Articles about Hacking

Stop hackers before they hack you!

In order to outsmart a would-be hacker, you need to get into the hacker’s mindset and with this book, thinking like a bad guy has never been easier. Get expert knowledge on penetration testing, vulnerability assessments, security best practices, and ethical hacking that is essential in order to stop a hacker in their tracks.

Continue reading →

Food delivery services are all the rage these days. Apparently, people are so averse to leaving their home, that they are willing to pay a premium to get meals driven to them. But wait, is that really a new trend? Pizzerias, for instance, have been delivering pies for years. Yeah, but that was driven by an employee of the restaurant. These days, services like Grubhub and DoorDash allow pretty much anyone with a car to be the go-between -- there is no vetting by the restaurant. Do you really want your food in the hands of a stranger? Lord knows what he/she could do to it.

If you are a DoorDash user, the suitability of your delivery driver is not what you need to be worried about today. Actually, your concern should be focused on your privacy, as the delivery service has suffered a massive data breach. Yes, hackers have infiltrated DoorDash, and the number of impacted people is staggering -- nearly 5 million. That doesn't just include customers but DoorDash drivers and merchants too!

Continue reading →

A security researcher has revealed details of a series of vulnerabilities in routers made by D-Link and Comba which make it easy to see usernames and passwords.

Simon Kenin from Trustwave SpiderLabs -- an "elite team of ethical hackers, forensic investigators and researchers" -- found a total of five security flaws which involve the insecure storage of credentials. In some instances, passwords are stored in plain text and can be seen by anyone with network or internet access to the routers in question.

Continue reading →

A DDoS attack rocked Wikipedia on Friday, taking the site offline in a number of countries.

The online encyclopedia was forced offline for several hours across Europe and the Middle East, and the site battled the attack to restore service. The Wikimedia Foundation -- the organization behind the site -- condemned the attack saying it wanted to protect the "fundamental right" for people to be able to "freely access and share information".

Continue reading →

Jack Dorsey's Twitter account was hacked yesterday, and the hackers -- going by the name of the Chuckle Gang -- proceeded to send racist tweets and made reference to a bomb at Twitter headquarters.

The account of the Twitter CEO was back under control relatively quickly, and the tweets sent out by the hackers were deleted. Twitter has said that its security systems were not compromised in the attack, instead blaming the account hijacking on a "security oversight" by a mobile provider which enabled hackers to take control of a mobile number associated with Dorsey's account.

Continue reading →

Hackers are using compromised websites to install "monitoring implants" on iPhones, warns a security researcher from Google's Project Zero.

Taking advantage of vulnerabilities in iOS and Safari, hackers are able to target devices running everything from iOS 10 to iOS 12, accessing contacts, images and other data. It is claimed that the practice has been going on for years, and that "simply visiting the hacked site [is] enough for the exploit server to attack your device".
See also:

Continue reading →

Hosting company Hostinger has reset passwords for all of its customers after a data breach in which a database containing information about 14 million users was accessed "by an unauthorized third party".

Hostinger says that the password reset is a "precautionary measure" and explains that the security incident occurred when hackers used an authorization token found on one of the company's servers to access an internal system API. While no financial data is thought to have been accessed, hackers were able to access "client usernames, emails, hashed passwords, first names and IP addresses".

Continue reading →

Hacktivism has its origins in small groups of people banding together to achieve common goals. In recent years, however, it's become associated with larger groups and even nation states using the guise of hacktivism for geopolitical purposes.

A new report from the Insikt Group at Recorded Future though suggests that overall hacktivism is in decline.

Continue reading →

Do you like airplanes? I know I do. Get me inside an airport terminal and I become glued to the glass watching them move about on the tarmac. Big ones. Small ones. I love them all.

And not just from the outside. I love traveling in planes, too. In fact, I’ve flown in nearly every type of major short or long-haul jet in service. From humongous A380’s to diminutive MD88’s, I’m a seasoned veteran of the air travel game.

Continue reading →

Cisco has agreed to pay $8.6 million to settle a claim that it sold video surveillance software to the American government even though it was aware it contained security vulnerabilities.

A total of fifteen US states filed a case under the False Claims Act after Homeland Security, the Secret Service, the Army, the Navy, the Marines, the Air Force and the Federal Emergency Management Agency all purchased flawed software from Cisco. Rather than improving security as desired, the complainants said that Cisco's software actually made systems less secure.

Continue reading →

A hacker has been arrested following a massive data breach at Capital One. The attacker -- Paige A Thompson, also known as "erratic" -- was able to access the credit applications of 100 million Americans and 6 million Canadians after exploiting a "configuration vulnerability".

In most cases, personal details such as name, date of birth, address and phone number were exposed by Thompson, but for tens of thousands of individuals, she also gained access to credit scores, Social Security numbers and account balances.

Continue reading →

Hungarian airline Wizz Air has emailed millions of customers informing them that their passwords have been reset.

While the company is at pains to stress that it has not been the victim of hacking, nor is any personal information at risk, the email took many customers by surprise and raised concerns about a possible data breach.

Continue reading →

The Twitter account of Scotland Yard has been hit by hackers, resulting in a series of strange and offensive tweets being sent to hundreds of thousands of followers. The website for the Metropolitan Police was also hacked.

Tweets sent by the hackers made references to Keemstar as well as drill artist Digga D, calling for the rapper to be freed from prison. The attack by hackers also resulted in a series of emails being sent out to journalists via the Metropolitan Police's official email address.

Continue reading →

Slack has just been made aware of additional information about a security breach that took place back in 2015, forcing the company to reset the passwords of around 1 percent of its users.

The company announced earlier this year that it has a daily userbase of over 10 million people, so this means that a huge number of users are affected by the incident no matter how much Slack tries to downplay it.

Continue reading →

Microsoft has revealed that it has issued warnings to nearly 10,000 people that they are the targets or victims of state-sponsored hacking.

The announcement comes as Microsoft showcases election systems running Microsoft ElectionGuard which not only helps to increase security, but also makes voting more accessible. Microsoft reveals that the vast majority of the state-sponsored attacks targeted enterprise customers, but there were still a significant number of regular consumers affected.

Continue reading →