Expert insights. Personalized for you.
This hack targets the firmware on modern power supplies. academicpapers firmware hacking phonesYes, power supplies are also computers.). MORE
As expected, IoT devices are filled with vulnerabilities : As a thought experiment, Martin Hron, a researcher at security company Avast, reverse engineered one of the older coffee makers to see what kinds of hacks he could do with it. MORE
The sources, who spoke on condition of anonymity to discuss ongoing investigations, said the attackers used computer infrastructure and hacking tools previously deployed by state-backed Chinese cyberspies. […]. Uncategorized backdoors China cyberespionage FBI hacking Russia supply chai MORE
to hack back against cybercrimminals and hold nation-states responsible. After the recent ransomware attacks against Colonial Pipeline, JBS and others, there are new calls for the U.S. So what now? MORE
French police hacked EncroChat secure phones, which are widely used by criminals: Encrochat's phones are essentially modified Android devices, with some models using the "BQ Aquaris X2," an Android handset released in 2018 by a Spanish electronics company, according to the leaked documents. MORE
Uncategorized academic papers Amazon hacking voice recognitionAn Alexa can respond to voice commands it issues. This can be exploited : The attack works by using the device’s speaker to issue voice commands. MORE
atms banking cybercrime cybersecurity hacking malware northkorea MORE
The Norwegian government has blamed Russia for a hacking campaign that targeted the email accounts of parliament members. The post Norwegian Government Blames Russia for Hacking Campaign appeared first on Adam Levin. MORE
Lukasz Olejnik has a good essay on hacking weapons systems. Uncategorized cyberattack cyberweapons hacking infrastructure military national security policy weapons MORE
FireEye was hacked by — they believe — “a nation with top-tier offensive capabilities”: During our investigation to date, we have found that the attacker targeted and accessed certain Red Team assessment tools that we use to test our customers’ security. MORE
Apparently, a nation-state hacked Alaska’s Department of Health and Social Services. Uncategorized cyberespionage hacking healthcare leaks MORE
Pangu Lab in China just published a report of a hacking operation by the Equation Group (aka the NSA). It noticed the hack in 2013, and was able to map it with Equation Group tools published by the Shadow Brokers (aka some Russian group). MORE
artificialintelligence cheating hacking schoolsThe company Edgenuity sells AI systems for grading tests. Turns out that they just search for keywords without doing any actual semantic analysis. MORE
Hacking is as old as humanity. To date, hacking has exclusively been a human activity. After hacking humanity, AI systems will then hack other AI systems, and humans will be little more than collateral damage. Separately, AIs can engage in something called reward hacking. MORE
The ICRC said the hacked servers contained data relating to the organization’s Restoring Family Links services, which works to reconnect people separated by war, violence, migration and other causes. In their online statement about the hack (updated on Feb. MORE
Lance Vick suggesting that students hack their schools' surveillance systems. generations hacking privacy schools surveillanceThis is an ethical minefield that I feel students would be well within their rights to challenge, and if needed, undermine," he said. MORE
In what is known to our Cybersecurity Insiders, the hack occurred because of a mis-configuration in the email server of the federal organizations that made many individuals receive spammed emails coming from departments such as Homeland Security, but were actually sent from the @ic.fbi.gov domain. MORE
Two Harvard undergraduates completed a project where they went out on the Dark Web and found a bunch of stolen datasets. Then they correlated all the information , and then combined it with additional, publicly available information. No surprise: the result was much more detailed and personal. MORE
Uncategorized cybersecurity hacking malware Microsoft RussiaTwo reports this week. MORE
This advisory provides Common Vulnerabilities and Exposures (CVEs) known to be recently leveraged, or scanned-for, by Chinese state-sponsored cyber actors to enable successful hacking operations against a multitude of victim networks. Uncategorized China hacking NSA vulnerabilities MORE
The cell phones of a thousand Brazilians, including senior government officials, was hacked -- seemingly by actors much less sophisticated than rival governments. Brazil's federal police arrested four people for allegedly hacking 1,000 cellphones belonging to various government officials, including that of President Jair Bolsonaro. brazil cellphones cybersecurity hacking MORE
I just don’t think it’s possible to create a hack-proof computer system, especially when the system is physically in the hands of the hackers. Uncategorized exploits gaming consoles hacking reverse engineering MORE
cars classbreaks hacking vulnerabilitiesInteresting story of a class break against the entire Tesla fleet. MORE
Over the past few weeks, three of the longest running and most venerated Russian-language online forums serving thousands of experienced cybercriminals have been hacked. A note posted by a Verified forum administrator concerning the hack of its registrar in January. MORE
Security Security / Cyberattacks and HacksIt was a year of ransomware, surveillance, data breaches, and yes, more ransomware. MORE
The post Details on VirusTotal Hacking appeared first on Cybersecurity Insiders. VirusTotal, an anti-malware solution provider, is now offering a service that can collect credentials stolen by malicious software aka malware. MORE
Really good long article about the Chinese hacking of RSA, Inc. Uncategorized China cybersecurity hacking RSA supply chainThey were able to get copies of the seed values to the SecurID authentication token, a harbinger of supply-chain attacks to come. MORE
Interesting paper on recent hack-and-leak operations attributed to the UAE: Abstract: Four hack-and-leak operations in U.S. academicpapers cybersecurity hacking leaks nationalsecuritypolicy qatar saudiarabia unitedarabemirates MORE
This is an impressive hack: Security researchers Ralf-Philipp Weinmann of Kunnamon, Inc. Uncategorized cars drones hacking vulnerabilities Wi-Fi MORE
national interests will now have to report when they’re hacked or they pay ransomware, according to new rules approved by Congress. […]. Uncategorized cyberattack cyberespionage cybersecurity defense espionage hacking infrastructure laws ransomware MORE
A vulnerability in the Accellion file-transfer program is being used by criminal groups to hack networks worldwide. Uncategorized hacking patching supply chain vulnerabilities MORE
This hack was possible because the McDonald's app didn't authenticate the server, and just did whatever the server told it to do: McDonald's receipts in Germany end with a link to a survey page. authentication hacking vulnerabilities MORE
The post Hacked IoT Devices Livestreaming Swatting Attacks: FBI appeared first on Adam Levin. Data Security Technology featured hacking IoT swatHackers are using internet-connected home devices to livestream “swatting” attacks, according to the FBI. MORE
Daniel's Hosting, which hosts about 7,600 dark web portals for free, has been hacked and is down. darkweb hackingIt's unclear when, or if, it will be back up. MORE
NSO Group, the Israeli cyberweapons arms manufacturer behind the Pegasus spyware — used by authoritarian regimes around the world to spy on dissidents, journalists, human rights workers, and others — was hacked. MORE
Security Security / Cyberattacks and HacksFrom “IT Army” DDoS attacks to custom malware, the country has become a target like never before. MORE
accountability breaches disclosure hacking hotelsMarriott announced another data breach, this one affecting 5.2 MORE
FireEye didn’t explicitly say its own intrusion was the result of the SolarWinds hack, but the company confirmed as much to KrebsOnSecurity earlier today. 13, news broke that the SolarWinds hack resulted in attackers reading the email communications at the U.S. MORE
Five researchers hacked Apple Computer’s networks — not their products — and found fifty-five vulnerabilities. Uncategorized Apple hacking incentives vulnerabilities MORE
Uncategorized cybersecurity hacking Iran phishing MORE
The New York Times has an in-depth article on the latest information about the SolarWinds hack (not a great name, since it’s much more far-reaching than that). There is also no indication yet that any human intelligence alerted the United States to the hacking. MORE
Uncategorized academic papers Adobe hacking signaturesInteresting paper: “ Shadow Attacks: Hiding and Replacing Content in Signed PDFs “: Abstract: Digitally signed PDFs are used in contracts and invoices to guarantee the authenticity and integrity of their content. MORE
Hacking Related Topics Schneier on Security
DECEMBER 9, 2020
FireEye was hacked by — they believe — “a nation with top-tier offensive capabilities”: During our investigation to date, we have found that the attacker targeted and accessed certain Red Team assessment tools that we use to test our customers’ security.
Schneier on Security
JULY 2, 2021
Uncategorized cybersecurity hacking malware Microsoft RussiaTwo reports this week.
This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.
Schneier on Security
APRIL 26, 2021
Hacking is as old as humanity. To date, hacking has exclusively been a human activity. After hacking humanity, AI systems will then hack other AI systems, and humans will be little more than collateral damage. Separately, AIs can engage in something called reward hacking.
