Hacking and InfoSec - Cyber Security Informer

Threat actors target the infoSec community with fake PoC exploits

Security Affairs

MAY 22, 2022

Researchers uncovered a malware campaign targeting the infoSec community with fake Proof Of Concept to deliver a Cobalt Strike beacon. Researchers from threat intelligence firm Cyble uncovered a malware campaign targeting the infoSec community. SecurityAffairs – hacking, fake PoC). To nominate, please visit:? Pierluigi Paganini.

InfoSec

InfoSec Malware Cybercrime Information Security

US Helped Ukraine With Infosec—Story is ‘Dangerous Arrogance’

Security Boulevard

MARCH 10, 2022

cleverly anticipated the Russian invasion of Ukraine and skilfully helped the country shore up its defences against Russian hacking. The post US Helped Ukraine With Infosec—Story is ‘Dangerous Arrogance’ appeared first on Security Boulevard. Mainstream media has been full of stories about how the U.S.

InfoSec

InfoSec Media Hacking Social Engineering

BSidesPDX 2022 – Ben Kendall’s ‘Breaking Into Infosec Or, How I Hacked My Way Out Of Poverty’

Security Boulevard

NOVEMBER 6, 2022

The post BSidesPDX 2022 – Ben Kendall’s ‘Breaking Into Infosec Or, How I Hacked My Way Out Of Poverty’ appeared first on Security Boulevard. Our sincere thanks to BSidesPDX 2022 for publishing their outstanding conference videos on the organization's YouTube channel.

InfoSec

InfoSec Hacking Education Information Security

Friday Five: New Federal Compliance Requirement, a Russian Hacking Spree, & More

Digital Guardian

MARCH 15, 2024

This past week's InfoSec headlines were dominated by a high-profile, Kremlin-backed cyberattack, CISA and the OMB's new attestation form, the so-called "TikTok Bill," and more. Catch up on all the latest in this week's Friday Five!

InfoSec

InfoSec Hacking

Are our infosec controls sufficient?

Notice Bored

JUNE 25, 2021

begging questions about which infosec-related matters are particularly important, and how they stack up in relation to other business priorities, issues, pressures etc. In addition to the technical and human aspects of infosec, there are broader governance, strategic and commercial implications of [information] risk management and assurance.

InfoSec

InfoSec Risk Information Security Government

BSides Huntsville 2021 – David Hunt’s ‘Hack In Your Sleep’

Security Boulevard

MARCH 14, 2021

Many thanks to BSides Huntsville 2021 for publishing their tremendous conference videos on the organization's YouTube channel; one of the best BSides for this year, don't miss this 10-video infosec event. The post BSides Huntsville 2021 – David Hunt’s ‘Hack In Your Sleep’ appeared first on Security Boulevard.

Hacking

Hacking InfoSec Education Information Security

INC RANSOM ransomware gang claims to have breached Xerox Corp

Security Affairs

DECEMBER 30, 2023

The INC RANSOM ransomware group claims to have hacked the American multinational corporation Xerox Corp. The INC RANSOM ransomware group claims responsibility for hacking the American multinational corporation Xerox Corp and threatens to disclose the alleged stolen data. Xerox Corp provides document management solutions worldwide.

Ransomware

Ransomware InfoSec Data breaches Hacking

Lapsus$ gang claims to have hacked Microsoft source code repositories

Security Affairs

MARCH 21, 2022

Microsoft is investigating claims that the Lapsus$ hacking group breached its internal Azure DevOps source code repositories. campuscodi @vxunderground #cybersecurity #infosec @Microsoft pic.twitter.com/FAYl9Y29QT — Dominic Alvieri (@AlvieriD) March 20, 2022. SecurityAffairs – hacking, Microsoft). Pierluigi Paganini.

Hacking

Hacking Telecommunications InfoSec Cybercrime

An initial access broker claims to have hacked Deutsche Bank

Security Affairs

NOVEMBER 11, 2022

An initial access broker claims to have hacked Deutsche Bank and is offering access to its systems for sale on Telegram. A threat actor ( 0x_dump ) claims to have hacked the multinational investment bank Deutsche Bank and is offering access to its network for sale online. SecurityAffairs – hacking, Deutsche Bank).

Banking

Banking Hacking InfoSec Insurance

BSides Tallinn’s ‘Best Of BSides 2021’: BSides København 2021: Klaus Agnoletti’s ‘How I Hacked My Infosec Career For More Happiness, And How You Can Do The Same!’

