Year-old router bug exploited to steal sensitive DOD drone, tank documents

Enlarge / A US Air Force MQ-9 Reaper awaits maintenance December 8, 2016, at Creech Air Force Base, Nevada. Training materials for the Reaper Aircraft Maintenance Unit were stolen by a hacker exploiting a Netgear router. (credit: U.S. Air Force photo by Senior Airman Christian Clausen) In May, a hacker perusing vulnerable systems with the […]

Blunder burns unicorn attack that exploited Windows and Reader

Enlarge (credit: Lisa Cooper / Flickr) It’s not every day someone develops a malware attack that, with one click, exploits separate zero-day vulnerabilities in two widely different pieces of software. It’s even rarer that a careless mistake burns such a unicorn before it can be used. Researchers say that’s precisely happened to malicious PDF document […]

Critical Windows bug fixed today is actively being exploited to hack users

Enlarge (credit: Lisa Brewster / Flickr) Microsoft on Tuesday patched two Windows vulnerabilities that attackers are actively exploiting in the wild to install malicious apps on the computers of unwitting users. The first vulnerability resides in the VBScript Engine included in all currently supported versions of Windows. A so-called use-after-free flaw involving the way the […]

‘I feel exploited’ Mum speaks out as IVF clinics accused of ignoring women’s health

FERTILITY clinics are ignoring the health of women having IVF treatment, giving them heavy doses of drugs and potentially putting lives at risk, a conference will be told this week. The outdated treatments involve drugs which could be replaced with newer, safer alternatives, experts will say.

Whistleblower explains how Cambridge Analytica ‘exploited’ Facebook

Last night Facebook announced bans against Cambridge Analytica, its parent company and several individuals for allegedly sharing and keeping data that they had promised to delete. This data reportedly included information siphoned from hundreds of thousands of Amazon Mechanical Turkers who were paid to use a “personality prediction app” that collected data from them and […]

Ethereum fixes serious “eclipse” flaw that could be exploited by any kid

Enlarge (credit: Armin Kübelbeck) Developers of Ethereum, the world’s No. 2 digital currency by market capitalization, have closed a serious security hole that allowed virtually anyone with an Internet connection to manipulate individual users’ access to the publicly accessible ledger. So-called eclipse attacks work by preventing a cryptocurrency user from connecting to honest peers. Attacker-controlled […]

An Adobe Flash 0day is being actively exploited in the wild

Enlarge / A screenshot of the malicious Excel document spreading a Flash zeroday. (credit: Talos) An increasingly sophisticated hacking group is exploiting a zero-day vulnerability in Adobe’s Flash Player that lets them take full control of infected machines, researchers said Friday. The critical, use-after-free vulnerability, which is indexed as CVE-2018-4877, resides in the latest version […]

Windows 0-day is exploited to install creepy Finspy malware (again)

Enlarge / The WSDL parser, where the zero-day was located. (credit: FireEye) On Tuesday, Microsoft patched a previously unknown vulnerability that researchers say was actively exploited by an undisclosed nation to install surveillance malware on one or more vulnerable computers. The exploit, according to a blog post published Tuesday by security firm FireEye, was embedded […]

US Open 2017: Rafael Nadal found the weakness in Del Potro's game and exploited it

Nadal secured a place in the US Open final and is on the brink of a 16th Grand Slam after going for Del Potro’s backhand like there was no tomorrow. Nadal came through after losing the first set and ended up winning 4-6 6-0 6-3 6-2 in two and a half hours. And Del Potro […]