that is not associated with Bitcoin—markets itself as the “next generation of Bitcoin” and is selling tokens to investors after recently completing an Initial Coin Offering (ICO) that the startup claims raised $75 million USD. “In actuality,” a cease-and-desist order filed on Wednesday by the State of new Jersey Bureau of Securities reads, “Bitcoiin is fraudulently offering unregistered securities in violation of the Securities Law.” Whoops!

Mar. 8, 2018

How Dutch Police Took Over Hansa, a Top Dark Web Market

How Dutch Police Took Over Hansa, a Top Dark Web Market

For anyone who has watched the last few years of cat-and-mouse games on the dark web’s black markets, the pattern is familiar: A contraband bazaar like the Silk Road attracts thousands of drug dealers and their customers, along with intense scrutiny from police and three-letter agencies. Authorities hunt down its administrators, and tear the site offline in a dramatic takedown—only to find that its buyers and sellers have simply migrated to the next dark-web market on their list.

Mar. 8, 2018

Spyware maker shuts down surveillance services after hacks

Spyware maker shuts down surveillance services after hacks

Retina-X has had it with the hacking. On Monday, it threw in the towel on all of the aforementioned tools. The company put an announcement at the top of its site saying that while no personal data was accessed during the year of attacks, some “photographic material” of TeenShield and PhoneSheriff customers had been exposed.

Source: sophos.com

Mar. 8, 2018

Corero Network discovered a Kill Switch for Memcached DDoS attacks

Corero Network discovered a Kill Switch for Memcached DDoS attacks

Memcached DDoS attacks made the headlines due to the magnitude observed in recent offensives. While two PoC exploits for Memcached DDoS attacks have been released online, experts at security firm Corero Network announced they have discovered a ‘kill switch’ to address the Memcached vulnerability.

Source: securityaffairs.co

Mar. 8, 2018

Unprompted, creepy laughter from Alexa is freaking out Echo users

Unprompted, creepy laughter from Alexa is freaking out Echo users

Don’t be alarmed! Your Alexa-enabled device may lapse into a sudden fit of giggles, but Amazon is aware of the problem. Recent reports detail a quirky bug that has Amazon’s virtual assistant Alexa laughing for no apparent reason, scaring the daylights out of unsuspecting users.

Source: arstechnica.com