Security Boulevard

DECEMBER 16, 2021

The post BSides Tallinn’s ‘Best Of BSides 2021’: BSides København 2021: Klaus Agnoletti’s ‘How I Hacked My Infosec Career For More Happiness, And How You Can Do The Same!’ ’ appeared first on Security Boulevard.

InfoSec

InfoSec Hacking Education Information Security

The Hacker Mind Podcast: Learn Competitive Hacking with picoCTF

Security Boulevard

SEPTEMBER 10, 2021

PPP wanted to give their past high school selves the infosec education they didn’t have. The post The Hacker Mind Podcast: Learn Competitive Hacking with picoCTF appeared first on Security Boulevard. But if you think picoCTF is only for HS students, think again.

Hacking

Hacking InfoSec Education

Hacking Grindr Accounts with Copy and Paste

Troy Hunt

OCTOBER 2, 2020

Here's how they responded when approached by infosec journo Zack Whittaker : We are grateful for the researcher who identified a vulnerability. In fairness to Grindr, despite their triaging of security reports needing work, their response after I managed to get in touch with the right people was exemplary. The reported issue has been fixed.

Accountability

Accountability Hacking Passwords InfoSec

Cisco was hacked by the Yanluowang ransomware gang

Security Affairs

AUGUST 10, 2022

cybersecurity #infosec #ransomware pic.twitter.com/kwrfjbwbkT — CyberKnow (@Cyberknow20) August 10, 2022. SecurityAffairs – hacking, Yanluowang ransomware). The post Cisco was hacked by the Yanluowang ransomware gang appeared first on Security Affairs. yanluowang ransomware has posted #Cisco to its leaksite.

Ransomware

Ransomware Hacking VPN Phishing

CIA Dirty Laundry Aired

Schneier on Security

MARCH 10, 2020

Joshua Schulte, the CIA employee standing trial for leaking the Wikileaks Vault 7 CIA hacking tools, maintains his innocence. The password for the Confluence virtual machine that held all the hacking tools that were stolen and leaked? And the answer is: absolutely terrible. And the answer is: absolutely terrible. That'll be 123ABCdef.

InfoSec

InfoSec Passwords Hacking Accountability

Hotarus Corp gang hacked Ecuador’s Ministry of Finance and Banco Pichincha

Security Affairs

FEBRUARY 27, 2021

‘Hotarus Corp’ Ransomware operators hacked Ecuador’s largest private bank, Banco Pichincha, and the country’s Ministry of Finance. ?A breach #infosec #deepwebnews @FinanzasEc @EcuCERT_EC pic.twitter.com/WTbXz8EYLx — Security Chronicle (@SecurChronicle) February 23, 2021. Pierluigi Paganini.

Hacking

Hacking Banking Ransomware Passwords

The Hacker Mind Podcast: Hacking Communities

Security Boulevard

JULY 14, 2021

As we head to Hacker Summer Camp, how should we rebuild our infosec communities to be more inclusive and diverse? The post The Hacker Mind Podcast: Hacking Communities appeared first on Security Boulevard. Jack Daniel offers his unique voice.

Hacking

Hacking InfoSec

Hacking a X-RAY Machine with WHIDelite & EvilCrowRF

Security Affairs

APRIL 20, 2021

The popular cyber security expert Luca Bongiorni demonstrated how to hack an X-Ray Machine using his WHIDelite tool. In case of more cool hacking stuff, do follow @whid_ninja on Twitter! SecurityAffairs – hacking, X-Ray Machine). The first thing striked my curiosity, even before purchasing it, was its remote.

Hacking

Hacking InfoSec Engineering Internet

Episode 203: Don’t Hack The Water and Black Girls Hack Founder Tennisha Martin

The Security Ledger

FEBRUARY 15, 2021

In this episode of the Security Ledger Podcast (#203) we talk about the apparent hack of a water treatment plant in Oldsmar Florida with Frank Downs of the firm BlueVoyant. In our second segment: is infosec’s lack of diversity a bug or a feature? Episode 200: Sakura Samurai Wants To Make Hacking Groups Cool Again.

Hacking

Hacking InfoSec Information Security Risk

The Hacker Mind: Shattering InfoSec's Glass Ceiling

ForAllSecure

MARCH 8, 2023

Booth babes and rampant sexism were more of a problem in infosec in the past. It’s about challenging our expectations about the people who hack for a living. I know there was a period when several InfoSec people, myself included, said we will not be on panels unless there's diversity represented on said panel.