Schneier on Security
MARCH 26, 2021
Lukasz Olejnik has a good essay on hacking weapons systems. Uncategorized cyberattack cyberweapons hacking infrastructure military national security policy weapons
Schneier on Security
OCTOBER 12, 2020
Five researchers hacked Apple Computer’s networks — not their products — and found fifty-five vulnerabilities. Uncategorized Apple hacking incentives vulnerabilities
Schneier on Security
MARCH 7, 2022
Uncategorized academic papers Amazon hacking voice recognitionAn Alexa can respond to voice commands it issues. This can be exploited : The attack works by using the device’s speaker to issue voice commands.
Schneier on Security
JULY 20, 2021
NSO Group, the Israeli cyberweapons arms manufacturer behind the Pegasus spyware — used by authoritarian regimes around the world to spy on dissidents, journalists, human rights workers, and others — was hacked.
Schneier on Security
NOVEMBER 10, 2021
I just don’t think it’s possible to create a hack-proof computer system, especially when the system is physically in the hands of the hackers. Uncategorized exploits gaming consoles hacking reverse engineering
Schneier on Security
SEPTEMBER 29, 2020
As expected, IoT devices are filled with vulnerabilities : As a thought experiment, Martin Hron, a researcher at security company Avast, reverse engineered one of the older coffee makers to see what kinds of hacks he could do with it.
Schneier on Security
JULY 13, 2021
Uncategorized cybersecurity hacking Iran phishing
Schneier on Security
SEPTEMBER 3, 2020
cars classbreaks hacking vulnerabilitiesInteresting story of a class break against the entire Tesla fleet.
Schneier on Security
MARCH 23, 2021
A vulnerability in the Accellion file-transfer program is being used by criminal groups to hack networks worldwide. Uncategorized hacking patching supply chain vulnerabilities
Schneier on Security
JULY 3, 2020
French police hacked EncroChat secure phones, which are widely used by criminals: Encrochat's phones are essentially modified Android devices, with some models using the "BQ Aquaris X2," an Android handset released in 2018 by a Spanish electronics company, according to the leaked documents.
Schneier on Security
MARCH 3, 2022
Pangu Lab in China just published a report of a hacking operation by the Equation Group (aka the NSA). It noticed the hack in 2013, and was able to map it with Equation Group tools published by the Shadow Brokers (aka some Russian group).
Schneier on Security
SEPTEMBER 4, 2020
artificialintelligence cheating hacking schoolsThe company Edgenuity sells AI systems for grading tests. Turns out that they just search for keywords without doing any actual semantic analysis.
Krebs on Security
MARCH 4, 2021
Over the past few weeks, three of the longest running and most venerated Russian-language online forums serving thousands of experienced cybercriminals have been hacked. A note posted by a Verified forum administrator concerning the hack of its registrar in January.
Schneier on Security
SEPTEMBER 1, 2020
atms banking cybercrime cybersecurity hacking malware northkorea
Schneier on Security
FEBRUARY 11, 2022
Uncategorized hacking Ireland ransomware reports security policies
Schneier on Security
MARCH 8, 2021
Uncategorized academic papers Adobe hacking signaturesInteresting paper: “ Shadow Attacks: Hiding and Replacing Content in Signed PDFs “: Abstract: Digitally signed PDFs are used in contracts and invoices to guarantee the authenticity and integrity of their content.
Schneier on Security
JULY 21, 2020
This hack targets the firmware on modern power supplies. academicpapers firmware hacking phonesYes, power supplies are also computers.).
Schneier on Security
AUGUST 13, 2020
Interesting paper on recent hack-and-leak operations attributed to the UAE: Abstract: Four hack-and-leak operations in U.S. academicpapers cybersecurity hacking leaks nationalsecuritypolicy qatar saudiarabia unitedarabemirates
Schneier on Security
APRIL 2, 2020
accountability breaches disclosure hacking hotelsMarriott announced another data breach, this one affecting 5.2
Schneier on Security
MAY 4, 2021
This is an impressive hack: Security researchers Ralf-Philipp Weinmann of Kunnamon, Inc. Uncategorized cars drones hacking vulnerabilities Wi-Fi
Schneier on Security
DECEMBER 30, 2019
Lance Vick suggesting that students hack their schools' surveillance systems. generations hacking privacy schools surveillanceThis is an ethical minefield that I feel students would be well within their rights to challenge, and if needed, undermine," he said.
Schneier on Security
APRIL 1, 2020
Daniel's Hosting, which hosts about 7,600 dark web portals for free, has been hacked and is down. darkweb hackingIt's unclear when, or if, it will be back up.
