A warning from SANS to end users against Heartbleed

The risk of Heartbleed client-side attacks and recommendations for end users is focused at the fourth briefing on the bug from the SANS Institute's Internet Storm Centre (ISC).SANS is the most trusted and by far the largest source for information security training and security certification in the world. A range of individuals from auditors...

Continue reading →

Call of Duty is not secure from Heartbleed

Heartbleed took Call of Duty: Black Ops II‘s blood out too, according to security researchers.The Heartbleed security bug is a simple example of memory leakage through overflow vulnerability in the Heartbeat component of OpenSSL. Bits of memory in 64 kilobyte chunks may be extracted from the process’s memory. This could yield anything, including...

Continue reading →

Military Satellites Vulnerable to Hacking

Researchers warned that many of the satellites manufactured by some of the biggest government contractors are vulnerable to several exploits from which the satellite can be exploit and hacked to disrupt military operations.It has uncovered that there are many vulnerabilities in software and ground-based satellites manufactured by British...

Continue reading →

Hackers Targeted Carlson Hotel in Minnetonka

Carlson hotel in Minnetonka has launched its hotel's rewards point system called "Club Carlson Gold Points " , Recently hackers compromised into its security. According to the Hotel Officials , About $35,000 of the worth of rewards of 650 customers has been stolen by hackers.The company noticed irregular transaction to a club members accounts...

Continue reading →

OpenSSL bug hunt!!

A campaign has started to raise $250,000 for an OpenSSL bug – and its organizers hope it will help ensure the Heartbleed omnishambles is never repeated.The campaign, spearheaded by computer security startup Bugcrowd, aims to raise the cash by 29 April: the money will be distributed as rewards to infosec bods who discover and report bugs in...

Continue reading →

Pakistan Calls for founding of National Cyber Security Council

type='html'>Pakistan’s Upper House this week began debating a new bill seeking to establish a National Cyber Security Council, an agency the nation feels is needed to keep NSA at bay Senator Mushahid Hussain Sayed on Monday presented The Cyber Security Council Bill 2014 with the aim of creating a body to draft policy, guidelines and strategy...

Continue reading →

Romanian Arrested for Attempting to Hack Presidency Site and for Stealing Credit Cards

Today 37 year old Romanian arrested for attempting to hack into presidency site in an effort for gaining access to a restricted information and for stealing 62,000 credit cards.City News ( Report in Romanian ) reported that after the investigation they got to know that the person behind these attacks was Teodor Bors located in city of...

Continue reading →

Before MORE Website's Heart start bleeding it’s Better to Encrypt the entire Internet

The Heartbleed bug crushed everyone’s faith in the secure web, but a world without the encryption software that Heartbleed exploited would be even worse. In fact, it’s time for the web to take a good hard look at a new idea: encryption everywhere.Most major websites use either the SSL or TLS protocol to protect your password or credit card...

Continue reading →

Heartbleed snatched CloudFlare Crypto Keys!

Private crypto keys are accessible to Heartbleed hackers, new data shows. Cloudflare published preliminary findings that seemed to indicate that it would be difficult, if not impossible, to use Heartbleed to get the vital key that essentially unlocks the secure sockets layer padlock in millions of browsers. To be extra-sure, Cloudflare launched...

Continue reading →

FireEye Report Analyzes Zero-day Attacks of 2013

 FireEye, a network and security analyst agency, has published a report in which it analyzes the 2013 0days exploits along with context around the threat these vulnerabilities pose to the corporate enterprise.The report also suggests preventive and remedial measures against 0day attacks. The report writes that 0day exploits today...

Continue reading →

Connecticut under cyber attack , Hackers shutdown power grid station

Security challenges are constantly evolving and "becoming more sophisticated and nefarious" and the ability of utilities to detect and stop penetration must constantly improve, the Public Utilities Regulatory Authority said in its report to Gov. Dannel P. Malloy, report about the hack of Connecticut.Electric, natural gas and major water companies...

Continue reading →

Researchers got Rewarded by $10,000 for Reporting XXE Vulnerability in Google

A critical bug XXE vulnerability has been found by researchers which let researchers access the internal files of Google's production servers. Sounds surprising but it has been really found by hackers which let hackers read any internal files.As shown, the vulnerability was in Google Toolbar Button Gallery. Team of Researchers found a bug...

Continue reading →

Mozilla Named Chris Beard as Its Interim CEO

Mozilla announced Chris Beard as its new interim former chief marketing officer replacing Brendan Eich as he resigned last April. Bread has also taken the place of Eich on Mozilla corporation board.Brendan Eich , The former CEO and creator of JavaScript , He was forced to leave the job after 11 days of his job as it was revealed that...

Continue reading →

What Experts Say on Possible Cyber Attacks

Experts say the keyboard can create more disastrous results than a bomb or natural disaster. Cyber attacks what many fear are the new face of terrorism.In April 2011, tornadoes hit Alabama hard, wiping the power supply to millions of homes for days. Could the results of that natural disaster be recreated by man in the form of a cyber attack?For...

Continue reading →

Hacker Transfer $1.7 million From School Fund

Social Engineering is a part of hacking technique which is easily be done. U.K.'s St. Aldhelm's Academy loses $1.7 Million when they receive a Phishing Email – a Spoo email from their bank which asked for the bank account details. The finance staff didn’t check for its authentication and gave all the details in reply to that e-mail....

Continue reading →