O2 customer data has been found available for sale on the dark web, most likely as a result of a hack that occurred several years ago.

The gaming website XSplit was hacked three years ago and those responsible for the hack were able to obtain usernames and passwords from the site. Through the process of credential stuffing, in which account credentials acquired through a hack are tested on multiple websites, the hackers were able to gain access and log into O2 accounts.

Continue reading →

Malware isn’t just about native executables or rogue apps, not any more -- a malicious browser extension can cause almost as many problems on all your devices at once.

With the right permissions, for example, your new Chrome add-on could steal your user credentials, post as you on social media, read your emails, help launch a DDoS attack, and more.

Continue reading →

Researchers at security firm Bastille warn that many wireless keyboards can be very easily intercepted so hackers can see exactly what is being typed. With a very simple dongle called Keysniffer, it is possible to snoop on usernames, passwords and anything else that is being typed from up to 250 feet away.

In all, Bastille found that eight manufacturers produce keyboards -- meaning there are millions in use -- which use unencrypted radio communication to transmit easily captured clear text. The problem affects non-Bluetooth devices from the likes of Anker, Hewlett-Packard, Kensington and Toshiba.

Continue reading →

The TechCrunch website was today hit by a hacker group going by the name of OurMine. The group describes itself as "an elite hacker group known for many hacks showing vulnerabilities in major systems".

The hack was -- on the face of it, at least -- not particularly malicious, and came across as almost polite. Rather than completely defacing the site, OurMine chose instead to simply post a news story to indicate that the CMS had been breached.

Continue reading →

The official forum for the popular mobile game Clash of Kings is the latest to fall victim to a cyberattack after a hacker broke through its defenses and managed to obtain the user data of around 1.6 million accounts.

The hack occurred on July 14 and the security breach was made known to the website LeakedSource.com by a hacker who wished to remain anonymous. The database of user account details taken from the forum contained the usernames, email addresses, IP addresses, device identifiers in addition to Facebook data and access tokens from those who signed in using their social accounts.

Continue reading →

Often the weakest link in an enterprise’s cyber security is the person behind the endpoint. Although technology solutions can offer a high degree of protection, there’s no substitute for making users aware of the potential threats.

Social engineering attacks are increasingly used to try and catch out employees. Education on cyber security is therefore something that's being taken seriously by businesses of all sizes. We spoke to Scott Youngs, CIO of infrastructure solutions and managed services company Key Information Systems to find out more about the threat and how education can help beat it.

Continue reading →

The Office for National Statistics (ONS) has revealed the true scale of online crime in England and Wales, and it is high enough to effectively double the overall crime rate. The previous estimate about the number of online crimes was 3.8 million, but the latest figures show that it is in fact over 5.8 million.

The ONS says that a tenth of adults have fallen victim to online crime, and incidents are not specific to particular areas or social classes. The statistics take into account virus attacks, online fraud, phishing attacks and the like, with 3.8 million of the overall 5.8 million incidents accounted for by various sorts of fraud.

Continue reading →

Pokémon Go has proved itself to be a rare phenomenon, and it has taken the world by storm. Attracting casual gamers of all ages the augmented reality title, Pokémon Go has seen people hitting the streets in search of elusive Pokémon -- until the servers overloaded.

There have been a few glitches with Pokémon Go, largely due to its staggering popularity. But today many people found that they were unable to get online for a different reason -- the game servers were hit by hackers. A group called PoodleCorp claims responsibility for the takedown and says worse is to come.

Continue reading →

Security researchers from Vectra Networks discovered a serious vulnerability in Windows which allows hackers to take control over complete computer networks through vulnerable printers.

The report didn’t say which versions of the operating system are affected, but the patch is already issued and you can find it here and here. Everyone who has a printer attached to their system is strongly advised to patch ASAP.

Continue reading →

There is a common misconception that all things Linux are bulletproof. The fact is, no software is infallible. When news of a Linux vulnerability hits, some Windows and Mac fans like to taunt users of the open source kernel. Sure, it might be in good fun, but it can negatively impact the Linux community's reputation -- a blemish, if you will.

Today, Canonical announces that the Ubuntu forums have been hacked. Keep in mind, this does not mean that the operating system has experienced a vulnerability or weakness. The only thing affected are the online forums that people use to discuss the OS. Still, such a hack is embarrassing, as it was caused by Canonical's failure to install a patch.

Continue reading →

When we discuss mobile malware we usually look at the technological aspects, specifically how it's designed, how it spreads, what devices it targets, how it affects them after infection, and how it can removed. What we rarely get to talk about is the financial side of things, which in the case of certain types of malware is the primary interest of their creators.

Check Point has published a report on the HummingBad malware campaign, finding that it generates $300,000 a month in fraudulent revenue with a pool of 85 million infected Android devices across the globe at its disposal. In a year attackers are looking at about $3.6 million in revenue, assuming the number of devices does not expand considerably.

Continue reading →

People are aware of the risks that come with using Wi-Fi, but generally believe public hotspots, like those on airports, are secure. Those are the results published in Norton’s latest Wi-Fi Risk Report 2016, which said 64 percent of UK’s adults assume public Wi-Fi is safe enough to use.

However, Norton says this couldn’t be further from the truth.

Continue reading →

In an effort to find more security flaws in its defense systems, the US Department of Defense (DoD) has decided to expand its Hack the Pentagon program to include more of its systems and networks.

The program pays hackers to find and report the vulnerabilities in exchange for payment from the US government. So far the program has proven to be quite effective with the the first bug in the DoD’s systems and networks being discovered a mere 13 minutes after its launch.

Continue reading →

By their very nature, remote access tools represent something of a security risk. It's only a couple of weeks since TeamViewer users complained about account hijacking, and now GoToMyPC has been hit by hackers.

The service has been hit by what is being described as a "very sophisticated password attack", and the company is advising all users to reset their passwords. Details are a little thin on the ground at the moment as an investigation is currently underway, but users are warned to monitor their account and change their passwords.

Continue reading →

The internet seems to be a series of high-profile attacks stealing all sorts of data. We've seen this event carried out across websites and retail locations, Login information, passwords, credit cards, it's all fair game to those who wish to do harm.

The latest is with the Acer store, which is claiming the credit card information, user names and passwords for some 34,500 users has been stolen. The company has sent out emails to customers to notify of the breach.

Continue reading →