InfoSec

InfoSec Engineering CSO Technology

Hacking IoT & RF Devices with BürtleinaBoard

Security Affairs

JULY 28, 2020

Yet another Multipurpose Breakout Board to hack hardware in a clean and easy way! How to hack IoT & RF Devices with BürtleinaBoard. Despite FocacciaBoard is extremely useful during my night-to-night hardware hacking needs… there is another set of tools I cannot live without: pin enumeration ones. UART, JTAG, SWD, SPI, I2C).

IoT

IoT Hacking Firmware Advertising

CFAA 101: A Computer Fraud & Abuse Act Primer for InfoSec Pros

Dark Reading

OCTOBER 1, 2020

From WarGames, to Aaron Swartz, to bug bounties, to Van Buren, here's what cybersecurity researchers should know about the US's primary anti-hacking law before it gets its day in the Supreme Court.

InfoSec

InfoSec Hacking Cybersecurity

Who’s to Blame for Hacked Social Media Accounts, Spoofed Online Meeting Requests and Malware

Security Boulevard

MARCH 10, 2024

In episode 320, Tom and Scott discuss the contentious issue of who is accountable when Facebook or Instagram accounts are hacked, discussing potential failings on both the user’s and Meta’s part. The post Who’s to Blame for Hacked Social Media Accounts, Spoofed Online Meeting Requests and Malware appeared first on Security Boulevard.

Media

Media Accountability Hacking Malware

Life360 Selling Location Data, NSO Group Spyware Hacks Government Employees, Homecoming Queen Contest Hacked

Security Boulevard

DECEMBER 12, 2021

State Department employees were hacked with spyware from the infamous NSO Group, and details on a bizarre story about a mother and daughter that face 16 years in prison for […]. The post Life360 Selling Location Data, NSO Group Spyware Hacks Government Employees, Homecoming Queen Contest Hacked appeared first on The Shared Security Show.

Spyware

Spyware Hacking Government Technology

Okta Hacked Again, Quishing Is The New Phishing, Google Play Protect Real-Time Scanning

Security Boulevard

NOVEMBER 5, 2023

Finally, we discuss Google Play Protect’s new feature, “Real-time App Analysis,” which […] The post Okta Hacked Again, Quishing Is The New Phishing, Google Play Protect Real-Time Scanning appeared first on Shared Security Podcast.

Phishing

Phishing Hacking Data breaches Data privacy

Lockbit leak sites hit by mysterious DDoS attack after Entrust hack

Security Affairs

AUGUST 22, 2022

LockBit ransomware gang claims to have hacked the IT giant Entrust and started leaking the stolen files. The Lockbit ransomware gang claimed to have hacked the company and is threatening to leak the stolen files. SecurityAffairs – hacking, Lockbit). Entrust Corp. Entrust Corp. Tor leak site. No one seen taking credit to date.

DDOS

DDOS Hacking InfoSec Ransomware

Jeff Moss on the Evolution of Hacking at SecTor 2021

ForAllSecure

NOVEMBER 3, 2021

His talk was nostalgic, reflecting on the 40+ years of computer hacking. Moss also said that all hacking is not infosec and that all infosec is not hacking. “Hacking can provide a lot of joy and absolutely no income. Where with infosec the goal is to produce income. But hacking, not so much.

Hacking

Hacking InfoSec Internet Internet

Hacking It as a CISO: Advice for Security Leadership

Dark Reading

AUGUST 10, 2020

A security leader shares tips for adopting a CISO mindset, creating risk management strategies, and "selling infosec" to IT and executives.

CISO

CISO InfoSec Hacking Risk

The World of Scambaiting, Preventing Social Media Account Takeovers, Network Wrenches Hacked

Security Boulevard

JANUARY 21, 2024

Then they switch to the best practices to prevent social media account takeovers, highlighting […] The post The World of Scambaiting, Preventing Social Media Account Takeovers, Network Wrenches Hacked appeared first on Shared Security Podcast.

Media

Media Accountability Hacking Scams

BSides Sofia 2023 – Radoslav Gerganov – Hyundai Head Unit Hacking

Security Boulevard

JULY 18, 2023

Permalink The post BSides Sofia 2023 – Radoslav Gerganov – Hyundai Head Unit Hacking appeared first on Security Boulevard. Our thanks to BSides Sofia for publishing their presenter’s tremendous BSides Sofia 2023 content on the organizations’ YouTube channel.

