In This Section

PINDROP BLOG

Category: Hacking

October 13, 2016
The Infowar Shaping the Election
Depending upon your definition of the word, this presidential campaign cycle has included perhaps more surprises than any other in recent memory. Leaked videos, tax returns, and other data dumps have turned the 2016 campaign into the first to be defined by a modern information war. Political campaigns by their very nature always have been…
Read More →
October 12, 2016
Vera Bradley Reveals Data Breach at Retail Stores
Vera Bradley, the maker of women’s handbags and accessories, said attackers compromised its payment processing system and were able to steal card data for customers who used cards in the company’s stores from the end of July through late September. The data breach doesn’t affect cards that were used online and the company hasn’t specified…
Read More →
October 11, 2016
There’s Another Hacking Team Going After SWIFT Banks
Security researchers have uncovered evidence that there is a second group of attackers who have been targeting banks in the SWIFT network, using a new Trojan that hides SWIFT message records and overwrites the master boot record of some hard drives. The newly discovered group is using a piece of malware known as Odinaff, which…
Read More →
October 11, 2016
Zombie IoT Devices Are Flooding the Internet With Garbage Traffic
The last couple of weeks have seen two of the larger DDoS attacks ever recorded, and researchers have attributed them in part to a large botnet called Mirai comprising mostly infected IoT devices. Looking closely at some other large-scale DDoS attacks with similar characteristics, researchers at Cloudflare discovered that the attackers are specifically using Layer 7 attacks…
Read More →
October 10, 2016
StrongPity Attackers Use Malicious Crypto Apps to Target Users
Organized APT groups have been using watering-hole attacks for many years, targeting highly specific groups of victims by compromising legitimate sites or setting up their own malicious copycat sites. Researchers have now uncovered a group that is using this tactic to deliver compromised encryption apps to victims. The group, known as StrongPity, has been operating…
Read More →
October 10, 2016
Wyden, EFF Say Yahoo Mail Scanning Order Should be Released
The secret order the Department of Justice served on Yahoo last year to get the company to scan incoming emails for specific terms should be declassified and made public under the terms of the USA Freedom Act, experts say. Sometime in the early part of 2015, the Justice Department reportedly went to Yahoo officials with…
Read More →
October 7, 2016
Bugs in Chinese IoT Components Aid Mirai Botnet Spread
Researchers looking into the Mirai botnet that has been used in two massive DDoS attacks in the last couple of weeks have discovered that many of the compromised IoT devices in the botnet include components from one Chinese manufacturer and have hardcoded credentials that can’t be changed. The Mirai botnet is made up of a…
Read More →
October 6, 2016
U.S. Charges Two in Lizard Squad DDoS, Phone Bombing Attacks
The Department of Justice has charged two teenagers in connection with a scheme that involved hacking-for-hire activities as well as a service that would make repeated harassing phone calls to victims for a price. The charges are related to an investigation into the Lizard Squad hacking group, which has been tied to a number of DDoS…
Read More →
October 6, 2016
On the Wire Podcast: Mike Mimoso
It’s been a weird and wild week in the security world, with the Yahoo mail-scanning scandal, the arrest of another NSA contractor for allegedly stealing classified documents, and the FBI asking for cyber help. So we called up Mike Mimoso of Threatpost to unpack all of it and see where things stand. Music by Chris…
Read More →
October 6, 2016
New Attack Invisibly Monitors Mac Video Calls
There have been a number of pieces of malware to emerge in the last few years that have the ability to hook into the microphone and camera of infected machines, allowing attackers to record private conversations of targeted users. Now a researcher is releasing a new tool that can detect and alert Mac users to hidden…
Read More →
Introducing Pindrop® Express – Authenticate without compromise.