Suche
Beiträge, die mit Hacking getaggt sind
New #Blog post going through a #TryHackMe challenge. This time detecting two different attack types with snort!
https://ligniform.blog/posts/snort-live-attacks/
💜 🌱
#InfoSec #Learning #CyberSecurity #BlueTeam #Hacking
CTF Writeup: Snort Challenge - Live Attacks
Quick writeup of a Snort challenge on TryHackMe.Ligniform (Ligniform Blog)
Hilfe für Migrant*innen wird kriminalisiert
Mehr dazu bei https://netzpolitik.org/2025/staatstrojaner-in-italien-wir-kaempfen-gegen-repression-nicht-gegen-menschen/
a-fsa.de/d/3FZ
Link zu dieser Seite: https://www.aktion-freiheitstattangst.org/de/articles/9089-20250313-italien-setzt-spaehsoftware-graphite-ein.html
Link im Tor-Netzwerk: http://a6pdp5vmmw4zm5tifrc3qo2pyz7mvnk4zzimpesnckvzinubzmioddad.onion/de/articles/9089-20250313-italien-setzt-spaehsoftware-graphite-ein.html
Tags: #Überwachung #Graphite #Spähsoftware #Verbraucherdatenschutz #Cyberwar #Hacking #Trojaner #Lauschangriff #Überwachung #Italien #Israel #Asyl #Flucht #Folter #Abschiebung #Migration #Frontex
Staatstrojaner in Italien: „Wir kämpfen gegen Repression, nicht gegen Menschen“
Don Mattia fährt auf dem Schiff „Mare Ionio“ von Mediterranea mit und gehört zu den Betroffenen eines vermutlich staatlichen Spionage-Angriffs.netzpolitik.org
Nie sollte ein Backend ungeprüft Daten von einem Client verarbeiten und speichern. Die Techniken dafür sind nicht schwierig zu erlernen.
https://www.heise.de/hintergrund/Webservices-programmieren-in-Go-Daten-pruefen-und-speichern-Passwoerter-hashen-10278443.html?wt_mc=sm.red.ho.mastodon.mastodon.md_beitraege.md_beitraege&utm_source=mastodon
#Datenbanken #GoogleGo #GoLang #Hacking #Programmierung #Security #Softwareentwicklung #SQL #news
The threat actor published on a hacker forum details about the stolen data after trying to extort the company unsuccessfully.
Orange confirmed the breach to BleepingComputer saying that it occurred on a non-critical application. The company intiated an investigation and is working to minimize the impact of the incident.
According to the threat actor, who uses the alias Rey and is a member of the HellCat ransomware group, the stolen data is mostly from the Romanian branch of the company and includes 380,000 unique email addresses, source code, invoices, contracts, customer and employee information."
https://www.bleepingcomputer.com/news/security/orange-group-confirms-breach-after-hacker-leaks-company-documents/
#CyberSecurity #Romania #Orange #Jira #DataBreaches #Hacking
In fünf Terminen lernen Admins und IT-Security-Verantwortliche ab dem 28. April, ihre eigenen Systeme zu hacken, um sich vor Angreifern effektiv zu schützen.
https://www.heise.de/news/Ethical-Hacking-fuer-Fortgeschrittene-sich-selbst-hacken-bevor-es-andere-tun-10292984.html?wt_mc=sm.red.ho.mastodon.mastodon.md_beitraege.md_beitraege&utm_source=mastodon
#Hacking #Security #PenetrationTesting #news
Die Krypto-Börse Bybit ist Opfer des wohl bisher größten Diebstahls von Digitalwährung überhaupt geworden. Hinter der Attacke könnte ein Staat stehen.
https://www.heise.de/news/Groesster-Krypto-Coup-aller-Zeiten-Bybit-verliert-1-5-Milliarden-US-Dollar-10292118.html?wt_mc=sm.red.ho.mastodon.mastodon.md_beitraege.md_beitraege&utm_source=mastodon
#Cybercrime #Ethereum #Hacking #Kryptowährung #news
#hacking #programming #webdev #blog
Im Herbst wurde der schlimmste Telekommunikationshack in der US-Geschichte entdeckt. Die Angreifer wurden noch nicht gestoppt, ganz im Gegenteil.
