Category: hacking

Auto Added by WPeMatico

NSA Collects MS Windows Error Information

Posted on By infossl
espionage, hacking, incentives, microsoft, nsa, Security technology, vulnerabilities, windows, zeroday

Back in 2013, Der Spiegel reported that the NSA intercepts and collects Windows bug reports: One example of the sheer creativity with which the TAO spies approach their work can be seen in a hacking method they use that exploits the error-proneness of Microsoft’s Windows. Every user of the operating system is familiar with the … Read More “NSA Collects MS Windows Error Information” »

Vulnerabilities in Car Washes

Posted on By infossl
cars, hacking, internetofthings, Security technology

Articles about serious vulnerabilities in IoT devices and embedded systems are now dime-a-dozen. This one concerns Internet-connected car washes: A group of security researchers have found vulnerabilities in internet-connected drive-through car washes that would let hackers remotely hijack the systems to physically attack vehicles and their occupants. The vulnerabilities would let an attacker open and … Read More “Vulnerabilities in Car Washes” »

Ethereum Hacks

Posted on By infossl
cryptocurrency, cryptography, hacking, Security technology, theft, vulnerabilities

The press is reporting a $32M theft of the cryptocurrency Ethereum. Like all such thefts, they’re not a result of a cryptographic failure in the currencies, but instead a software vulnerability in the software surrounding the currency — in this case, digital wallets. This is the second Ethereum hack this week. The first tricked people … Read More “Ethereum Hacks” »

Commentary on US Election Security

Posted on By infossl
hacking, nationalsecuritypolicy, Security technology, securityengineering, voting

Good commentaries from Ed Felten and Matt Blaze. Both make a point that I have also been saying: hacks can undermine the legitimacy of an election, even if there is no actual voter or vote manipulation. Felten: The second lesson is that we should be paying more attention to attacks that aim to undermine the … Read More “Commentary on US Election Security” »

Separating the Paranoid from the Hacked

Posted on By infossl
hacking, impersonation, maninthemiddleattacks, passwords, Security technology

Sad story of someone whose computer became owned by a griefer: The trouble began last year when he noticed strange things happening: files went missing from his computer; his Facebook picture was changed; and texts from his daughter didn’t reach him or arrived changed. “Nobody believed me,” says Gary. “My wife and my brother thought … Read More “Separating the Paranoid from the Hacked” »

New Technique to Hijack Social Media Accounts

Posted on By infossl
fakenews, hacking, impersonation, phishing, Security technology, socialmedia, twitter, twofactorauthentication

Access Now has documented it being used against a Twitter user, but it also works against other social media accounts: With the Doubleswitch attack, a hijacker takes control of a victim’s account through one of several attack vectors. People who have not enabled an app-based form of multifactor authentication for their accounts are especially vulnerable. … Read More “New Technique to Hijack Social Media Accounts” »

NSA Links WannaCry to North Korea

Posted on By infossl
hacking, northkorea, nsa, ransomware, Security technology

There’s evidence: Though the assessment is not conclusive, the preponderance of the evidence points to Pyongyang. It includes the range of computer Internet protocol addresses in China historically used by the RGB, and the assessment is consistent with intelligence gathered recently by other Western spy agencies. It states that the hackers behind WannaCry are also … Read More “NSA Links WannaCry to North Korea” »