In This Section


Category: Hacking

February 3, 2017
Details Emerge of Severe WordPress Content Injection Flaw
WordPress has revealed the details of a critical privilege escalation vulnerability that the company fixed in a security release last week. The bug was part of a major upgrade for WordPress, but the details of the flaw hadn’t come out until now because the company was working with hosting providers and security firms to put…
Read More →
February 1, 2017
Mirai, Google, and the Future of DDoS
OAKLAND–When the Mirai botnet burst onto the scene last year, it did so in style, with two of the largest DDoS attacks on record. One of the initial targets of its wrath was the site run by reporter Brian Krebs, and the attack set off a chain reaction that not only took the site offline…
Read More →
January 31, 2017
Inside the Fight Against Bulletproof Hosting Providers
OAKLAND–For years, bulletproof hosting providers have been the bane of the Internet. They serve as havens for malware, cybercrime operations, and child exploitation rings, while dodging law enforcement by moving their operations early and often. But security researchers and cybercrime investigators are beginning to make some headway in the fight against these operators, through cooperation…
Read More →
January 27, 2017
Dridex Trojan Using New Method to Bypass Windows UAC
Researchers have found a new version of the old Dridex banking Trojan that is being used in a fresh campaign in the U.K. and employs a novel technique to bypass one of the key security safeguards in Windows. Dridex has been around for nearly three years and is descended from the GameOver Zeus Trojan, one…
Read More →
January 19, 2017
Gmail Phishing Campaign Racking Up Victims
There is a clever, well-crafted phishing campaign targeting Gmail users that includes a fake login page that exactly mimics the real thing to trick victims into entering their credentials. The campaign has been going on for some time but it recently began to gain attention after researchers analyzed it and broke down the techniques the…
Read More →
January 18, 2017
OS X Malware With Ancient Code Likely Used in Targeted Attacks
Researchers have uncovered an odd piece of OS X malware that includes some very old functions and may have been used in highly targeted attacks for some time. The malware is nothing fancy, and in fact is quite simple in its construction and functionality. Called Fruitfly by Apple, the malware may have been in use for…
Read More →
January 10, 2017
Foreign Government Blamed for Anthem Data Breach
Attackers backed by a foreign government were behind the attack that compromised health insurance company Anthem in 2015, a breach that compromised the information of more than 78 million people, according to the findings of an investigation into the attack. The Anthem data breach is one of the larger health cae-related incidents ever in the United…
Read More →
January 9, 2017
U.S. Intel Report Points to Russia in Election-Related Hacks
In a new report, CIA, FBI, and NSA say that the hacking campaign that targeted the Democratic National Committee, other political organizations, and government agencies in the months before last year’s presidential election was ordered directly by Russian President Vladimir Putin, but says the intrusions didn’t affect vote-tallying systems. The report is a declassified version of…
Read More →
January 5, 2017
NSA: Russia Is the Top U.S. Competitor in Cyberspace
In a report to be published next week, the United States intelligence community will provide further support for its assertions that Russian intelligence services compromised government and private networks to influence the November presidential election. The report also will include details on a motive for the hacking campaign. The new report is the result of…
Read More →
January 4, 2017
California Law Makes Ransomware Use Illegal
It was nice to see the calendar turn over to 2017, for a lot of reasons, not the least of which is that on Jan. 1 a new law went into effect in California that outlaws the use of ransomware. The idea of needing a new law to make a form of hacking illegal may seem…
Read More →
Introducing Pindrop® Express – Authenticate without compromise.