Hacking information, news, and how-to advice

Election 2016 teaser - A hacker pulls back the curtain on United States election data

Opinion

3 ways politicians could prevent voting machines from being hacked (if they wanted to)

The current state of voting security is laughably bad, but we know how to secure voting machines. The problem isn't technical, but a lack of political will.

Privacy and Security FanaticBy Ms. Smith

35 million voter records from 19 states for sale on hacking forum

Researchers found more than 35 million U.S. voter records for sale on a hacking forum. The records are from 2018 voter registrations in 19 states, including Wisconsin, Texas and Georgia.

Privacy and Security FanaticBy Ms. Smith

Pentagon's new weapon systems are easy to hack, GAO report finds

A recent GAO report revealed that some US Department of Defense weapon systems use default passwords and that a port scan can cause weapon systems to fail.

Salted Hash- Top security newsBy Steve Ragan

Gwinnett Medical Center investigating possible data breach

After being contacted by Salted Hash about a possible data breach, Gwinnett Medical Center, a not-for-profit network of healthcare providers in Gwinnett County, Georgia, has confirmed they're investigating what the healthcare provider...

Feature

Cybercriminals are using blockchain to improve security. Should you?

Business-minded hackers are testing blockchain technologies to secure their illegal operations. Here's what enterprises can learn from them.

phishing hacker binary keyboard privacy security breach

Privacy and Security FanaticBy Ms. Smith

Facebook security and privacy issues revealed

Last week saw Facebook dealing with security and privacy issues, while the Port of San Diego got hit with a ransomware attack and researchers discovered two Linux kernel bugs.

vulnerable cryptojacking hacking breach security

Privacy and Security FanaticBy Ms. Smith

First known malicious cryptomining campaign targeting Kodi discovered

Add-ons for Kodi, the media streaming app, have been infected with malware that mines Monero and may continue to do so unless you take action.

Analysis

The Sony hacker indictment: 5 lessons for IT security

The recent indictment of North Korean hacker Park Jin Hyok contains valuable information from the FBI’s investigation that will help you defend against similar attacks.

9 mobile threats spyware malware unsecured wireles

Privacy and Security FanaticBy Ms. Smith

Sophisticated mobile spyware Pegasus found in the US and 44 other countries

Ten Pegasus operators deployed the Pegasus spyware for cross-border surveillance and may be violating U.S. law.

Kaplan’s Private Network (KPN)By Marc Kaplan
IDG Contributor Network

Can you hack me now?

How identity-based networking can protect your LTE connections from attack.

Privacy and Security FanaticBy Ms. Smith

Hackers clone Tesla Model S key fob in 2 seconds to steal car

Belgium researchers quickly cloned the key fob of a Tesla Model S designed by Pektron. Tesla fixed the vulnerability, but McLaren, Karma and Triumph systems are also likely vulnerable.

Privacy and Security FanaticBy Ms. Smith

British Airways hack was by same group that compromised Ticketmaster

The British Airways hack involved a highly targeted approach using 22 lines of skimmer code by the group that compromised Ticketmaster.

Feature

What is a botnet? And why they aren't going away anytime soon

Controlling thousands or even millions of devices gives cyber attackers the upper hand to deliver malware or conduct a DDoS attack.

number 4 four with binary grunge background

Let's Talk Cloud Security and ComplianceBy Gaurav Pal
IDG Contributor Network

4 frameworks you need to protect your digital enterprise against the latest cybersecurity threats

Cybersecurity attacks are getting vicious, expensive and bringing entire businesses to their knees. CIOs and CISOs don’t have time to reinvent the wheel and should adapt US Government and Department of Defense lighthouse frameworks...

Privacy and Security FanaticBy Ms. Smith

Bad OpSec led to the downfall of teenage DDoS-for-hire group leader

A UK teenager and leader of a DDoS-for-hire group pleaded guilty to three counts of making fake bomb threats that affected thousands of students and resulted in the grounding of a United Airlines flight.

team of hackers / organized attack / group of threat actors

Awkward Conversations About CybersecurityBy Rick Howard
IDG Contributor Network

It’s time to get off the treadmill: Why you should understand adversary playbooks

Flipping the equation on known adversaries by developing and deploying controls at locations on the intrusion kill chain designed specifically for these known playbooks will increase a company’s ability to block an attack. The...

