This calendar week has been real curt amongst large intelligence from shutting downward of 2 of the largest Dark Web marketplaces together with theft of millions of dollars inwards the pop Ethereum cryptocurrency to the regain of novel Linux malware leveraging SambaCry exploit.
We are hither amongst the outline of this week's stories, only inwards illustration you lot missed whatsoever of them. We recommend you lot read the entire matter (just click 'Read More' because there's closed to valuable advice inwards in that location every bit well).
Here's the listing of this Week's Top Stories:
1. Feds Shuts Down AlphaBay together with Hansa Dark Web Markets — Dream Market Under Suspicion
On Thursday, Europol announced that the government had closed downward 2 of the largest criminal Dark Web markets — AlphaBay together with Hansa — inwards what's existence called the largest-ever international performance against the night web's dark marketplace position conducted past times the FBI, DEA together with Dutch National Police.
Interestingly, the federal government shut downward AlphaBay, but earlier taking downward Hansa market, they took command of the Dark Web marketplace position together with kept it running for at to the lowest degree a calendar month inwards an endeavor to monitor the activities of its visitors, including a massive overflowing of Alphabay refugees.
After the shutdown of both AlphaBay together with Hansa, Dream Market has emerged every bit the leading player, which has been inwards concern since 2013, but it has at nowadays been speculated past times many night spider web users that Dream Market is also nether police line control.
For detailed information — Read more.
2. New Ransomware Threatens to Send Your Internet History to All Your Friends
After WannaCry together with Petya ransomware outbreaks, a novel strain of ransomware has been making the rounds on the Google Play Store inwards bogus apps, which targets Android cellular telephone users.
Dubbed LeakerLocker, instead of encrypting files on your device, this Android ransomware secretly collects personal images, messages together with browsing history together with hence threatens to part them amongst your contacts if you lot don't pay $50 (£38).
For to a greater extent than detailed information on the LeakerLocker ransomware — Read more.
3. New CIA Leaks — Smartphone Hacking together with Malware Development
This week, the whistleblowing organisation revealed well-nigh a CIA contractor — Raytheon Blackbird Technologies — who was responsible for analysing advanced malware together with hacking techniques existence used inwards the wild past times cyber criminals.
For to a greater extent than detailed information on Highrise Project together with its contractor Raytheon Blackbird Technologies — Read More.
4. Three Back-to-Back Multi-Million Dollar Ethereum Heist inwards twenty Days
This week, an unknown hacker stole nearly $32 Million worth of Ethereum – 1 of the most pop together with increasingly valuable cryptocurrencies – from wallet accounts linked to at to the lowest degree 3 companies past times exploiting a critical vulnerability inwards Parity's Ethereum Wallet software.
This was the 3rd Ethereum cryptocurrency heist that came out 2 days afterwards an alleged hacker stole $7.4 Million worth of Ether from trading platform CoinDash together with 2 weeks afterwards someone hacked into South Korean cryptocurrency telephone substitution together with stole to a greater extent than than $1 Million inwards Ether together with Bitcoins from user accounts.
For to a greater extent than detailed information well-nigh the Ethereum Heist — Read More.
5. Critical Gnome Flaw Leaves Linux PCs Vulnerable
This calendar week has been bad for Linux users every bit well. H5N1 safety researcher discovered a code injection vulnerability inwards the thumbnail handler element of GNOME Files file director that allowed hackers to execute malicious code on targeted Linux machines.
High German researcher Nils Dagsson Moskopp dubbed the vulnerability Bad Taste (CVE-2017-11421) together with also released proof-of-concept (PoC) code on his weblog to demonstrate the vulnerability.
For to a greater extent than details well-nigh the Bad Taste vulnerability together with its PoC — Read More.
6. New Malware Exploits SambaCry to Hijack NAS Devices
SambaCry is a 7-year-old critical remote code execution (RCE) vulnerability (CVE-2017-7494) inwards Samba networking software that could allow a hacker to remotely ask maintain sum control of a vulnerable Linux together with Unix machines.
