PINDROP BLOG

Category: Hacking

June 15, 2017
Study Finds Concerning Flaws in VoLTE Platforms
In recent years as VoLTE (Voice over LTE) services have grown more popular and the nation’s four largest cellular networks have adopted it, security concerns have begun to arise. In a new study presented at the Symposium on Information and Communications Technology Security (SSTIC) three researchers from P1 Security found new vulnerabilities and confirmed old ones regarding…
Read More →
June 14, 2017
DHS Points Finger at North Korea for Long Cyberattack Campaign
The United States government has issued a warning about an ongoing series of DDoS attacks and other cyber operations that it says began in 2009, and is pointing the finger squarely at North Korea. On Tuesday, the US-CERT, which is part of the Department of Homeland Security, published a technical alert in conjunction with the…
Read More →
June 13, 2017
Microsoft Releases Patches for Older Versions of Windows, Warns of Nation-State Attacks
Microsoft has taken the unusual step of issuing patches for a number of security vulnerabilities in older versions of Windows that the company says are “at heightened risk of exploitation” from nation-state attackers. As part of its normal Patch Tuesday update release, Microsoft released fixes for 16 vulnerabilities that affect several versions of Windows, including some that…
Read More →
June 13, 2017
Europol Dismantles International Fraud Ring
Police have dismantled a payment-card fraud network that stretched across Europe and had the capability to clone payment cards, install skimmers on ATMs, and is responsible for hundreds of thousands of dollars in losses. The fraud ring was operating not just in Europe, but also in the United States, the Dominican Republic, Peru, Malaysia, Costa Rica,…
Read More →
June 12, 2017
New macOS Ransomware Service Emerges
The ransomware scourge is beginning to creep, ever so slightly, into the Apple ecosystem, as researchers have discovered a new service hosted on the Tor network that will develop custom ransomware samples for buyers on demand. The ransomware as a service model is not new, but this is believed to be the first one that…
Read More →
June 9, 2017
Phishing Attacks Using SSL Spike
Phishing crews increasingly are using sites with valid SSL certificates in order to make their attacks appear more legitimate, a new report shows. In the last couple of years it has become much easier and faster for site owners to obtain SSL certificates for their sites, thanks to the emergence of free CAs such as…
Read More →
June 8, 2017
Exploit Kits Turn to Malvertising for Survival
Exploit kit activity has been decreasing for a couple of years now, a result of some consolidation in the market, as well as effective investigations and takedowns by law enforcement. But that doesn’t mean the attackers using them have given up. They’ve just shifted tactics, with many now focusing on using malvertising and social engineering…
Read More →
June 6, 2017
Hack the DHS Program Gets Support in the House
A Senate bill that would allow hackers to go after the networks at the Department of Homeland Security as part of a bug bounty program now has a companion piece of legislation in the House of Representatives. Last week, two senators introduced a bill that would create a pilot bug bounty program at DHS, similar…
Read More →
June 1, 2017
OneLogin Warns of Breach at U.S. Data Center
Security firm OneLogin, which provides single sign-on and other identity and authentication products, has suffered a data breach that it says likely affects all of its customers served by its data center in the United States. In an email sent to customers, the company said that customer data was possibly compromised, but it didn’t specify…
Read More →
May 31, 2017
You May Soon Be Able to Hack the DHS
A pair of senators wants to give hackers a chance to take a swing at the Department of Homeland Security’s networks and internal systems through a broad bug bounty program. A proposed bill introduced in the Senate Friday would build on the foundation of the Hack the Pentagon program that the Department of Defense ran…
Read More →