Schneier on Security
MAY 27, 2021
Really good long article about the Chinese hacking of RSA, Inc. Uncategorized China cybersecurity hacking RSA supply chainThey were able to get copies of the seed values to the SecurID authentication token, a harbinger of supply-chain attacks to come.
Schneier on Security
FEBRUARY 18, 2020
This hack was possible because the McDonald's app didn't authenticate the server, and just did whatever the server told it to do: McDonald's receipts in Germany end with a link to a survey page. authentication hacking vulnerabilities
Adam Levin
DECEMBER 30, 2020
The post Hacked IoT Devices Livestreaming Swatting Attacks: FBI appeared first on Adam Levin. Data Security Technology featured hacking IoT swatHackers are using internet-connected home devices to livestream “swatting” attacks, according to the FBI.
Schneier on Security
SEPTEMBER 21, 2021
Apparently, a nation-state hacked Alaska’s Department of Health and Social Services. Uncategorized cyberespionage hacking healthcare leaks
Schneier on Security
MARCH 15, 2022
national interests will now have to report when they’re hacked or they pay ransomware, according to new rules approved by Congress. […]. Uncategorized cyberattack cyberespionage cybersecurity defense espionage hacking infrastructure laws ransomware
Krebs on Security
FEBRUARY 16, 2022
The ICRC said the hacked servers contained data relating to the organization’s Restoring Family Links services, which works to reconnect people separated by war, violence, migration and other causes. In their online statement about the hack (updated on Feb.
Schneier on Security
JANUARY 5, 2021
The New York Times has an in-depth article on the latest information about the SolarWinds hack (not a great name, since it’s much more far-reaching than that). There is also no indication yet that any human intelligence alerted the United States to the hacking.
CyberSecurity Insiders
NOVEMBER 15, 2021
In what is known to our Cybersecurity Insiders, the hack occurred because of a mis-configuration in the email server of the federal organizations that made many individuals receive spammed emails coming from departments such as Homeland Security, but were actually sent from the @ic.fbi.gov domain.
Schneier on Security
JANUARY 30, 2020
Two Harvard undergraduates completed a project where they went out on the Dark Web and found a bunch of stolen datasets. Then they correlated all the information , and then combined it with additional, publicly available information. No surprise: the result was much more detailed and personal.
CyberSecurity Insiders
JANUARY 19, 2022
The post Details on VirusTotal Hacking appeared first on Cybersecurity Insiders. VirusTotal, an anti-malware solution provider, is now offering a service that can collect credentials stolen by malicious software aka malware.
Krebs on Security
DECEMBER 15, 2020
FireEye didn’t explicitly say its own intrusion was the result of the SolarWinds hack, but the company confirmed as much to KrebsOnSecurity earlier today. 13, news broke that the SolarWinds hack resulted in attackers reading the email communications at the U.S.
Schneier on Security
OCTOBER 21, 2020
This advisory provides Common Vulnerabilities and Exposures (CVEs) known to be recently leveraged, or scanned-for, by Chinese state-sponsored cyber actors to enable successful hacking operations against a multitude of victim networks. Uncategorized China hacking NSA vulnerabilities
Lohrman on Security
JUNE 13, 2021
to hack back against cybercrimminals and hold nation-states responsible. After the recent ransomware attacks against Colonial Pipeline, JBS and others, there are new calls for the U.S. So what now?
WIRED Threat Level
APRIL 27, 2022
Security Security / Cyberattacks and HacksFrom “IT Army” DDoS attacks to custom malware, the country has become a target like never before.
Adam Levin
OCTOBER 15, 2020
The Norwegian government has blamed Russia for a hacking campaign that targeted the email accounts of parliament members. The post Norwegian Government Blames Russia for Hacking Campaign appeared first on Adam Levin.
Schneier on Security
AUGUST 7, 2019
The cell phones of a thousand Brazilians, including senior government officials, was hacked -- seemingly by actors much less sophisticated than rival governments. Brazil's federal police arrested four people for allegedly hacking 1,000 cellphones belonging to various government officials, including that of President Jair Bolsonaro. brazil cellphones cybersecurity hacking
WIRED Threat Level
DECEMBER 24, 2021
Security Security / Cyberattacks and HacksIt was a year of ransomware, surveillance, data breaches, and yes, more ransomware.
218 
Let's personalize your content