In This Section

PINDROP BLOG

Category: Hacking

February 24, 2017
Cloudflare Memory Leak Bug Exposed Private Customer Data
Cloudflare, one of the larger content-delivery networks and DNS providers on the Internet, had a critical bug in one of its services that resulted in sensitive customer data such as cookies, authentication tokens, and encryption keys being leaked and cached by servers around the world. The vulnerability was in an HTML parser that Cloudflare engineers…
Read More →
February 23, 2017
SHA-1 Collision Spells the End for Old Algorithm
Engineers at Google have created the first SHA-1 collision, an achievement that should lay to rest any remaining doubts about the practical security of the hash function. Cryptographers and security researchers have been warning about weaknesses in SHA-1 for several years, saying that modern computing power would soon put a collision within reach. A hash…
Read More →
February 23, 2017
Suspect Arrested in Mirai Attack on Deutsche Telekom Routers
Authorities in the U.K. have arrested a man suspected of being involved in the attack last year on routers belonging to Deutsche Telekom customers, an attack that was attributed to the Mirai botnet. On Wednesday, investigators from the British National Crime Agency arrested an unnamed 29-year-old man at an airport in London in connection with…
Read More →
February 16, 2017
Security Lessons From Snowden
SAN FRANCISCO–Working in the security field offers ample opportunity to learn from your mistakes, and perhaps no organization has had to go through that process more publicly and painfully than the National Security Agency. The failures that led to Edward Snowden walking out the door with a massive cache of NSA data four years ago…
Read More →
February 15, 2017
Security Teams Are Becoming Cyber Espionage Investigators
SAN FRANCISCO–As cyber espionage has moved from the government sector into the corporate world, enterprise security professionals have found themselves needing to become investigators to deal with the threat. But without real expertise and experience with investigations, even the best security teams can miss serious compromises in their environments. “Cybersecurity professionals don’t have experience dealing with traditional…
Read More →
February 14, 2017
‘When Computers Start Killing People, There Are Going to Be Consequences’
SAN FRANCISCO–The massive, rapidly expanding network of insecure IoT devices is becoming so large and unwieldy that it will inevitably attract attention from government regulators in the near future. And that’s actually a positive development, security experts say. “As everything becomes a computer, computer security becomes everything security. The beachhead of all of this is…
Read More →
February 14, 2017
Microsoft President: We Need to Create a Digital Geneva Convention
By Brian Donohue SAN FRANCISCO—In a keynote address at the 2017 RSA Conference, Microsoft President Brad Smith called for the creation of “a trusted and neutral digital Switzerland” in an effort to combat the influx of state-sponsored actors and attacks. Alternatively calling his plan a “Digital Geneva Convention,” Smith leaned heavily on the familiar war…
Read More →
February 13, 2017
Ransomware Gangs Have Become the High-Seas Pirates of the Internet
SAN FRANCISCO–As bad as the ransomware problem is right now–and it’s plenty bad–we’re likely only at the beginning of what could become a crisis, experts say. “Lots of people are being infected and lots of people are paying. The bottom line its it’s getting worse and it’s going to continue to do so,” Jeremiah Grossman,…
Read More →
February 9, 2017
Macro-Enabled Malware Targets macOS
A new piece of malware that targets macOS appears to be the first one that includes one of the favorite tricks of Windows malware authors: the use of macros. The malware, discovered recently by researchers, is delivered through the use of a rigged Microsoft Word document that is disguised as an analysis of America’s allies’…
Read More →
February 6, 2017
FBI Targets Extensive Cybercrime Ring
A Brooklyn man has pleaded guilty to charges as part of an FBI investigation into a banking malware and money mule scheme that has been running since 2015 and cost victims more than $1 million. The plea from Vyacheslav Khaimov was for his role in the scam, which the FBI alleges involved attackers infecting victims’ machines…
Read More →
Introducing Pindrop® Express – Authenticate without compromise.