Fighting all the things that threaten privacy, security and our Internet
See all
Members (2,439)

Stream

Robb Dunphy
moderator

Privacy  - 
An Post to be allowed access Sky and UPC subscription data to tackle evasion
1
Add a comment...

Robb Dunphy
moderator

Privacy  - 
2
Add a comment...

rami ram

Security  - 
 
Google and Twitter already patched against potent "Rosetta Flash" attack.
2
1
Puppy Linux's profile photo
Add a comment...

rami ram

Security  - 
4
3
Peter Baumann's profile photoPuppy Linux's profile photoAlan Hacker's profile photoSean Guidry's profile photo
 
Question, aren't the RFID chips in the cards encrypted. Why is your data sent in the clear without encryption. Can't this be implemented? 
Add a comment...

Abel Wike

Security  - 
1
2
Abel Wike's profile photoRandy Fortier's profile photoMatthew Curry's profile photoAlexander Maxzine's profile photo
4 comments
 
+John VanRoekel I totally agree with you..! That's why we all should avoid using our digital accounts at public area.

Especially ,We should avoid use of our accounts on public wifi.

+Randy Fortier People always attracts to the digital things easily but they don't know the bad intention of it.
Add a comment...

About this community

Threat Wire by Hak5 is a YouTube show covering the security and privacy issues threatening our Internet. From breaches and policies to social networks and censorship, Threat Wire takes the practical and tinfoil hat angles to dispel fear, uncertainty and doubt.

rami ram

Security  - 
3
1
Peter Baumann's profile photoPuppy Linux's profile photo
 
Last week I tried to load up dailymotion and Google prevented me from doing. This was on firefox
Add a comment...

rami ram

Privacy  - 
2
Kevin Lausen's profile photo
 
my guess is that they wanted to capture pottential protected users trafic, to try to match traffic from before & after running tor; to attempt to ID users of tor. :/
Add a comment...

rami ram

Discussion  - 
2
Onar Bargior's profile photo
 
Only to be restored later
Add a comment...

rami ram

Security  - 
2
Add a comment...
 
The globe is passing from bad face of cyber crime, and we should not overlook it. The month of June was full of shocking cyber news that many security experts and enterprises have considered it seriously. ClickSSL Weekly Infosec always tries to focus on most happening cyber news and thereby awakening users about their online security. So we are once again ready with the latest cyber news includes hacking, malicious code, spying activities. Here, is a complete narrative of last week cyber stories.
Google Glass and Smart Watch can spy your password
Researchers at the University of Massachusetts Lowell have found an interesting fact about wearable like Google Glass and Samsung smart watch. They found that these wearable have high definition video camera that spy on your device iPad, tablet, iPhone etc. A person wearing Google glass can see your login credentials when a user enters information on the device from the distance of three meters.
Fake South Korean Banking App targeted customers
CM security is closely monitoring the propagation of a malware that hit South Korean banking customers. The Trojan malware targets banking apps and replaces it with fake apps to steal the login credentials of users. This fake app is available on third party installation markets. It scans for original app in android, and urges users to upgrade the app, if the user accepts the request the fake app will replace with the original app.
TimThumb – A WordPress Plug-in found vulnerable
TimThumb – an image resizing plug-in of WordPress theme is affected by a critical vulnerability. Pichaya Morimoto discovered the vulnerability, which is published on CX Security blog. It allows attackers to run PHP code command on a remote website. Once the PHP code is executed, the website can be easily exposed by attackers. Unfortunately, there is no patch has been yet released for this vulnerability.
PayPal’s Two Factor Authentication has a security flaw
Researchers at Duo Labs have discovered a security flaw in PayPal’s two-factor authentication on mobile device. Attackers can bypass two-factor authentication and transfer money to any recipient. However, authentication feature does not work on mobile client. The company is aware about this security flaw and released a temporary fix, but not released a full patch.
Askmen Website hacked with Nuclear Exploit Kit
Askmen.com- a most popular portal and top 1000 Alexa website is hacked and attackers used it to spread malware. Security experts at Web sense believe that attackers used “Nuclear Exploit kit” that attempts to exploit java (CVE-2013-2465) and Adobe reader. The Caphaw Trojan- banking Trojan steals the information from victims and allows attackers to deploy a payload on the victim’s system. Administrators will fix this issue soon due to high number of visitors (11.6 million per month).
50% network Devices across globally should be updated
More than 50% network devices are outdated and vulnerable, which should be replaced or updated. This revelation was made by Dimension data in its 2014 Network Barometer Report. Old and outdated software opens a door for potential cyber attack. The report includes analysis of 74k devices with 288 technology assessments spread across 32 countries including 5 regions and 11 industries. There are 11% devices are completely outdated.
A Chinese hackers group released Jailbreaking tool for IOS 7.1 and 7.1.1
Chinese hackers group named Pangu has released untethered Jailbreaking tool for IOS 7.1 and 7.1.1. This tool is compatible with iPhone, iPod touch, and iPad. Jailbreaking is a method to remove restriction on IOS devices and allows user to install third party installation. Many IOS users have posted the Jailbreaking process on Reddit.
A new Variant of Trojan used Dropbox to change C&C setting
A new form of malware targets Taiwan government agency. The threat uses PlugX remote access tools (RATs) to modify command and control setting of Dropbox. Trend Micro has never revealed such kind of technique before this time. Experts at Trend Micro said that there are five command and control servers using in Dropbox, which can be infected by a malware. Out of which Zhou Pizhong owns four servers and the rest one is owned by Krypt Technologies.
Fake PayPal’s User Agreements targets users
MillerSmiles – an anti-phishing service has revealed a phishing agreement delivered to the PayPal user. The email informs users that the agreement has changed and allows users to click on link for new agreement form. Users of PayPal received a modified and fake PayPal’s user agreement from phishers that looks legitimate. Phishers also provided a returned email address (customers.service@paypal-account.com) that looks legitimate coming from PayPal.com.
1
Add a comment...