Privacy and Security FanaticBy Ms. Smith

Over 3,700 exposed 3D printers open to remote attackers

Thousands of exposed 3D printers open to remote attackers could be used for sabotage, espionage, or spying. OctoPrint responded with a guide to safe remote access.

Privacy and Security FanaticBy Ms. Smith

Hacking

Hacking | News, how-tos, features, reviews, and videos

3 ways politicians could prevent voting machines from being hacked (if they wanted to)

The current state of voting security is laughably bad, but we know how to secure voting machines. The problem isn't technical, but a lack of political will.

35 million voter records from 19 states for sale on hacking forum

Researchers found more than 35 million U.S. voter records for sale on a hacking forum. The records are from 2018 voter registrations in 19 states, including Wisconsin, Texas and Georgia.

Pentagon's new weapon systems are easy to hack, GAO report finds

A recent GAO report revealed that some US Department of Defense weapon systems use default passwords and that a port scan can cause weapon systems to fail.

Gwinnett Medical Center investigating possible data breach

After being contacted by Salted Hash about a possible data breach, Gwinnett Medical Center, a not-for-profit network of healthcare providers in Gwinnett County, Georgia, has confirmed they're investigating what the healthcare provider...

Cybercriminals are using blockchain to improve security. Should you?

Business-minded hackers are testing blockchain technologies to secure their illegal operations. Here's what enterprises can learn from them.

Facebook security and privacy issues revealed

Last week saw Facebook dealing with security and privacy issues, while the Port of San Diego got hit with a ransomware attack and researchers discovered two Linux kernel bugs.

First known malicious cryptomining campaign targeting Kodi discovered

Add-ons for Kodi, the media streaming app, have been infected with malware that mines Monero and may continue to do so unless you take action.

The Sony hacker indictment: 5 lessons for IT security

The recent indictment of North Korean hacker Park Jin Hyok contains valuable information from the FBI’s investigation that will help you defend against similar attacks.

Sophisticated mobile spyware Pegasus found in the US and 44 other countries

Ten Pegasus operators deployed the Pegasus spyware for cross-border surveillance and may be violating U.S. law.

Can you hack me now?

How identity-based networking can protect your LTE connections from attack.

Hackers clone Tesla Model S key fob in 2 seconds to steal car

Belgium researchers quickly cloned the key fob of a Tesla Model S designed by Pektron. Tesla fixed the vulnerability, but McLaren, Karma and Triumph systems are also likely vulnerable.

British Airways hack was by same group that compromised Ticketmaster

The British Airways hack involved a highly targeted approach using 22 lines of skimmer code by the group that compromised Ticketmaster.

What is a botnet? And why they aren't going away anytime soon

Controlling thousands or even millions of devices gives cyber attackers the upper hand to deliver malware or conduct a DDoS attack.

4 frameworks you need to protect your digital enterprise against the latest cybersecurity threats

Cybersecurity attacks are getting vicious, expensive and bringing entire businesses to their knees. CIOs and CISOs don’t have time to reinvent the wheel and should adapt US Government and Department of Defense lighthouse frameworks...

Bad OpSec led to the downfall of teenage DDoS-for-hire group leader

A UK teenager and leader of a DDoS-for-hire group pleaded guilty to three counts of making fake bomb threats that affected thousands of students and resulted in the grounding of a United Airlines flight.

It’s time to get off the treadmill: Why you should understand adversary playbooks

Flipping the equation on known adversaries by developing and deploying controls at locations on the intrusion kill chain designed specifically for these known playbooks will increase a company’s ability to block an attack. The...

Over 3,700 exposed 3D printers open to remote attackers

Thousands of exposed 3D printers open to remote attackers could be used for sabotage, espionage, or spying. OctoPrint responded with a guide to safe remote access.

7,500 MikroTik routers compromised, traffic forwarded to attackers

Attackers have exploited a flaw in thousands of unpatched MikroTik routers, sending traffic to unknown attacker-controlled IPs.