The Importance of Strong Passwords on Social Media
Last Tuesday, April 23, the Twitter account of the Associated Press news agency was hacked and sent out a hoax tweet reporting that President Barack Obama had been injured by an explosion in the White House. Within seconds, Wall Street was in panic mode and US stock plunged. Situations like this illustrate once again the [...]
Twitter, Facebook, Apple, Microsoft… who is left?
If we had to elaborate a list with the top tech companies who have being hacked in the last weeks, we should include all the ones in the title of this blog post, and maybe a few more cases we are still not aware of. The first one was Twitter. On February 1st Twitter published [...]
Are passwords dead?
Last Friday my friend Bob McMillan wrote an article on Wired (Google Declares War on the Password) which talks about a research paper Google will publish this month. I don’t know how many times we have mentioned how important it is to choose a good set of passwords, at least 1,000 times We have written [...]
2 solutions for the latest Java vulnerability
Last week a new Java 0-Day was spotted in the wild . In short, anyone with Java installed and enabled in his browser could be easily infected while visiting any website that was using the exploit to take advantage of the latest Java’s security hole. What can we do to protect ourselves? I give you [...]
The Rise of the Ransomware – Police Virus Reloaded
Some of you probably remember this article where I described the huge increase of attacks seen in some countries by malware that was posing as different law enforcement agencies. This kind of malware is called “Police Virus” due to this, and its main purpose (as usual with malware) is to steal money from the users. [...]
LinkedIn spam serving Adobe and Java exploits
Today we will be reviewing a cybercriminal’s recipe for success: Hacking LinkedIn’s password (and possibly user-) database. Sending an email to all obtained email addresses, which is urging you to check your LinkedIn inbox as soon as possible. A user unawarely clicking on the link. An exploit gets loaded. Malware gets dropped. Malware gets executed. [...]
Flame: new cyber-espionage tool?
This week a “new” malware has been uncovered (taking a look at our Collective Intelligence database, I can confirm that some of the files involved in this attack date back at least to April 2011.) that could be related to cyber-espionage (detected as W32/Flamer.A.worm). It has been infecting computers in middle-east countries (Iran, Israel, Syria, [...]
Where is the lulz now?
Really good news. I have just read that LulzSec members have been arrested and that their main head Sabu has been working as an informant for the FBI. It turns out he was arrested last year, and since then he has been working with Law Enforcement. As I said, really good news Will this mean [...]
Michael Jackson catalogue stole from Sony. More to come?
Yesterday it was made public that Sony Music had a security incident in May 2011 and the entire back catalogue of Michael Jackson, including unreleased material, was stolen. This happened after Sony was also hacked last year, when personal information from more than a 100 million customers was stolen in 2 different incidents affecting PlayStation [...]
Bot shopping with my wife
When my wife told me she had received an email with a purchase confirmation she hadn’t done, my first thought was: How can she even remember what she bought? She buys thousands of clothes online, probably she doesn’t remember it, this wouldn’t be the first time After she told me 1,000 times she had not [...]