The flaw was discovered together with patched 2 months ago, but researchers at Trend Micro warned that the flaw had been actively exploited past times the SHELLBIND malware that generally targets NAS devices used past times small-scale together with medium-size businesses.
For to a greater extent than detailed information on the SHELLBIND malware — Read More.
7. Devil's Ivy — Millions of Internet-Connected Devices At Risk
This week, researchers at the IoT-focused safety theatre Senrio discovered a critical remotely exploitable vulnerability inwards an open-source software evolution library used past times major IoT manufacturers that eventually left millions of smart devices vulnerable to hacking.
Dubbed Devil's Ivy, the vulnerability (CVE-2017-9765) inwards the gSOAP toolkit (Simple Object Access Protocol) — an advanced C/C++ auto-coding tool for developing XML Web services together with XML application.
The researchers also released proof-of-concept (PoC) video demonstrating the RCE on a safety photographic television camera manufactured past times Axis Communications.
For to a greater extent than detailed information on the Devil's Ivy together with PoC video — Read More.
8. “Ubuntu Linux for Windows 10 Released” — Sounds So Weird?
Downloading an entire operating scheme has only conk every bit slow every bit downloading an application for Windows 10 users, every bit Microsoft lastly calendar week announced the availability of pop Linux distro 'Ubuntu' inwards the Windows App Store.
While the fellowship announced its plans to launch Fedora together with SUSE Linux every bit good on Windows Store, the fellowship did non break precisely when its users tin facial expression to run across these 2 flavours of Linux distro on the App Store.
For detailed information on how to install together with run Ubuntu on Windows 10 — Read More.
9. Over 70,000 Memcached Servers Vulnerable to Hacking
Cisco's Talos intelligence together with interrogation grouping lastly twelvemonth discovered 3 critical RCE vulnerabilities inwards Memcached — a moderhttps://infohacknews.blogspot.com//search?q=alphabay-hansa-darkweb-markets-seizedn open-source together with easily deployable distributed caching scheme that allows objects to live stored inwards memory.
The vulnerability exposed major websites including Facebook, Twitter, YouTube, Reddit, to hackers, but the squad of researchers scanned the meshwork on 2 dissimilar occasions together with constitute that over 70,000 servers are yet vulnerable to the attacks, including ransomware attacks like to the 1 that hit MongoDB databases inwards belatedly December.
For to a greater extent than in-depth information on the Memcached vulnerabilities — Read More.
10. Tor Launches Bug Bounty Program for Public
After its intention to launch a world põrnikas bounty computer program inwards belatedly Dec 2015, the Tor Project has finally launched a "Bug Bounty Program," encouraging hackers together with safety researchers to regain together with privately study bugs that could compromise the anonymity network.
The põrnikas bounty reports volition live sent through HackerOne — a startup that operates põrnikas bounty programs for companies including Yahoo, Twitter, Slack, Dropbox, Uber, General Motors – together with fifty-fifty the U.S. Department of Defense for Hack the Pentagon initiative.
For detailed information on põrnikas bounty prices together with types of valid vulnerabilities — Read More.
Other Important News This Week
Besides these, in that location were lots of incidents happened this week, including:
- Microsoft's smart move to assistance ask maintain downward cyber espionage campaigns conducted past times "Fancy Bear" hacking group.
- A novel credential stealing malware constitute existence sold for every bit inexpensive every bit $7 on subway scheme forums.
- Cisco patched a highly critical RCE vulnerability inwards its WebEx browser extension for Chrome together with Firefox, which could allow attackers to execute malicious code on a victim's calculator remotely.
- Windows 10 at nowadays allow you lot Reset forgotten password directly from your computer's Lock Screen.
- Several critical vulnerabilities inwards Segway Ninebot miniPRO could allow hackers to remotely ask maintain "full control" over the hoverboard inside hit together with instruct out riders out-of-control.
- Ashley Madison's nurture fellowship Ruby Corp has agreed to pay a sum of $11.2 Million to roughly 37 meg users whose personal details were exposed inwards a massive information breach 2 years ago.
Share This :
comment 0 Comments
more_vert