Apple Watch saves one more life by notifying user about his unusual heart rate

By Waqas Who doesn’t like elegant watches, especially those who can literally save your life like the Apple Watch, right? Last time when we talked about Apple Watch, it was related to a 62-year-old man who felt sick at work and decided not to bother his colleagues but when his Apple Watch’s Health and Fitness feature revealed that his heart […] This is a post from HackRead.com Read the original post: Apple Watch saves one more life by notifying user about his unusual heart rate September 01, 2018 at 03:53...

Read More

John McAfee backed Bitfi wallet pwned again

By Uzair Amir The presumably unhackable Bitfi wallet backed by John McAfee has released a statement announcing that the unhackable tag will be removed from their marketing materials. The step comes after the device’s security was compromised by a Twitter user under the name @spudowiar. The associated bounty program has also been suspended. However, the company has launched […] This is a post from HackRead.com Read the original post: John McAfee backed Bitfi wallet pwned again August 31, 2018 at 11:07...

Read More

VPN Security: What You Need to Know

...

Read More

Things I Hearted this Week, 31 Aug 2018

After a week in Vegas for Blackhat, and then a week’s vacation, I’m back with your favourite dose of security roundup. Giving you the security news and views you deserve, not need. So, let’s just jump into it and make up for lost time. Adventures in Vulnerability Reporting Discovering vulnerabilities and getting rewarded for bugs is the new hotness. Being new, there are many...

Read More

DDoS attack from Anonymous Catalonia cripples Bank of Spain website

By Waqas The official website of Banco de España (Bank of Spain), which is the central bank of the country, was hit by a Distributed Denial of Service (DDoS) attack on Sunday. The attack potentially disrupted the website’s operations and it became inaccessible at the beginning of the week. The attack, reportedly, has been claimed by the […] This is a post from HackRead.com Read the original post: DDoS attack from Anonymous Catalonia cripples Bank of Spain website August 31, 2018 at 08:11...

Read More

Hacker who leaked naked photos of Jennifer Lawrence jailed for 8 months

By Carolina A Connecticut, USA based hacker who hacked more than 200 iCloud accounts and leaked private photos of top Hollywood celebrities and other people was sentenced to eight months in prison last Wednesday (29). In addition to the incarcerated time, George Garofano, 26, is scheduled to serve three more years of probation and 60 hours of community […] This is a post from HackRead.com Read the original post: Hacker who leaked naked photos of Jennifer Lawrence jailed for 8 months August 31, 2018 at 02:29...

Read More

Cell-Site surveillance devices (Stingray) could disrupt 911 emergency calls

By Uzair Amir Senator Ron Wyden of Oregon has made startling new revelations about CSS or cell-site stimulators. These cell surveillance devices, better known as Stingray, are used to disrupt communications of cell phones, mostly of criminals and lawbreakers. However, Sen. Wyden asserts that the devices may impact other phones and potentially makes contacting emergency services like 911 […] This is a post from HackRead.com Read the original post: Cell-Site surveillance devices (Stingray) could disrupt 911 emergency calls August 30, 2018 at 06...

Read More

RIG Exploit Toolkit Distributing CeidPageLock Malware to Hijack Browsers

By Waqas A previously discovered browser hijacker malware dubbed as CeidPageLock has resurfaced again, in a bigger and better avatar, reveal researchers at Check Point security firm. This time around it is loaded with new features and is being distributed through the RIG Exploit kit. Trend Micro states that among all the exploit kits, the RIG is […] This is a post from HackRead.com Read the original post: RIG Exploit Toolkit Distributing CeidPageLock Malware to Hijack Browsers August 30, 2018 at 05:01...

Read More

Most SMBs in the UK are keeping Cyber Attacks secret

A survey conducted by Appstractor Corporation has discovered that SMBs operating in the UK have faced at least 5 cyber threats in the last year. And most of them have kept them as a secret for reasons. Almost four IT decision makers working for SMBs across the UK have confirmed the report findings admitting that their companies did conceal attacks made on their databases, due to the GDPR repercussions which came into effect in May this year. Only 12% of the respondents who participated in the survey agreed that the cybersecurity software monitoring...

