From SECNAP Alerts:
Could a hacker from half-way around the planet control your printer and give it instructions that could cause it to catch fire? Or use a hijacked printer to commit identity theft, or even take control of entire networks that would otherwise be secure?
It’s not only possible, but likely, say researchers at Columbia University, [...]
Entries Tagged as 'Hackers'
Researchers Discover Millions of Printers Vulnerable to Hacking
December 1st, 2011 · No Comments · Security
Large Domain Name Provider Breached, Customer Data Possibly Compromised
November 30th, 2011 · No Comments · Security
From SECNAP Alerts:
101Domain.com appeared to suffer a security breach that “may have resulted in unauthorized access to your personal information and possibly payment information.”
According to Webhosting.info, 101domain.com has about 10,000 domain names under management.
A message by 101Domain.com to its customers explains: “We need to make you aware of a security breach that may potentially have [...]
Tags: data breach·Hackers·Phishing·Security
AT&T Discloses Attempted Hack of Customer Records
November 22nd, 2011 · No Comments · Security
AT&T Inc., the largest U.S. telephone company, has notified customers of an effort by hackers to collect online account information. “We recently detected an organized and systematic attempt to obtain information on a number of AT&T customer accounts, including yours,” AT&T said in an email to customers. “We do not believe that the perpetrators of [...]
Mass SQL Injection Attack Hits 1 Million Webpages, Was Preventable
October 24th, 2011 · No Comments · Security
From SECNAP Alerts:
A mass-injection attack similar to the highly publicized LizaMoon attacks this past spring has infected more than 1 million ASP.NET Web pages, researchers said today. According to database security experts, the SQL injection technique used in this attack depends on the same sloppy misconfiguration of website servers and back-end databases that led to [...]
USA Today Twitter Account Hacked by Script Kiddies
September 28th, 2011 · No Comments · Security
From SECNAP Alerts:
USA Today is the latest media organization to have its Twitter account fall prey to hackers known as the Script Kiddies. Unlike previous Script Kiddies hacks, however, the USA Today effort apparently did not include tweets with fake news stories. Instead, the group boasted about previous hacks and encouraged people to “like” them [...]
User Passwords Hacked to Point Go Daddy Websites to Malware
September 22nd, 2011 · No Comments · Security
From SECNAP Alerts:
Hundreds of Go Daddy websites were compromised to point toward a site hosting malware over the weekend of September 17 and 18. The mass hack of around 445 sites involved the injection of hostile code into the .htaccess files. Go Daddy quickly removed the hostile code, and began working with its customers to [...]
Facebook “If I Die” App Will Bury Your Computer
September 20th, 2011 · No Comments · Security
The premise of a new Facebook app called “If I Die” is sweet if a little morbid: You record a video message that will be played for your loved ones after your death. As the app advertisement says: “Death can catch you anywhere, anytime. Leave your If I Die message before it’s too late.”
There’s just [...]
Watch for Malware Disguised as Windows Help Files (.hlp)
September 19th, 2011 · No Comments · Microsoft, Security
Viruses and other malicious software contained in simple help files are not news to Internet security specialists. However, the fact that these pieces of malware are sent using email messages is part of a more recent scheme by cybercriminals to fool unsuspecting victims, infect computers with malicious applications, and take over users’ virtual lives, according [...]
Phony Digital Certificates May Still be Live, Affecting Security
September 2nd, 2011 · No Comments · Security
From SECNAP Alerts:
What at first appeared to be a one-off attack targeting Google Gmail users was actually part of a larger breach at Dutch digital certificate authority (CA) DigiNotar, which today confirmed speculation that it indeed was hacked and its SSL and EV-SSL CA system abused by attackers. “The company found out on July 19 [...]
Tags: certificates·Hackers·Security
Lessons From Vanguard Security Breach
August 23rd, 2011 · No Comments · Security
Another defense contractor’s network and data has apparently fallen to the combined skills of hackers attacking Websites under the “AntiSec” banner.
Members of hacktivist collective Anonymous have reportedly breached servers belonging to defense contractor Vanguard Defense Industries (VDI) as part of the movement to steal and publicize documents from government agencies, according to a report in [...]
