Video - Information Management Today

Hackers claim to have compromised 50,000 home cameras and posted footage online

Security Affairs

OCTOBER 19, 2020

A hacker collective claims to have hacked over 50,000 home security cameras and published their footage online, some of them on adult sites. A group of hackers claims to have compromised over 50,000 home security cameras and published their private footage online. ” reported The New Paper.” Pierluigi Paganini.

IoT

IoT Paper Manufacturing Access

Mar 13- Mar 19 Ukraine – Russia the silent cyber conflict

Security Affairs

MARCH 20, 2022

Google’s TAG team revealed that China-linked APT groups are targeting Ukraine ’s government for intelligence purposes. March 17 – Ukraine SBU arrested a hacker who supported Russia during the invasion. The Security Service of Ukraine (SBU) announced the arrest of a “hacker” who helped Russian Army during the invasion.

Cloud

Cloud Government Risk Information Security

North Korea-linked Zinc group posed as Samsung recruiters to target security firms

Security Affairs

NOVEMBER 28, 2021

North Korea-linked APT group posed as Samsung recruiters is a spear-phishing campaign that targeted South Korean security companies that sell anti-malware solutions, Google TAG researchers reported. According to the Google Threat Horizons report, the state-sponsored hackers sent fake job offers to employees at the security companies.

Security

Security Phishing Information Security Communications

Webinars

Generative AI Deep Dive: Advancing from Proof of Concept to Production

MORE WEBINARS

North Korea-linked campaign targets security experts via social media

Security Affairs

JANUARY 26, 2021

Google TAG is warning that North Korea-linked hackers targeting security researchers through social media. Google Threat Analysis Group (TAG) is warning that North Korea-linked hackers targeting security researchers through social media. ” reads the TAG’s report. ” reads the TAG’s report.

Security

Security Communications Cybersecurity Government

Microsoft: North Korea-linked Zinc APT targets security experts

Security Affairs

JANUARY 29, 2021

Microsoft, like Google TAG, observed a cyber espionage campaign aimed at vulnerability researchers that attributed to North Korea-linked Zinc APT group. ” This week, Google Threat Analysis Group (TAG) also warned of North Korea-linked hackers targeting security researchers through social media.

Security

Security Encryption Passwords Communications

Security Affairs newsletter Round 413 by Pierluigi Paganini – International edition

Security Affairs

APRIL 2, 2023

LockBit leaks data stolen from the South Korean National Tax Service Italy’s Data Protection Authority temporarily blocks ChatGPT over privacy concerns CISA adds bugs exploited by commercial surveillance spyware to Known Exploited Vulnerabilities catalog Hackers are actively exploiting a flaw in the Elementor Pro WordPress plugin Cyber Police of Ukraine (..)

Security

Security Artificial Intelligence Data breaches Ransomware

Robots at HIS Group are vulnerable to hack

Security Affairs

OCTOBER 23, 2019

The Japanese hotel chain HIS Group admitted that its in-room robots were vulnerable and could allow hackers to remotely view video footage from the devices. Now the HIS Group admitted that the in-room robots were vulnerable to hack and could allow remote attackers to view video footage from the devices. set to autorun.

Manufacturing

Manufacturing Access Risk Security

How to Hack Dell computers exploiting a flaw in pre-installed Dell SupportAssist

Security Affairs

MAY 2, 2019

A flaw in Dell SupportAssist, a pre-installed tool on most Dell computers, could be exploited by hackers to compromise them remotely. The vulnerability could be exploited by hackers to compromise systems remotely. The expert published a video PoC of the hack and the source code of the proof of concept : Pierluigi Paganini.

Access

Access Security IT

Improve Your Company’s Data Security With Two-Factor Authentication

OneHub

JANUARY 22, 2021

We’ve become lazy with our passwords, either making them too simple or reusing them, and hackers have invented dozens of ways to steal our credentials. When the only thing standing between your confidential business files and a hacker is a password, you’re not facing great odds. Is two-factor authentication foolproof?