Read More

Equifax Cyber Attack faces a lawsuit from Canada Citizen

In September 2017, Equifax disclosed that a cyber attack on its database has exposed sensitive info of more than 143 million of its American consumers. The leaked data includes social security numbers, driver licenses, and phone numbers as well. Daniel Thalheimer, 46, a citizen of Duncan, Canada has now filed a class action lawsuit against Equifax this month which says that the leaked data pertaining to him has/could further expose him to the risk of identity theft and fraud. Daniel mentioned in his lawsuit that he received a letter from the credit...

Read More

Iran hackers Cyber Attack Australian Universities

Hackers from Iran are reportedly found targeting Australian Universities in order to rob valuable digital information from research work- a serious threat to national security.  According to a news post from ABC News, Australia hackers have so far targeted thousands of staff and student accounts at prominent universities to siphon data from academic journals, dissertations, and ebooks. Reports are pouring in that the hackers have targeted seven universities so far located in every state, except the Northern Territory and Tasmania. Professor...

Read More

Ethical Hacking: An Update

How has the world of hacking changed over the past decade? More and more companies are hiring ethical hackers to hack systems and show vulnerabilities. Penetration testers try to access systems by any means possible, including through social engineering. Let’s look at what ethical hacking is, how it’s done, and how it will change in the future. Source Ethical Hacking Commonly...

Read More

Meet Your Cybersecurity Advocate: 5 Questions with Tony Vizza

Tony Vizza, CISSP, is the newest addition to the (ISC)² Cybersecurity Advocacy team! Based in Sydney, Australia, Tony works with corporations, government agencies and academic institutions to encourage collaboration across the industry, effective cybersecurity curriculums and strong legislation to attract and enable the workforce we need to manage the Asia-Pacific region’s...

Read More

Germany to counter US with DARPA like Cyber Security Agency

Germany has decided to not depend on the United States for research in Cybersecurity field from now on as it has planned to establish its own agency in lines with US Defense Advanced Research Projects Agency (DARPA). Germany’s Defense Minister Ursula Von Der Leyen has confirmed the news and said that her country is getting ready to invest in technologies that protect the nation’s critical digital infrastructure. The Defense and Interior ministries will manage the federal agency meant for cyber defense and the prime objective will be to defend Germany’s...

Read More

EMEA pays high to ransomware spreading hackers

A survey conducted by Barracuda on over 630 organizations, says that corporate organizations from the EMEA region are paying hackers the demanded ransom in order to free up their databases from encrypting malware. This approach is being highly discouraged by law enforcers and security experts as it doesn’t guaranty data access to the victims and there are instances where the hackers could demand more to the previous sum, in exchange for the decryption key. The research also discovered that businesses operating in the APAC region are least mature...

Read More

Company that Sells Spyware to Domestic Abusers Hacked

By Waqas An infamous seller of iOS and Android spyware app, TheTruthSpy, has been hacked. The company was criticized for selling spyware primarily to domestic abusers and openly marketing about it. The company markets its spyware as the best solution for spying upon cheating husbands and claims the software to be undetectable. Yet the company couldn’t protect […] This is a post from HackRead.com Read the original post: Company that Sells Spyware to Domestic Abusers Hacked August 30, 2018 at 01:47...

Read More

US President to impose mandatory sanctions on Critical Cyber Threat Actors

US President Donald Trump is all set to impose mandatory sanctions on Critical Cyber Threat Actors soon. Yes, the above-stated words will turn into a reality if a new bipartisan bill introduced in the Senate receives an endorsement from the Trump & administration. Sens. Cory Gardner and Chris Coons have introduced the bill “The Cyber Deterrence and Response Act” which makes mandatory sanctions against all adversaries and people who are responsible for attacking the IT infrastructure in the United States. How the bill will take its shape and...

Read More

Reddit Breach Takeaways: MFA and Access Management

...

Read More

Ransomware attack on Cloquet School District

The Minnesota based Cloquet School District database was reportedly hit by a ransomware attack early this month. And it’s said that the school administration decided not to bow down to the hackers and instead recreate the data lost due to the encrypting malware. As per the sources reporting to Cybersecurity Insiders, the said public school district which houses K-12 sections with a student-teacher ratio of 17:1 was hit by a malware attack on August 8th of 2018. And TJ Smith, the Technology Director of the Cloquet School District called in an emergency...

