My Blog on Cyber-Security News


Warning: file_get_contents(): SSL: Connection reset by peer in /web/htdocs/www.danielesgandurra.com/home/security/index.php on line 89

Warning: file_get_contents(): Failed to enable crypto in /web/htdocs/www.danielesgandurra.com/home/security/index.php on line 89

Warning: file_get_contents(https://api.tumblr.com/v2/blog/cyber-sec.tumblr.com/info?api_key=0gWf5rQqprl5cSkbAjp0B9gQLo1TvPTR9nxqaJMPsvjl0oF1ku): failed to open stream: operation failed in /web/htdocs/www.danielesgandurra.com/home/security/index.php on line 89
Posted on 2019-12-05 08:15:05 GMT

Atlassian scrambles to fix zero-day security hole accidentally disclosed on Twitter

Source: https://www.theregister.co.uk/2019/12/05/atlassian_zero_day_bug/

Posted on 2019-12-05 08:12:30 GMT

E-mail from Agent Tesla

Source: https://isc.sans.edu/diary/E-mail+from+Agent+Tesla/25576

Posted on 2019-12-05 08:11:42 GMT

APT28 Attacks Evolution

Source: https://marcoramilli.com/2019/12/05/apt28-attacks-evolution/

Posted on 2019-12-05 08:08:24 GMT

Hacker Accessed Private Reports on HackerOne

Source: https://www.securityweek.com/hacker-accessed-private-reports-hackerone

More info: https://hackerone.com/reports/745324

Posted on 2019-12-05 08:05:43 GMT

New Iranian wiper discovered in attacks on Middle Eastern companies

Source: https://arstechnica.com/information-technology/2019/12/new-iranian-wiper-discovered-in-attacks-on-middle-eastern-companies/

More info: https://securityintelligence.com/posts/new-destructive-wiper-zerocleare-targets-energy-sector-in-the-middle-east/

Report (PDF): https://www.ibm.com/downloads/cas/OAJ4VZNJ

Posted on 2019-12-05 08:01:21 GMT

China resurrects Great Cannon for DDoS attacks on Hong Kong forum

Source: https://www.zdnet.com/article/china-resurrects-great-cannon-for-ddos-attacks-on-hong-kong-forum/

More info: https://cybersecurity.att.com/blogs/labs-research/the-great-cannon-has-been-deployed-again

Posted on 2019-12-05 07:58:25 GMT

The 10 most important cyberattacks of the decade

Source: https://www.techrepublic.com/article/the-10-most-important-cyberattacks-of-the-decade/

Posted on 2019-12-05 07:57:10 GMT

Researcher Unveils CrackQ, a New Password Cracking Manager

Source: https://www.securityweek.com/researcher-unveils-crackq-new-password-cracking-manager

More info: https://www.trustwave.com/en-us/resources/blogs/spiderlabs-blog/introducing-password-cracking-manager-crackq/

GitHub: https://github.com/f0cker/crackq

Posted on 2019-12-05 07:55:16 GMT

There’s an app for that: web skimmers found on PaaS Heroku

Source: https://blog.malwarebytes.com/web-threats/2019/12/theres-an-app-for-that-web-skimmers-found-on-paas-heroku/

Posted on 2019-12-05 07:52:58 GMT

Ransomware attack hits major US data center provider (CyrusOne)

Source: https://www.zdnet.com/article/ransomware-attack-hits-major-us-data-center-provider/

More info: https://support.fia-tech.com/hc/en-us/articles/360039830553-Dec-2nd-Notification-to-FIA-Tech-System-Users-Information-on-FIA-Tech-Outage

Posted on 2019-12-04 07:30:35 GMT

How to Make Your New Smart TV as Secure as Possible

Source: https://lifehacker.com/how-to-make-your-new-smart-tv-as-secure-as-possible-1840178167

Posted on 2019-12-04 07:29:51 GMT

Google: 80% of Android Apps Encrypt Traffic by Default

Source: https://www.securityweek.com/google-80-android-apps-encrypt-traffic-default

More info: https://security.googleblog.com/2019/12/an-update-on-android-tls-adoption.html

Posted on 2019-12-04 07:29:00 GMT

New version of IcedID Trojan uses steganographic payloads

Source: https://blog.malwarebytes.com/threat-analysis/2019/12/new-version-of-icedid-trojan-uses-steganographic-payloads/

Posted on 2019-12-04 07:22:30 GMT

Notorious spy tool taken down in global operation

Source: https://www.welivesecurity.com/2019/12/03/notorious-rat-spy-tool-global-operation/

Posted on 2019-12-04 07:20:01 GMT

Inject Keystrokes Any Way You Like With This Bluetooth Keystroke Injector

Source: https://hackaday.com/2019/12/03/inject-keystrokes-any-way-you-like-with-this-bluetooth-keystroke-injector/

GitHub: https://github.com/AmirrezaNasiri/usb-keystroke-injector

Posted on 2019-12-03 08:00:03 GMT

A decade of malware: Top botnets of the 2010s

Source: https://www.zdnet.com/article/a-decade-of-malware-top-botnets-of-the-2010s/

Posted on 2019-12-03 07:57:46 GMT

StrandHogg Vulnerability Affects All Versions of Android

Source: https://www.darkreading.com/threat-intelligence/strandhogg-vulnerability-affects-all-versions-of-android/d/d-id/1336498

More info: https://promon.co/security-news/strandhogg/

Posted on 2019-12-03 07:53:15 GMT

Vulnerabilities Disclosed in Kaspersky, Trend Micro Products

Source: https://www.securityweek.com/vulnerabilities-disclosed-kaspersky-trend-micro-products

More info: https://safebreach.com/Post/Kaspersky-Secure-Connection-DLL-Preloading-and-Potential-Abuses-CVE-2019-15689

Posted on 2019-12-03 07:48:59 GMT

Smart TVs: The Cyberthreat Lurking in Your Living Room, Feds Warn

Source: https://threatpost.com/smart-tvs-cyberthreat-living-room-feds/150713/

More info: https://www.fbi.gov/contact-us/field-offices/portland/news/press-releases/tech-tuesdaysmart-tvs/?=portland-field-office

Posted on 2019-12-03 07:47:07 GMT

Report: APT gang increased cyberattacks on businesses in Q3

Source: https://www.techrepublic.com/article/report-apt-gang-increased-cyberattacks-on-businesses-in-q3/

More info: https://www.ptsecurity.com/ww-en/analytics/cybersecurity-threatscape-2019-q3/?sphrase_id=68074

Older Posts:

-9 to

Upcoming CFP for Security Conferences:

Security Conferences Ranking:

Security Podcasts: