12 Nov 2013

MacRumors Database Hacked and 860K Account Passwords Exposed

MacRumors is reporting that their forum database has been compromised, and although the passwords were hashed, they are admitting that the default vBulletin hashing mechanisms may not be adequate to protect the users’ passwords.

0
11 Nov 2013

IE Zero-Day Ephemeral Hydra

A new IE zero-day exploit has been discovered by researchers at FireEye. This exploit is interesting because of the unknowns: Without code to make the exploit persistent, we don’t know what the attacker is after.

0
28 Oct 2013

Syrian Electronic Army Targets Obama’s Campaign Accounts

The Syrian Electronic Army is at it again, this time targeting Barack Obama’s campaign social media accounts and website. It appears they did not gain complete control of the accounts, but gained limited access to them through a control panel. The initial exploit was through one of the administrator’s email

0
21 Oct 2013

Security Visualization: Mapping DDoS Attacks Worldwide in Real-Time

Google Research’s “Big Picture Group” in collaboration with Arbor Networks and Google Ideas has developed the Digital Attack Map, an impressive utility that provides real-time visualization of global DDoS attacks. The tool also surfaces anonymous attack traffic data to let users explore historic trends and find reports of outages happening

0
20 Oct 2013

Tales From the Crypto: Case of the Malicious IT Contractor

Gather around the server script kiddies for I have a scary tale of woe. What makes this story all the more scary is that it is true. Years ago, late at night I was startled awake by the buzzing and alarms of my cell phone, as a series of SMS

0