Hacking News, Articles and Updates

British MPs push May to block Lauri Love extradition

Over a one-year period, Lauri Love allegedly exploited vulnerabilities in Adobe ColdFusion and carried out SQL injection attacksto hack government databases with unnamed co-conspirators in Australia and Sweden.

UK cyber chief fingers Russia for cyberattacks

The UK's GCHQ's National Cyber Security Centre (NCSC) head accused Russia of having staged attacks on critical infrastructure and other sectors in the past year.

Hacking back bill gains sponsors in the House

The Active Cyber Defense Certainty Act (H.R. 4036) is gathering additional bipartisan support with seven House members signing on as co-sponsors.

Cybersecurity firm builds drone-based attack platform

An Arizona cyber research firm has developed an aerial drone that can be used to land on a roof and then hack into a network inside the building.

Dark Overlord threatens to release plastic surgery images of royals, celebrities

The Dark Overlord cybergang has at least temporarily moved away from attacking school districts and has turned back to threatening to release celebrity private information by hacking a London, UK plastic surgery firm.

Bill legalizing hacking back introduced in the House

Reps. Tom Graves, R-Ga., and Kyrsten Sinema, D-Ariz., today introduced the Active Cyber Defense Bill which if passed would give individuals and companies hit with a cyberattack the legal authority to hack back against their assailant.

Former Congressional IT pro Awan wiped phone before FBI arrest

Imran Awan wiped his iPhone just hours before the FBI arrested him at Dulles Airport as he waited to board a flight to Pakistan.

Secret Service nixes personal mobile devices in West Wing after Kelly hack

Hackers likely made their way into the personal mobile phone belonging to Chief of Staff Gen. John Kelly last December.

FBI does not have to reveal San Bernardino shooter iPhone hacking vendor

A federal judge has ruled that the Federal Bureau of Investigation does not have to reveal the vendor it hired nor the price paid to access to the iPhone 5C used by San Bernardino shooter Syed Rizwan Malik and his wife Tashfeen.

Avast narrows down probable location of CCleaner attacker

Avast continued to reveal further details surrounding the cyberattack that placed a backdoor in its free computer maintenance app, CCleaner. The company now believes the attack originated from a country located in the UTC + 4 or UTC + 5 time zones.

FireEye ties APT33 to Iran and attacks on U.S., Saudi interests

FireEye has tied the hacking of several U.S., Saudi Arabian and South Korean aerospace and petrochemical to an Iranian cyber group it has labeled APT33.

Equifax hackers likely in network since March

The hackers, who exploited a vulnerability in Apache Struts, reportedly accessed the Equifax network by obtaining a user name after typing the "Whoami" command on one of the company's servers.

Avast execs explain CCleaner cyberattack

Avast executives today attempted clarify and mitigate the public relations damage done when its CCleaner computer maintenance app was discovered to have exposed 2 million users by saying the malware was likely injected prior to Avast's purchase of CCleaner and that to their knowledge no harm came to anyone.

Sens. Graham, Gillibrand look to establish a committee to examine 2016 election hacking

Sens. Kirsten Gillibrand, D-NY, and Lindsay Graham, R-SC, introduced legislation that would create a 9/11-style commission that would investigate the cyberattack that took place during the 2016 election.

Houston man sentenced to 27 months for hospital hack

A Houston man was sentenced to 27 months in prison for hacking into the Centerville Clinic computer system, disabling all administrative controls and using the health care facilities credit card to make purchases at Staples.

DDoS'd online poker site CEO contemplating posting reward to find attacker

The online poker site America's Cardroom was hit earlier this week with a distributed denial of service (DDoS) attack timed to disrupt a major tournament prompting the company CEO to consider putting a 10-bitcoin bounty out to discover if the attack was launched by a competitor.

'Doxagram' searchable database of pilfered info on Instagram users back up and running

Hackers, who exposed photos of Selena Gomez and other celebrities after exploiting a bug that Instagram has since said it fixed, initially aimed their scraper at accounts with one million or more followers but them expanded their efforts.

Election hacking might be more widespread than previously thought

Voting incidents in at least 21 states that Russian hackers tried to penetrate have not yet be subjected to a thorough digital forensics probe.

Trump Energy appointee Bradford steps down amid hacking claims controversy

Controversial Trump appointee William Bradford left his position at the Energy Department on Thursday.

WikiLeaks homepage defaced as it dumps more CIA hacking tools

The Central Intelligence Agency can take some small comfort that as WikiLeaks was preparing for its latest dump of the spy agency's Vault7 hacking tools, another group of hackers defaced WikiLeaks homepage.

Wyden asks FBI for info on Trump Energy appountee's hacking claim

Energy appointee William Bradford blamed incendiary social media posts attributed to him on hackers and said the FBI is investigating.

Hackers leak nude pics of actress Dakota Johnson

The actress, daughter of Don Johnson and Melanie Griffin, is considering joining the ranks of other celebrities who are suing the website that posted the pictures, reports said.

HBO hackers threaten to release Game of Thrones finale

The hacking group supposedly behind the recent dump of HBO programming and internal documents has threatened to release this season's Game of Thrones finale.

Top 10 Security Challenges for 2017

The first half of 2017 has not exactly been a ride in the park for cybersecurity professionals.

Four arrested in India for leaking HBO's Game of Thrones episode

Four Indian men were arrested for releasing an episode of the hit HBO show Game of Thrones days before its scheduled appearance, but the incident is apparently not related to that network's hack that has seen a cybergang releasing various pieces HBO content over the last several weeks.

Hackers release Curb Your Enthusiasm, other HBO programming

HBO is refusing to comment on the latest programming dump that included upcoming episodes of Larry David's Curb Your Enthusiasm, Ballers, Insecure and The Deuce.

GoDaddy, Google shut down neo-Nazi site

GoDaddy gave the Daily Stormer 24 hours to find another host after the neo-Nazi site violated its rules, but Anonymous moved more swiftly. By afternoon Google had also yanked the site's registration.

USAF bug bounty program finds 207 vulnerabilities

The U.S. Air Force's first bug bounty program ended in June with bug hunters finding 207 vulnerabilities and receiving $133,400.

Researchers pwn Alexa, turning Amazon Echo into covert snooping device

Older versions of Amazon Echo are vulnerable, and though physical access to the device is needed, this is more achievable with second hand devices.