Hacking

Hacking Architecture CISO Education

Friday Five 4/1

Digital Guardian

APRIL 1, 2022

Hacked satellites, how technology enables data protection, and the fastest ransomware - catch up on the infosec news of the week with the Friday Five!

InfoSec

InfoSec Technology Ransomware Hacking

HP Device Manager flaws expose Windows systems to hack

Security Affairs

OCTOBER 4, 2020

The vulnerabilities have been reported to HP by the infosec researchers Nick Bloor, an attacker could chain the three issues to achieve SYSTEM privileges on targeted devices and potentially take over them. SecurityAffairs – hacking, HP). The HP Device Manager allows administrators to remotely manage HP thin clients.

Hacking

Hacking Accountability Passwords InfoSec

Hacking Ham Radio: Why It’s Still Relevant and How to Get Started

Security Boulevard

JUNE 13, 2022

This week we discuss hacking ham radio with special guests Caitlin Johanson, Rick Osgood, and Larry Pesce. In this episode you’ll learn what ham radio is, why its still relevant, why would attackers want to hack ham radio, all about packet radio and APRS (Automatic Packet Reporting System), and what equipment and licensing you need […].

Hacking

Hacking Healthcare Data privacy Technology

Gamification of Ethical Hacking and Hacking Esports

Threatpost

JUNE 22, 2022

Joseph Carson, Chief Security Scientist and Advisory CISO at Delinea, explores why gamified platforms and hacking esports are the future.

Hacking

Hacking CISO InfoSec

BSides Sofia 2023 – Vasil Velichkov – Hacking Attacks Against Government Institutions

Security Boulevard

JULY 16, 2023

Permalink The post BSides Sofia 2023 – Vasil Velichkov – Hacking Attacks Against Government Institutions appeared first on Security Boulevard. Our thanks to BSides Sofia for publishing their presenter’s tremendous BSides Sofia 2023 content on the organizations’ YouTube channel.

Government

Government Hacking Architecture CISO

Friday Five 9/3

Digital Guardian

SEPTEMBER 3, 2021

How not to get hacked, a $9 million ransomware attack, and the FTC cracks down on a spyware app - catch up on the infosec news of the week with the Friday Five!

InfoSec

InfoSec Spyware Ransomware Hacking

Friday Five 2/4

Digital Guardian

FEBRUARY 4, 2022

Hacking North Korea, inside the Trickbot ransomware group, and more - catch up on the infosec news of the week with the Friday Five!

InfoSec

InfoSec Ransomware Hacking

US Hacker ‘P4x’ Gets Back at Pyongyang (but We Smell a Rat)

Security Boulevard

FEBRUARY 3, 2022

An infosec researcher was hacked by North Korea. law enforcement did nothing, so he took matters into his own hands. The post US Hacker ‘P4x’ Gets Back at Pyongyang (but We Smell a Rat) appeared first on Security Boulevard.

InfoSec

InfoSec Hacking Social Engineering Engineering

Friday Five 2/12

Digital Guardian

FEBRUARY 12, 2021

A hack of a water treatment plant, SIM swapping used on celebrities, and a popular barcode app turned into malware - catch up on all of the week's infosec news with the Friday Five!

InfoSec

InfoSec Malware Hacking

Reddit Hacked, Preventing Accidental Location Sharing, Developer Hacks His Own Company

Security Boulevard

FEBRUARY 19, 2023

The case of former Ubiquiti employee, Nickolas Sharp, who pled guilty to multiple […] The post Reddit Hacked, Preventing Accidental Location Sharing, Developer Hacks His Own Company appeared first on The Shared Security Show.

Hacking

Hacking Phishing Data breaches Data privacy

Episode 219: LGBTQ+Cyber – A Pride Month Conversation On Being Queer In Infosec

The Security Ledger

JUNE 30, 2021

Infosec is one of the most demographically lopsided industries around in terms of gender. Episode 203: Don’t Hack The Water and Black Girls Hack Founder Tennisha Martin. By one count, there are half a million unfilled job openings in cybersecurity in the U.S. How welcoming will the field be to these new workers?

InfoSec

InfoSec Information Security Cybersecurity Engineering

Friday Five 4/2

Digital Guardian

APRIL 2, 2021

Hacking team-ups, Turing Award winners, and scammers targeting universities - catch up on all of the week's infosec news with the Friday Five!

InfoSec

InfoSec Hacking

The Hacker Mind Podcast: The Right To Repair

Security Boulevard

FEBRUARY 10, 2021

How do the current DMCA laws impact those who hack digital devices? To answer these questions, Paul Roberts, Editor-in-Chief of the Security Ledger, founded secureparis.org, a group of infosec experts who are volunteering to fight for the right to repair.