Authentication

Authentication Passwords Security Data breaches

Flaw in Evernote Web Clipper for Chrome extension allows stealing data

Security Affairs

JUNE 13, 2019

The attack scenario sees hackers tricking victims into visiting specially crafted websites that load hidden iframes. Researchers published a video PoC of the attacks that shows how hackers can steal a user’s Facebook information and data on PayPal transactions. via social media, email, a compromised blog comment, etc.).

Security

Security Access IT Information Security

Stark Industries Solutions: An Iron Hammer in the Cloud

Krebs on Security

MAY 23, 2024

Correctiv notes the notorious hacker group Sandworm — an advanced persistent threat (APT) group operated by a cyberwarfare unit of Russia’s military intelligence service — was identified by Ukrainian government authorities as responsible for that attack. .” ” Spur.us

Cloud

Cloud Education Government Phishing

French Firms Rocked by Kasbah Hacker?

Krebs on Security

MARCH 2, 2020

” About the only French critical infrastructure vertical not touched by the Kasbah hackers was the water management sector. ” A review of Majidi’s Facebook profile shows that phrase as his tag line, and that he has signed several of his posts over the years as “Fatal.001.” 001” Skype account.

Passwords

Passwords Manufacturing Security Data breaches

Weekly Vulnerability Recap – October 9, 2023 – Zero-Days Strike Android, Microsoft, Apple, Cisco & More

eSecurity Planet

OCTOBER 9, 2023

Researchers from Google’s Threat Analysis Group (TAG) and Project Zero uncovered the weakness, which is connected to unauthorized access to freed memory, possibly allowing attackers to corrupt or change sensitive data. Arm also published two additional vulnerabilities, CVE-2023-33200 and CVE-2023-34970.

Libraries

Libraries Ransomware Access Security

Moodle flaw exposed users to account takeover

Security Affairs

APRIL 8, 2021

When viewing what was posted by a user in the server response, contents of the processed result is placed in a script tag with the type MathJax/TeX to be rendered on the client’s browser. In our report, we decided that the “hacker” account would be a student account, but it could be any other account type (teacher or manager).

Passwords

Passwords Communications Access Education

The Hacker Mind Podcast: Reverse Engineering Smart Meters

ForAllSecure

MAY 13, 2022

After hearing a talk, a Dallas-based hacker set out to find out what was going on inside the smart meter attached to his home, and what he found was surprising. Since then Hash started a reverse engineering wiki site called Recessim and created dozens of YouTube videos in a channel of that same name to chronicle his adventures.

Energy and Utilities

Energy and Utilities Computer and Electronics IT Communications

The Hacker Mind Podcast: Hacking Teslas

ForAllSecure

JUNE 8, 2022

Martin joins The Hacker Mind to discuss this and his earlier Bluetooth vulnerability research, including the Car Whisperer and the Tesla Radar. Welcome to The Hacker Mind, an original podcast from for all secure. Vamosi: So the Car Whisperer had a video, a movie poster, a campaign. I'm Robert Vamosi.

Manufacturing

Manufacturing Encryption IT Security

The Hacker Mind Podcast: Surviving Stalkerware

ForAllSecure

SEPTEMBER 21, 2021

Lodrina Cherne and Martijn Grooten join the The Hacker Mind podcast to discuss their Black Hat USA 2021 presentation. Some of those who bought the spyware were allegedly able to see live locations of the devices, view the targets emails, photos, web browsing history, text messages, video calls, etc. So I hope you'll stick around.

Passwords

Passwords Access IoT IT

The Hacker Mind Podcast: How To Become A 1337 Hacker

ForAllSecure

SEPTEMBER 14, 2022

In this episode of The Hacker Mind, we return to where we started in Episode One: Why is West Point -- and for that matter, others -- Training Hackers? The point, I think, with all these CTFs is that people are teaching themselves, through these games, how to be better hackers. Vamosi: So how do you become a legit elite hacker?

