Darren Pauli

Contact Mail Follow Twitter RSS feed

Google bellows bug news after Microsoft sails past fix deadline

Google's Project Zero has again revealed a Windows bug before Microsoft fixed it. Project Zero operates under a “once we tell you about a bug you have 90 days to fix it or the kitten gets it or we reveal it to the world” policy. On this occasion, the bug allows attackers to access memory using EMF metafiles, a tool …
Darren Pauli, 20 Feb 2017
Image by Bel Ka https://www.shutterstock.com/it/g/bel_ka

Honeypots: Free psy-ops weapons that can protect your network before defences fail

Feature The hackers breached the transport operator's systems and before they knew it had sent a passenger train hurtling into a wall. And the only reason you didn't read about it in the papers was that the systems were an entirely fictitious network created in 2015 to test just how far snoopers or crims would go in attacking vulnerable …
Darren Pauli, 8 Feb 2017

Darkode VXer handed three years' probation

A malware writer and one time FireEye intern hauled in during massive global raids of cybercrime forum Darkode has been handed three years' probation, ducking a possible 16-month sentence. US District Judge Arthur Schwab ordered Morgan Culbertson, 22, to perform 300 hours of community service. The sentence took into account …
Darren Pauli, 7 Feb 2017

Hello? Police? My darknet drug market was just hacked by criminals

A popular dark net marketplace hawking drugs and stolen credit cards has opened a security bug bounty offering to pay hackers for reporting vulnerabilities. The "Hansa" marketplace announced the bounty last week inviting security researchers to disclose vulnerabilities worth up to 10 bitcoins (US$10,170) for bugs that could …
Darren Pauli, 6 Feb 2017

Slammer worm slithers back online to attack ancient SQL servers

One of the world's most famous net menaces, SQL Slammer, has resumed attacking servers some 13 years after it set records by infecting 75,000 servers in 10 minutes, researchers say. The in-memory worm exploits an ancient flaw in Microsoft SQL server and Desktop Engine triggering denial of service, and at the time of its …
Darren Pauli, 5 Feb 2017
Image by robodread http://www.shutterstock.com/gallery-529180p1.html

Popular hacker warkit Metasploit now hacks hardware and cars

Popular offensive hacking toolkit Metasploit now works on hardware, including cars, after a major update to the 13-year old platform. The free-or-paid modular hacking machine now sports plenty of CVE-specific exploitation components that security professionals have long-used for penetration tests and research. An update to …
Darren Pauli, 3 Feb 2017

Particle accelerator hacked: Boffins' hashed passwords beamed up

UPDATE The Australian Nuclear Science and Technology Organisation (ANSTO) is investigating a computer security breach at the Australian Synchrotron that saw hackers steal scientists' usernames and passwords Friday. Hackers of as yet unknown origin hit systems hosting the web portal where researchers from ANSTO and third parties can …
Darren Pauli, 3 Feb 2017
Sad Android

Bring out your dead! Firm wants to pay big bucks for old bugs

Security firm Zimperium will spend US$1.5 million buying hacks targeting flaws in three-year-old Android KitKat and ancient versions of iOS. The California threat detection company internet arms dealer will splash cash acquiring private exploits against public patched vulnerabilities dating back to at least the 2013 Android …
Darren Pauli, 2 Feb 2017
RomanYa http://www.shutterstock.com/gallery-1222298p1.html

WordPress fixed god-mode zero day without disclosing the problem

Last week's WordPress patch run fixed a then-secret zero day bug that let remote unauthorised hackers edit or delete WordPress pages. The remote privilege escalation and content injection hole hits Wordpress versions 4.7 and 4.7.1 and allows all pages on unpatched sites to be modified, redirecting visitors to exploits and a …
Darren Pauli, 2 Feb 2017
Jigsaw puzzle of a desktop box

Cerber tops Windows 10 ransomware charts

Net scum behind the Cerber ransomware have been pounding enterprises infecting more corporate machines than any other, according to Microsoft. Some 2114 infections have been discovered from December to January on corporate endpoints operating Windows 10 Enterprise, an operating system that Microsoft boffins says breaks the …
Darren Pauli, 1 Feb 2017

Dark web hubs paying workers to leak corporate secrets

Staff are taking to the dark web to leak corporate secrets for cash, research reveals. Hackers from US-based risk management outfit RedOwl and Israeli threat intelligence firm IntSights worked their way past the interview process to access the private dark net property Kick Ass Marketplace, where they found evidence of staff …
Darren Pauli, 1 Feb 2017

Apple kills activation lock check, possible dirty stolen device hack

Video Apple has closed its iCloud activation lock check in a possible move to neuter a bypass method that allowed stolen devices to be reactivated at the expense of legitimate devices. Cupertino's shuttered iCloud activation lock feature allowed users to check if a second-hand device was registered and locked to a previous owner, a …
Darren Pauli, 31 Jan 2017
Piggy bank, image via Shutterstock

Infosec industry to drive machine learning spend surge says analyst

The information security industry's rush to adopt machine learning will help businesses burn US$96 billion on big data, intelligence, and analytics by 2021, says research house ABI . The report by lead number cruncher Dimitrios Pavlakis claims User and Entity Behavior Analytics (UEBA) and "deep learning algorithm designs" will …
Darren Pauli, 31 Jan 2017
Tripping over