InfoSec

InfoSec Hacking

Lockbit ransomware gang claims to have stolen data from Boeing

Security Affairs

OCTOBER 27, 2023

The Lockbit ransomware gang claims to have hacked the aerospace manufacturer and defense contractor Boeing and threatened to leak the stolen data. Boeing Good luck with that #lockbit [link] — Dominic Alvieri (@AlvieriD) October 27, 2023 In mid-October, the Lockbit ransomware gang claimed to have hacked the technology services giant CDW.

Ransomware

Ransomware Manufacturing InfoSec Hacking

Missouri Governor and F12 Hacking, Global Ransomware Meeting, Fake Government Websites

Security Boulevard

OCTOBER 24, 2021

Details on the F12 “hacking” incident of the Missouri state education website and the foolish response from the Missouri governor, Over 30 countries (except China and Russia) meet to fight ransomware globally, and the FBI’s warning about fake unemployment benefit websites. ** Links mentioned on the show ** Gov.

Government

Government Hacking Ransomware Education

Threat actors target the infoSec community with fake PoC exploits

US Helped Ukraine With Infosec—Story is ‘Dangerous Arrogance’

Trending Sources

BSidesPDX 2022 – Ben Kendall’s ‘Breaking Into Infosec Or, How I Hacked My Way Out Of Poverty’

Friday Five: New Federal Compliance Requirement, a Russian Hacking Spree, & More

Are our infosec controls sufficient?

BSides Huntsville 2021 – David Hunt’s ‘Hack In Your Sleep’

INC RANSOM ransomware gang claims to have breached Xerox Corp

Lapsus$ gang claims to have hacked Microsoft source code repositories

An initial access broker claims to have hacked Deutsche Bank

BSides Tallinn’s ‘Best Of BSides 2021’: BSides København 2021: Klaus Agnoletti’s ‘How I Hacked My Infosec Career For More Happiness, And How You Can Do The Same!’

The Hacker Mind Podcast: Learn Competitive Hacking with picoCTF

Hacking Grindr Accounts with Copy and Paste

Cisco was hacked by the Yanluowang ransomware gang

CIA Dirty Laundry Aired

Hotarus Corp gang hacked Ecuador’s Ministry of Finance and Banco Pichincha

The Hacker Mind Podcast: Hacking Communities

Hacking a X-RAY Machine with WHIDelite & EvilCrowRF

Episode 203: Don’t Hack The Water and Black Girls Hack Founder Tennisha Martin

The Hacker Mind: Shattering InfoSec's Glass Ceiling

Hacking IoT & RF Devices with BürtleinaBoard

CFAA 101: A Computer Fraud & Abuse Act Primer for InfoSec Pros

Who’s to Blame for Hacked Social Media Accounts, Spoofed Online Meeting Requests and Malware

Life360 Selling Location Data, NSO Group Spyware Hacks Government Employees, Homecoming Queen Contest Hacked

Okta Hacked Again, Quishing Is The New Phishing, Google Play Protect Real-Time Scanning

Lockbit leak sites hit by mysterious DDoS attack after Entrust hack

Jeff Moss on the Evolution of Hacking at SecTor 2021

Hacking It as a CISO: Advice for Security Leadership

The World of Scambaiting, Preventing Social Media Account Takeovers, Network Wrenches Hacked

BSides Sofia 2023 – Radoslav Gerganov – Hyundai Head Unit Hacking

Friday Five 4/1

HP Device Manager flaws expose Windows systems to hack

Hacking Ham Radio: Why It’s Still Relevant and How to Get Started

Gamification of Ethical Hacking and Hacking Esports

BSides Sofia 2023 – Vasil Velichkov – Hacking Attacks Against Government Institutions

Friday Five 9/3

Friday Five 2/4

US Hacker ‘P4x’ Gets Back at Pyongyang (but We Smell a Rat)

Friday Five 2/12

Reddit Hacked, Preventing Accidental Location Sharing, Developer Hacks His Own Company

Episode 219: LGBTQ+Cyber – A Pride Month Conversation On Being Queer In Infosec

Friday Five 4/2

The Hacker Mind Podcast: The Right To Repair

Lockbit ransomware gang claims to have stolen data from Boeing

Missouri Governor and F12 Hacking, Global Ransomware Meeting, Fake Government Websites

Stay Connected