Silensec Newsletter

Top News

Hackers Finally Post Stolen Ashley Madison Data

Hackers who stole sensitive customer information from the cheating site AshleyMadison.com appear to have made good on their threat to post the data online.

A data dump, 9.7 gigabytes in size, was posted on Tuesday to the dark web using an Onion address accessible only through the Tor browser. The files appear to include account details and log-ins for some 32 million users of the social networking site, touted as the premier site for married individuals seeking partners for affairs. One analysis of email addresses found in the data dump also shows that some 15,000 are .mil. or .gov addresses.
  Read more...

 

Jeb Bush: encryption makes it too hard to catch "evildoers"

You can count Republican presidential candidate Jeb Bush on the side of the FBI and the NSA, and against strong encryption.

Bush, the former governor of Florida, said Tuesday that  "If you create encryption, it makes it harder for the American government to do its job - while protecting civil liberties - to make sure that evildoers aren't in our midst." Read more...

 

 

Read more...
Top News

Facebook hands hackers $100k for breaking browsers

Four researchers have scored US$100,000 from Facebook for revealing 11 bugs affecting platforms including the Chrome and Firefox browsers using novel vulnerability discovery methods. 

"We all benefit from this kind of work—a large part of why Facebook has been successful in serving nearly 1.5 billion people is because we have been quick to introduce and adopt categories of systems and frameworks that prevent whole classes of vulnerabilities at once," Papagiannis says in a statement. The hacks are detailed in the paper Type Casting Verification: Stopping an Emerging Attack Vector (PDF) in which the quartet offered a #tool to help detect the bad-casting and type-confusion holes.  Read more...

 

Lenovo Caught Using Rootkit to Secretly Install Unremovable Software

Two years ago Chinese firm Lenovo got banned from supplying equipment for networks of the intelligence and defense services various countries due to hacking and spying concerns. Earlier this year, Lenovo was caught red-handed for selling laptops pre-installed with Superfish malware. One of the most popular Chinese computer manufacturers ‘Lenovo’ has been caught once again using a hidden Windows feature to preinstall unwanted and unremovable rootkit software on certain Lenovo laptop and desktop systems it sells. The feature is known as "Lenovo Service Engine" (LSE) – a piece of code presents into the firmware on the computer's motherboard. Read more...

 

Read more...
Top News

 Pentagon email hacked, Russia already blamed

A chunk of the US Department of Defense's email system has been down for 11 days, following what appears to have been a successful attempt to hack it. On Thursday, DoD officials told The Register the unclassified email system of the Pentagon's Joint Chiefs of Staff was compromised following a "sophisticated cyberattack" on July 25. The servers, used by 4,000 government workers, were shut down in response. The system is still not up. The attackers exploited "a new and different vulnerability," according to one report. Another says that a "spear phishing" effort resulted in malware being installed on Pentagon computers. Read more...

 

 

Lightening just struck TWICE! Thunderstrike 2: World's First Firmware Worm That Infects Mac Computers Without Detection

Two security researchers have developed a proof-of-concept computer worm for the first time that can spread automatically between MacBooks, without any need for them to be networked. Dubbed Thunderstrike 2, the new proof-of-concept firmware attack is inspired by previously developed proof-of-concept firmware called Thunderstrike. Read more...

 

 

 

 

Read more...

Silensec Cyprus HQ

Silensec Africa

Feel free to contact us if you have any problems.

Silensec UK

Feel free to contact us if you have any problems.

News Feed