Read More

Brazilian Crypto exchange hacked; private data of over 264,000 users exposed

By Waqas A Brazilian firm Crypto exchange Atlas has become a victim of a security breach and over 264,000 users’ email addresses, phone numbers, and cryptocurrency amount related information might have been leaked. The news of data hack was reported firstly by a YouTube channel in Brazil called Investimentos Digitais (Digital Investment). The channel has claimed that14,500 […] This is a post from HackRead.com Read the original post: Brazilian Crypto exchange hacked; private data of over 264,000 users exposed August 29, 2018 at 02:14...

Read More

6 Tips to Protect Your Online Business from Cyber Attacks

By Carolina Cybercrime is on the rise, there is no denying this fact. With people becoming more reliant on technology, using their smartphones to log into their bank accounts and using social media which stores and uses your data, hackers are sometimes able to take advantage of this. You may think your business is impenetrable, however, this […] This is a post from HackRead.com Read the original post: 6 Tips to Protect Your Online Business from Cyber Attacks August 28, 2018 at 09:33...

Read More

Hackers Publish PoC of Zero-day Vulnerability in Windows on Twitter

By Waqas New Privilege Escalation Bug Identified in Windows OS. Recently a Twitter user, using the handle SandboxEscaper, disclosed that the Microsoft Windows OS has a zero-day vulnerability, which is yet unknown to the company. Tweeting on the microblogging platform, the user stated: “Here is the alpc bug as 0day. I don’t f**king care about life anymore. […] This is a post from HackRead.com Read the original post: Hackers Publish PoC of Zero-day Vulnerability in Windows on Twitter August 28, 2018 at 05:35...

Read More

Lazarus Group’s AppleJeus MacOS malware targeting cryptocurrency exchanges

By Waqas Lazarus Group is believed to be backed by the North Korean government and now it is using AppleJeus MacOS Malware. Security researchers from the Global Research and Analysis Team at Kaspersky Lab have discovered the first-ever Lazarus deployed malware for MacOS. It is reported that Lazarus has launched a new hacking campaign using AppleJeus malware. The group […] This is a post from HackRead.com Read the original post: Lazarus Group’s AppleJeus MacOS malware targeting cryptocurrency exchanges August 28, 2018 at 12:47...

Read More

AlienVault Product Roundup July / August 2018

It’s been a busy summer at AlienVault! Amid some major company announcements, we continue to evolve USM Anywhere and USM Central with new features and capabilities that help you to defend against the latest threats and to streamline your security operations. You can keep up with our regular product releases by reading the release notes in the AlienVault Product Forum. Here...

Read More

Meet Gemalto at the Gartner Security and Risk Management Summit

Thinking about attending the upcoming the Gartner Security and Risk Management Summit, 20 – 21 August 2018, in Sydney, Australia? As a Summit sponsor, we’d like to offer you a special discount code (SECSPONSOR2) that will help save you $425 off the standard conference fee. If you do plan to attend, please drop by the Gemalto Booth S2 and meet the Gemalto team. Since the Notifiable...

Read More

VMware acquires CloudHealth to bolster Security across native Public Cloud

Virtualization giant VMware has made it official on Monday that it is planning to acquire CloudHealth Technologies for an undisclosed amount. The objective of the purchase is to help enterprises analyze cost, usage, security, and performance of computing environments across public clouds such as Microsoft Azure, AWS and Google Cloud. VMware is in a plan to integrate CloudHealth platform with its existing Wavefront, Secure State and Cloud Automation services in order to suffice the service needs of its customers in multi-cloud operations. “The purchase...

Read More

Bank of Spain website hit by DDoS Cyber Attack

Bank of Spain (BoS) which was established in Madrid in 1782 has officially declared that a DDoS cyber attack hit its website database on Sunday last week. However, the company specified in its statement that none of the data of the account holders was compromised in the attack which is reported to have lasted for 4 hours. Banco De Espana (BoS), now a part of European System of Central Banks has made it clear in its statement that the attack did not impact its banking services or communication with the European Central Bank or other financial institutions...

