Tag: hacking (page 1 of 9)

«’If you build a system where everything comes down to trusting the server, you might as well dispense with all the complexity and forget about end-to-end encryption,’ says Matthew Green, a cryptography professor at Johns Hopkins University who reviewed the Ruhr University researchers’ work. ‘It’s just a total screwup. There’s no excuse.’»

Source : WhatsApp Encryption Security Flaws Could Allow Snoops to Slide Into Group Chats | WIRED

«Un journaliste indien a pu, moyennant 7 euros, acheter à des hackeurs l’intégralité de la base de données nationale contenant les informations privées d’un milliard de citoyens. Un fiasco de plus pour ce projet gouvernemental controversé».

Source : Aadhaar : un accès piraté à l’identité biométrique d’un milliard d’Indiens coûte 7 euros – Politique – Numerama

Intel CPU

«Le fait que la vente des parts coïncide exactement avec ce qu’il peut vendre et son timing maintenant que nous commençons à être au courant de la faille qui touche les processeurs Intel fait planer le doute. A-t-il vendu à un moment où le cours de son entreprise était au plus haut, anticipant une baisse de la valeur de l’action quand l’affaire serait dévoilée ? Difficile à dire pour l’instant, mais le mouvement qui aurait pu paraître anodin dans un autre contexte n’échappera pas aux actionnaires de l’entreprise qui pourraient demander une enquête».

Source : Faille sur les processeurs Intel : quelles protections, quelles conséquences possibles – Tech – Numerama

paswords

«While scanning the deep and dark web for stolen, leaked or lost data, 4iQ discovered a single file with a database of 1.4 billion clear text credentials — the largest aggregate database found in the dark web to date. None of the passwords are encrypted, and what’s scary is the we’ve tested a subset of these passwords and most of the have been verified to be true».

Source : 1.4 Billion Clear Text Credentials Discovered in a Single Database

«Hackers stole the personal data of 57 million customers and drivers from Uber Technologies Inc., a massive breach that the company concealed for more than a year. This week, the ride-hailing firm ousted its chief security officer and one of his deputies for their roles in keeping the hack under wraps, which included a $100,000 payment to the attackers.»

via Bloomberg

«The U.S government issued a rare public warning that sophisticated hackers are targeting energy and industrial firms, the latest sign that cyber attacks present an increasing threat to the power industry and other public infrastructure».

Source : U.S. warns public about attacks on energy, industrial firms

Krack

«The technique “can be abused to steal sensitive information such as credit card numbers, passwords, chat messages, emails, photos, and so on,” he wrote. “The attack works against all modern protected Wi-Fi networks. Depending on the network configuration, it is also possible to inject and manipulate data».

Source : What you need to know about KRACK, the newly-discovered wifi bug that lets hackers snoop on your devices — Quartz

Kapersky

«Hackers working for the Russian government stole details of how the U.S. penetrates foreign computer networks and defends against cyberattacks after a National Security Agency contractor removed the highly classified material and put it on his home computer, according to multiple people with knowledge of the matter».

Source : Russian Hackers Stole NSA Data on U.S. Cyber Defense – WSJ

«Credit monitoring company Equifax says a breach exposed the social security numbers and other data of about 143 million Americans. After discovering the breach, but before notifying the public, three Equifax senior executives sold shares in the company worth almost $1.8m. Since the public announcement, the company’s share price has tumbled».

Source : Credit firm Equifax says 143m Americans’ social security numbers exposed in hack | US news | The Guardian

«Since phishing has become much more common, network administrators have made a habit of telling users never to click on password reset links that go to different domains. Because of the way that Google has implemented AMP, however, Gmail users and people using Google apps for institutional use are now more vulnerable to such attacks. Phishers who use AMP pages can thereby employ official « google.com » web addresses to direct users to malicious sites».

Source : Russian hackers exploited a Google flaw the company has refused to fix – Salon.com

Older posts

© 2018 no-Flux

Theme by Anders NorenUp ↑