Military

Military IT Education Cybersecurity

The Hacker Mind Podcast: Learn Competitive Hacking with picoCTF

ForAllSecure

SEPTEMBER 10, 2021

Megan Kerns of Carnegie-Mellon University joins The Hacker Mind to talk about the early days and the continued evolution of this popular online infosec competition site. Vamosi: Welcome to the hacker mind, and original podcast from for all secure, it's about challenging our expectations about the people who hack for a living.

Education

Education Cybersecurity IT Marketing

The Hacker Mind Podcast: Fuzzing Crypto

ForAllSecure

FEBRUARY 2, 2022

Guido Vranken returns to The Hacker Mind to discuss his CryptoFuzz tool on GitHub, as well as his experience fuzzing and finding vulnerabilities in cryptographic libraries and also within cryptocurrencies such as Ethereum. Welcome to The Hacker Mind, an original podcast from ForAllSecure. For some people, crypto means cryptography.

Libraries

Libraries Blockchain Mining Encryption

The Hacker Mind Podcast: Hacking the Art of Invisibility

ForAllSecure

MARCH 1, 2022

As you know, I don't really talk about criminal hackers on the hacker mind. Why glorify the criminal hackers? US Army Video: Operations security or OpSec, preserves the effectiveness of military capabilities and keeps potential adversaries from discovering our critical information. I mean, they’re criminals, right?

Privacy

Privacy IT Passwords Encryption

The Legitimisation of Have I Been Pwned

Troy Hunt

MARCH 21, 2018

Transparency has been a huge part of that effort and I've always written and spoken candidly about my thought processes, how I handle data and very often, the mechanics of how I've built the service (have a scroll through the HIBP tag on this blog for many examples of each).

Data breaches

Data breaches Passwords Government IT

A Decade of Have I Been Pwned

Troy Hunt

DECEMBER 3, 2023

And that's precisely what this 185th blog post tagging HIBP is - the noteworthy things of the years past, including a few things I've never discussed publicly before. And now, a 10th birthday blog post about what really sticks out a decade later. You know why it's called "Have I Been Pwned"? ."

Data breaches

Data breaches Passwords Sales IT

Information Management Today

Hackers claim to have compromised 50,000 home cameras and posted footage online

Mar 13- Mar 19 Ukraine – Russia the silent cyber conflict

Webinars

Trending Sources

North Korea-linked Zinc group posed as Samsung recruiters to target security firms

Webinars

North Korea-linked campaign targets security experts via social media

Microsoft: North Korea-linked Zinc APT targets security experts

Security Affairs newsletter Round 413 by Pierluigi Paganini – International edition

Robots at HIS Group are vulnerable to hack

How to Hack Dell computers exploiting a flaw in pre-installed Dell SupportAssist

Improve Your Company’s Data Security With Two-Factor Authentication

Flaw in Evernote Web Clipper for Chrome extension allows stealing data

Stark Industries Solutions: An Iron Hammer in the Cloud

French Firms Rocked by Kasbah Hacker?

Weekly Vulnerability Recap – October 9, 2023 – Zero-Days Strike Android, Microsoft, Apple, Cisco & More

Moodle flaw exposed users to account takeover

The Hacker Mind Podcast: Reverse Engineering Smart Meters

The Hacker Mind Podcast: Hacking Teslas

The Hacker Mind Podcast: Surviving Stalkerware

The Hacker Mind Podcast: How To Become A 1337 Hacker

The Hacker Mind Podcast: Learn Competitive Hacking with picoCTF

The Hacker Mind Podcast: Fuzzing Crypto

The Hacker Mind Podcast: Hacking the Art of Invisibility

The Legitimisation of Have I Been Pwned

A Decade of Have I Been Pwned

Stay Connected