You're taking the p... Linux encryption app Cryptkeeper has universal password: 'p'

Linux encryption app Cryptkeeper has a bug that causes it to use a single-letter universal decryption password: "p". The flawed version is in Debian 9 (Stretch), currently in testing, but not in Debian 8 (Jessie). The bug appears to be a result of a bad interaction with the encfs encrypted filesystem's command line interface: …
Darren Pauli, 31 Jan 2017

Marketing company leaks 17,000 recorded phone calls, many with credit card numbers

More than 400,000 phone call recordings that include names, addresses, phone numbers and credit card information have been leaked online by Florida marketing company VICI Marketing following suspected security blunders. The 28GB database was publicly-accessible and included recordings of inbound and outbound phone calls. …
Darren Pauli, 30 Jan 2017
Image by Vasilius https://www.shutterstock.com/g/Vasilius

NASA brews better test to find ET in cosmic cocktails

Space agency NASA has created a test 10,000 times more sensitive than current technology to detect signs of life beyond Earth. Scientists hope to use the enhanced "capillary electrophoresis", an improvement on a three-decade old technique, in explorations of liquid-laden locales such as Europa where the test could help detect …
Darren Pauli, 27 Jan 2017
Army of Darkness. Universal Pictures.

Bookish hacker finds holes in Amazon, Apple, Google epub services

Bug hunter Craig Arendt has reported vulnerabilities in major eBook readers including those from Apple, Google, and Amazon. The similar but separate XML external entity (XXE) flaws also impact all online epub ebook services that use the popular epubcheck library that ensures good format conversions into the universal epub book …
Darren Pauli, 27 Jan 2017

Uber pays hacker US$9,000 for partner firm's bug

Russian penetration tester Vladimir Ivanov has reported a bug in anti-ransomware backup service Code42 that could have seen attackers pilfer data from the likes of Uber, Lockheed Martin, and Adobe. Ivanov, of SCADA hack house Positive Technologies, reported the since-patched XML external entity vulnerability to Uber, which …
Darren Pauli, 27 Jan 2017
Office Space

Former Mozilla dev joins chorus roasting antivirus, says 'It's poison!'

Antivirus is harmful and everyone should uninstall it, so says recently liberated ex-Mozilla developer Robert O'Callahan. The former Mozilla man worked at the browser baron for 16 years and has now joined his voice to the growing chorus of hackers pouring scorn on the utility of antivirus software. Among O'Callahan's beefs is …
Darren Pauli, 27 Jan 2017
Composite image. Image by Syda Productions https://www.shutterstock.com/g/Syda+Productions

Boffins break Samsung Galaxies with one SMS carrying WAP crap

A single TXT message is enough to cause Samsung S5 and S4 handsets to return to factory settings, likely wiping users' data along the way. And because the attack exploits Android's innards, other vendors' handsets are at risk. The vulnerabilities, thankfully patched by Samsung, means attackers can send WAP configuration …
Darren Pauli, 25 Jan 2017
Image by elroyspelbos https://www.shutterstock.com/g/elroyspelbos

Firefox bares teeth, attacks sites that collect personal data

Shoddy sites will have fewer places to hide with Firefox joining Chrome in badging cleartext sites that collect personal information as insecure. Mozilla's labels won't be as prominent as Google's, introduced this year, which places the red letter label in the address bar. Firefox will instead tuck its warning in the same spot …
Darren Pauli, 25 Jan 2017
Image by Ryger https://www.shutterstock.com/g/RYGER

Human bot hybrid finds LinkedIn email, phone number-filching holes

LinkedIn has shuttered five dangerous privacy holes that could have allowed users' phone numbers, email addresses and resumes to be downloaded, plus the deletion of all connection requests. The flaws, since patched, were found by the first human-bot hacking hybrid, the brainchild of Bangalore security boffin Rahul Sasi. Sasi …
Darren Pauli, 25 Jan 2017
Software patch

Microsoft fixes remote desktop app Mac hole

Microsoft has patched a code execution hole in its Mac remote desktop client that grants read and write to home directories if users do no more than click a link, says Italian security researcher Filippo Cavallarin. The hole was patched 17 January. Cavallarin says the flaw allowed remote attackers to execute arbitrary code on …
Darren Pauli, 24 Jan 2017

VXers gift their mates an Android bank-raiding app's source code

Source code for an Android banking app has been published online, spurring fears it could prompt a wave of malicious apps. The code has is being injected into otherwise legitimate apps and shared as APK installation files or on third party app stores, notorious as harbours for malicious apps. Users will need to grant the app …
Darren Pauli, 24 Jan 2017

Protected US military server poked via army recruitment website

Beads of sweat must have surely run down the face of one hacker who, while trying to score a bug bounty, inadvertently infiltrated an "internal US Department of Defence website that requires special credentials to access." The unnamed hacker used exploited a pair of vulnerabilities to gain access to the US Army network via an …
Darren Pauli, 23 Jan 2017

Biting the hand that feeds IT © 1998–2018