A security researcher has found, reported, and now disclosed a dozen bugs that made it easy to steal sensitive information or take over any customer’s account from some of the largest web hosting companies on the internet. In some cases, clicking on a simple link would have been enough for Paulos Yibelo, a well-known and respected bug […]
View More Some of the biggest web hosting sites were vulnerable to simple account takeover hacksCategory: Cyberwarfare
Another server security lapse at NASA exposed staff and project data
Two months ago, NASA quietly fixed a buggy internal server that was leaking sensitive information about the agency’s staff and their work. The leaking server was — ironically — a bug reporting server, running the popular Jira bug triaging and tracking software. In NASA’s case, the software wasn’t properly configured, allowing anyone to access the […]
View More Another server security lapse at NASA exposed staff and project dataA look back at the Israeli cyber security industry in
Yoav Leitersdorf Contributor Yoav Leitersdorf is a partner at YL Ventures. More posts by this contributor A look back at the Israeli cyber security industry in Trends in Israel’s cybersecurity investments Ofer Schreiber Contributor Ofer Schreiber is a partner at YL Ventures. More posts by this contributor The state of Israel’s cybersecurity market Trends in […]
View More A look back at the Israeli cyber security industry inAustralia rushes its ‘dangerous’ anti-encryption bill into parliament, despite massive opposition
Australia’s controversial anti-encryption bill is one step closer to becoming law, after the two leading but sparring party political giants struck a deal to pass the legislation. The bill, in short, grants Australian police greater powers to issue “technical notices” — a nice way of forcing companies — even websites — operating in Australia to […]
View More Australia rushes its ‘dangerous’ anti-encryption bill into parliament, despite massive oppositionCivil servant who watched porn at work blamed for infecting a US government network with malware
A U.S. government network was infected with malware thanks to one employee’s “extensive history” of watching porn on his work computer, investigators have found. The audit, carried out by the U.S. Department of the Interior’s inspector general, found that a U.S. Geological Survey (USGS) network at the EROS Center, a satellite imaging facility in South […]
View More Civil servant who watched porn at work blamed for infecting a US government network with malwareUK says Russia’s GRU was behind a spate of chaotic cyber attacks between 2015 and 2017
The UK has directly accused Russia’s military intelligence agency, the GRU, of being behind a number of cyber attacks that took place between 2015 and 2017, calling them “indiscriminate and reckless” with a range of target types including political institutions, businesses, media and even sport. It says the chaotic campaign of attacks by the GRU […]
View More UK says Russia’s GRU was behind a spate of chaotic cyber attacks between 2015 and 2017Northwest fast food chain hack exposed customer credit cards
A beloved regional burger chain in the Pacific Northwest is the latest fast food company to suffer a major data breach. Burgerville, headquartered in Vancouver, Washington, disclosed today that any customers who used a credit or debit card from September 2017 to September 2018 at any of its locations may have had their card details […]
View More Northwest fast food chain hack exposed customer credit cardsOutgoing Facebook CSO Alex Stamos will join Disrupt SF to talk cybersecurity
At Disrupt SF 2018, Facebook’s soon-to-be-former chief security officer Alex Stamos will join us to chat about his tenure in the top security role for the world’s biggest social network, how it feels to have weathered some of the biggest security and privacy scandals to ever hit the tech industry and securing U.S. elections in […]
View More Outgoing Facebook CSO Alex Stamos will join Disrupt SF to talk cybersecurityRiskRecon’s security assessment services for third party vendors raises $25 million
In June of this year, Chinese hackers managed to install software into the networks of a contractor for the U.S. Navy and steal information on a roughly $300 million top secret submarine program. Two years ago, hackers infiltrated the networks of a vendor servicing the Australian military and made off with files containing a trove […]
View More RiskRecon’s security assessment services for third party vendors raises $25 millionChinese “hackers” are sending malware via snail mail
In what amounts to one of the simplest but most baffling forms of social engineering, hackers from China have taken to sending CDs full of malware to state officials, leading the Multi-State Information Sharing and Analysis Center, a government security outfit, to release a warning detailing the scam. The trick is simple: a package arrives […]
View More Chinese “hackers” are sending malware via snail mailRussian hackers already targeted a Missouri senator up for reelection in 2018
A Democratic senator seeking reelection this fall appears to be the first identifiable target of Russian hacking in the 2018 midterm race. In a new story on the Daily Beast, Andrew Desiderio and Kevin Poulsen reported that Democratic Missouri Senator Claire McCaskill was targeted in a campaign-related phishing attack. That clears up one unspecified target […]
View More Russian hackers already targeted a Missouri senator up for reelection in 2018Popular crypto service MyEtherWallet hit by attack after Hola VPN gets hacked
MyEtherWallet, one of the internet’s most popular services for managing cryptocurrencies, suffered a serious security breach for the second time this year after a widely-used VPN service was compromised for five hours. MyEtherWallet (MEW) is used to access crypto wallets and send and receive tokens to/from other wallets. Today, it warned that users of its […]
View More Popular crypto service MyEtherWallet hit by attack after Hola VPN gets hacked