Read More

Chapter Spotlight: London

The (ISC)² London chapter received its official (ISC)² Charter on March 16, 2018, after completing the chartering process and attending the (ISC)² Secure Summit UK earlier this spring. The London Chapter’s president, James Packer, outlined the chapter’s goals at the Secure Summit UK event, which included plans for hosting the chapter’s own events, forming industry partnerships,...

Read More

Google finds flaw in Android Fortnite’ Samsung Installer leading to malware installation

By Waqas Another day, another Fortnite malware vulnerability. Epic Games’ decision of skipping Google Play Store and releasing Android Fortnite on its official website directly was perceived as an unwise move. We recently informed our readers about the salient repercussions of this decision. It definitely was risky for gamers as they would be encouraged to download from unreliable […] This is a post from HackRead.com Read the original post: Google finds flaw in Android Fortnite’ Samsung Installer leading to malware installation August 27,...

Read More

Earning a Cyber Security Certificate: Pros and Cons

The need for highly skilled cyber security professionals is not slowing down. As cyber crime continues to plague both the public and private sectors, demand is soaring for experts with the skills to help protect businesses and combat ever-evolving threats. If you’re looking to pursue or advance your career in cyber security, you may be wondering how much education you’ll need...

Read More

OCSI Certifies SafeNet Luna PCIe Cryptographic Module for Use as QSigCD and QSealCD

The Italian Organismo di Certificazione della Sicurezza Informatica (OCSI) certified the SafeNet Luna PCIe Cryptographic Module 6.10.9 when embedded within a SafeNet Luna Network HSM 6 “SafeNet Luna HSM 6” for use as a Qualified Electronic Signature Creation Device (QSigCD) and a Qualified Electronic Seal Creation Device (QSealCD). OCSI has published the Attestation of Conformity...

Read More

Avoiding the Security Pitfalls of Digital Transformation

By 2020, 60 percent of enterprises will be implementing a digital transformation strategy as they seek to leverage technologies such as cloud and software-defined infrastructures. However, as they embark on a digitization journey, too many are ignoring security risks that could bite them back later. Earlier this year, telecommunications giant AT&T developed a cybersecurity...

Read More

You are not alone; The Pirate Bay is down for everyone

By Carolina The Pirate Bay is down for everyone for more than 20 hours. From the United States to India, all around the world authorities have told their Internet service providers (ISPs) to block each and every piracy site including The Pirate Bay but what about when these sites go down due to technical error or cyber attack?  […] This is a post from HackRead.com Read the original post: You are not alone; The Pirate Bay is down for everyone August 27, 2018 at 07:58...

Read More

Turkey hackers sneak into social media accounts of US Journalists

According to the latest alert issued by Cybersecurity Firm CrowdStrike, hackers being funded by Turkish government are said to be breaking into the social media accounts of many US journalists in order to sneak into their minds on the current political situation in the United States. As US Journalists use their respective social media accounts to voice-in their opinion on various issues prevailing in the United States, Turkish hackers are showing a lot of interest in tapping those who have a negative opinion on the Trump administration. Perhaps...

Read More

Beware of these 10 email phishing subject lines

Want to keep your PC or network safe from phishing attacks. Then beware of these 10 email phishing subject lines, as they can not only prove notorious (by spreading malware infection to PCs) but can be used to drain down your bank accounts. 1.)    Password check or change of password is required immediately 2.)    A delivery attempt was made 3.)    Press release to all employees 4.)    deactivation of service- Your immediate attention needed 5.)    Bluedart/FedEx/UPS label...

Read More

T-Mobile data breach: Personal data of 2 million users stolen

By Waqas The stolen data also includes “encrypted” passwords. Another day, another T-Mobile data breach. This time, the telecommunication giant T-Mobile has announced that it has suffered a data breach in which unknown hackers have stolen personal data of 2 million customers. According to the official statement by T-Mobile, on August 20th, its cybersecurity firm identified an unauthorized access to certain information […] This is a post from HackRead.com Read the original post: T-Mobile data breach: Personal data of 2 million...

Read More

6 ways commercial drones improve our lives

New drone innovations and achievements are commonplace now; it seems the possibilities are endless and the world of science fiction is becoming a reality. For many, this is an exciting time as drone use opens a multitude of new opportunities to enrich and simplify our lives. However, it’s worth bearing in mind that for the commercial use of drones, some security issues have...

Read More