Tags: data breach·Hackers·Security
Anonymous Announces Intent to Take Down Facebook on November 5
August 11th, 2011 · No Comments · Security
Apparently, “Anonymous” won’t be accepting your friend request. Members of the shadowy collective known for its politically motivated Web hacks and attacks are targeting Facebook for what they claim to be the social-networking giant’s misuse of personal information.
“Your medium of communication you all so dearly adore will be destroyed,” the speaker said in a YouTube [...]
Anonymous Readying New, More Advanced Attack Tool for Launch Next Month
August 10th, 2011 · No Comments · Security
Members of Anonymous are developing a new attack tool as an alternative to the LOIC (Low Orbit Ion Cannon) DDoS utility. The move follows a spate of arrests thought to be connected to use of the LOIC, which by default does nothing to hide a user’s identity.
The new tool, dubbed RefRef, due to be released [...]
Tags: anonymous·Cyberattacks·Hackers·Security
Hacker Sentenced to 12 Years for Phishing, Spoofed Banking Sites
August 9th, 2011 · No Comments · Security
A U.S. District Court in California has slapped a hacker with a 12-year prison sentence for phishing attacks he launched on more than 38,000 consumers. Tien Truong Nguyen, 34, was found guilty of stealing personal bank information from unsuspecting online users after sending those users to spoofed bank sites that collected account log-in and password [...]
72 Global Networks Infiltrated in Massive Cyberattack
August 8th, 2011 · No Comments · Security
Security experts have discovered the biggest series of cyberattacks to date, involving the infiltration of the networks of 72 organizations including the United Nations, governments and companies around the world. Security company McAfee, which uncovered the intrusions, said it believed there was one “state actor” behind the attacks but declined to name it, though one [...]
Tags: Cyberattacks·Hackers·Security
Digital Copiers/Printers/Scanners Open Online Doors to Your Data
July 26th, 2011 · No Comments · Business Continuity, Security
From SECNAP Alerts:
A researcher who has been scanning the Internet for months looking for unsecured, embedded Web servers has found a bounty of digital scanners, office printers, voice-over-IP (VoIP) systems, storage devices, and other equipment fully exposed and ripe for attack.
At Black Hat USA 2011 next month, the security researcher will demonstrate his findings: Ricoh [...]
Tags: Business Continuity·Hackers·office equipment·Security·Vulnerabilities
Why Cyber-Attacks Commonly Attack SMBs
July 25th, 2011 · No Comments · Business Continuity, Security
Many small and medium-sized businesses have the misconception that they are safe from cyber-attacks because of the lesser profits cyber-thieves can make from them. But recent studies show that hackers are now starting to exploit the less strict and intricate security protocols of SMBs.
There is a misconception among many SMBs that they are small targets [...]
250,000 New Hackers Could be Hard at Work by Month-End
July 14th, 2011 · No Comments · Security
From SECNAP Alerts:
Before disbanding in late June, members of the LulzSec hacking group announced the formation of a hacking school. By the end of this month, its first graduates could begin to increase the frequency of cybercrime, with likely concentrations on setting up Zeus botnets and keystroke logging malware.
Estimates are that as many as a [...]
Hacker Group Says It Stole U.S. Military Email Addresses, Passwords
July 13th, 2011 · No Comments · Security
The AntiSec online hacking movement said Monday it had broken into a server run by a U.S. military contractor and pilfered 90,000 military email addresses and passwords, the latest in a string of attacks on corporate and government targets.
AntiSec, which comprises elements of the Anonymous and Lulz Security collectives, said it got into a network [...]
Tags: data theft·Hackers·Security
Trojan Horse Gives Hacker Access to City Bank Account
July 12th, 2011 · No Comments · Security
Authorities are searching for a suspected computer hacker who tried taking thousands of dollars from a municipal account at the Rabobank in Atascadero. Police say the suspect used fraudulent wire transfers earlier this week to try and take more than $83,000 from the account. They say a “Trojan Horse” computer virus worked its way into [...]
Washington Post Website Breach Exposes 1.3 Million Email Addresses
July 11th, 2011 · No Comments · Security
The jobs section of The Washington Post’s website was hacked last week, exposing about 1.3 million user IDs and e-mail addresses to whoever was behind the attack, The Post said Wednesday, July 6. People whose e-mail addresses were affected may receive junk e-mail or spam, The Post said in an online posting.
No passwords or other [...]