БЛОГ

Archive for the ‘cybercrime/malcode’ category: Page 62

Aug 19, 2022

Researchers Detail Evasive DarkTortilla Crypter Used to Deliver Malware

Posted by in category: cybercrime/malcode

Researchers detail DarkTortilla, an evasive crypter used by hackers to spread a broad array of commodity malware and targeted payloads.

Aug 16, 2022

The problem with our cybersecurity problem

Posted by in category: cybercrime/malcode

We’ve got a cybersecurity problem, but it’s not the one we think we have. The problem is how we think about cybersecurity problems.


Were you unable to attend Transform 2022? Check out all of the summit sessions in our on-demand library now! Watch here.

The problem is not that there are problems. The problem is expecting otherwise and thinking that having problems is a problem.

Continue reading “The problem with our cybersecurity problem” »

Aug 16, 2022

New Evil PLC Attack Weaponizes PLCs to Breach OT and Enterprise Networks

Posted by in categories: cybercrime/malcode, robotics/AI

Cybersecurity researchers have elaborated a novel attack technique that weaponizes programmable logic controllers (PLCs) to gain an initial foothold in engineering workstations and subsequently invade the operational technology (OT) networks.

Dubbed “Evil PLC” attack by industrial security firm Claroty, the issue impacts engineering workstation software from Rockwell Automation, Schneider Electric, GE, B&R, Xinje, OVARRO, and Emerson.

Programmable logic controllers are a crucial component of industrial devices that control manufacturing processes in critical infrastructure sectors. PLCs, besides orchestrating the automation tasks, are also configured to start and stop processes and generate alarms.

Aug 16, 2022

Newly Uncovered PyPI Package Drops Fileless Cryptominer to Linux Systems

Posted by in category: cybercrime/malcode

Researchers discover a new Python package distributed via the PyPI repository that drops fileless crypto-mining malware onto Linux systems.

Aug 16, 2022

Hack Starlink and get up to $25,000 as a reward from SpaceX

Posted by in categories: cybercrime/malcode, Elon Musk, internet, space travel

Wikimedia Commons.

The Elon Musk space company may be popular for ferrying astronauts and cargo missions on its reusable rockets, but its satellite internet services have also made a mark in recent times. When Russia invaded Ukraine earlier this year, it also tried to break the communication chain inside the country by attacking its fiber optic network. However, SpaceX’s terminals were flown in, and connectivity was restored in a matter of days.

Aug 16, 2022

The Hacking of Starlink Terminals Has Begun

Posted by in categories: cybercrime/malcode, internet

It cost a researcher only $25 worth of parts to create a tool that allows custom code to run on the satellite dishes.

Aug 15, 2022

SpaceX says researchers are welcome to hack Starlink and can be paid up to $25,000 for finding bugs in the network

Posted by in categories: cybercrime/malcode, internet, satellites

SpaceX says responsible researchers are welcome to hack into its satellite internet network, Starlink. It added that it could pay them up to $25,000 for discovering certain bugs in the service.

The announcement came after security researcher Lennert Wouters said last week he was able to hack into Starlink using a $25 homemade device. He said he performed the test as part of SpaceX’s bug bounty program, where researchers submit findings of potential vulnerabilities in Starlink’s network.

In a six-page document entitled “Starlink welcomes security researchers (bring on the bugs),” SpaceX congratulated Wouters on his research.

Aug 14, 2022

A hacker used a $25 custom-built tool to hack into SpaceX’s Starlink satellite system

Posted by in categories: cybercrime/malcode, internet, satellites

Aug 14, 2022

Your secret Twitter account may no longer be secret

Posted by in category: cybercrime/malcode

Someone has gotten a hold of this data, and is selling it online.


If you have a secret Twitter account, we’ve got some bad news for you.

On Friday, Twitter disclosed information about a security vulnerability that allowed someone to find out whether a specific email address or phone number is tied to an existing Twitter accounts.

Continue reading “Your secret Twitter account may no longer be secret” »

Aug 14, 2022

Major Twitter flaw exposes millions of celebrity and company accounts

Posted by in category: cybercrime/malcode

A cybersecurity expert that goes by the name Zhirinovskiy took to the HackerOne forum in January to report a vulnerability within Twitter’s login pipeline. According to the report, the vulnerability was a gaping hole within the platform’s cybersecurity, and just within a few days, Zhirinovskiy was able to successfully infiltrate and discover Twitter accounts linked to specific numbers and email addresses. Zhirinovskiy explained that a malicious party could easily find an individual’s Twitter account with a phone number or email address.

Zhirinovskiy contacted Twitter support about the security flaw, which was found in Twitter’s Android app, and was rewarded a $5,040 bug bounty for the discovery. A patch was rolled out that fixed the major issue, but according to Restore Privacy, it was already too late as a malicious individual that uses the username “devil” had already exploited the flaw and scraped 5,485,636 Twitter accounts. The swath of data was then thrown onto the dark web hacking community forum ‘Breached Forums’, where the lister claimed that the data included users that “range from Celebrities to Companies, randoms, OGs, etc.

Furthermore, the authenticity of the data that was stolen was verified by Restore Privacy, as well as the hacker that stole it. Notably, Devil listed the data for sale with an asking price of $30,000. It’s not known if the stolen Twitter data was purchased by another party or is still available.

Page 62 of 206First5960616263646566Last