https://www.heise.de/news/Massiver-Cyberangriff-auf-US-Provider-Attacken-gehen-immer-noch-weiter-10281222.html?wt_mc=sm.red.ho.mastodon.mastodon.md_beitraege.md_beitraege&utm_source=mastodon
#Cyberangriff #Cybersecurity #Hacking #Provider #news
Researchers at cybersecurity firm Recorded Future on Wednesday night revealed in a report that they've seen Salt Typhoon breach five telecoms and internet service providers around the world, as well as more than a dozen universities from Utah to Vietnam, all between December and January. The telecoms include one US internet service provider and telecom firm and another US-based subsidiary of a UK telecom, according to the company's analysts, though they declined to name those victims to WIRED."
https://www.wired.com/story/chinas-salt-typhoon-spies-are-still-hacking-telecoms-now-by-exploiting-cisco-routers/
#CyberSecurity #China #SaltTyphoon #StateHacking #USA #BigTelco #Hacking
China’s Salt Typhoon Spies Are Still Hacking Telecoms—Now by Exploiting Cisco Routers
Despite high-profile attention and even US sanctions, the group hasn’t stopped or even slowed its operation, including the breach of two more US telecoms.Andy Greenberg (WIRED)
The manuals, which are crafted by Lexipol’s team of public sector attorneys, practitioners, and subject-matter experts, are customized to align with the specific needs and local legal requirements of agencies across the country.
But the firm also faces criticism for its blanket approach to police policies and pushback on reforms.
The data, a sample of which was given to the Daily Dot by a group referring to itself as “the puppygirl hacker polycule,” includes approximately 8,543 files related to training, procedural, and policy manuals, as well as customer records that contain names, usernames, agency names, hashed passwords, physical addresses, email addresses, and phone numbers.
Among the manuals seen by the Daily Dot, agencies include police departments, fire departments, sheriff’s offices, and narcotics units."
https://www.dailydot.com/debug/lexipol-data-leak-puppygirl-hacker-polycule/
#USA #Hacking #Lexipol #DataLeaks #PoliceState
Lexipol Data Leak: Hackers Drop Police Training Manuals
Lexipol data leak: A 'puppygirl hacker polycule' shared thousands of files from a firm providing policy manuals to law enforcement.Mikael Thalen (The Daily Dot)
by Skwawkbox @skwawkbox
“Group says Trump’s and Musk’s open fascism and attacks on state organs is ‘testing the waters’ for all-out control and the enslavement of the working class”
https://skwawkbox.org/2025/02/11/video-hacker-group-anonymous-warns-trump-of-systemic-attacks-calls-for-mass-uprising-v-fascism/
#Press #US #Trump #Fascism #Anonymous #Hacking #Attack #Enslavement #WorkingClass
Video: hacker group Anonymous warns Trump of systemic attacks, calls for mass uprising v fascism
Group says Trump’s and Musk’s open fascism and attacks on state organs is ‘testing the waters’ for all-out control and the enslavement of the working class The Anonymous hac…SKWAWKBOX
In fünf Terminen lernen Admins und IT-Security-Verantwortliche ab dem 10.02., wie sie mit Ethical Hacking Systeme absichern und Schwachstellen aufdecken.
https://www.heise.de/news/Last-Call-Proaktive-IT-Security-mit-Pentesting-Ethical-Hacking-fuer-Admins-10265009.html?wt_mc=sm.red.ho.mastodon.mastodon.md_beitraege.md_beitraege&utm_source=mastodon
#Hacking #Security #PenetrationTesting #news
Die Hill-Chiffre (1929) ist anfällig für eine Known-Plaintext-Attacke. Wir haben die Chiffre in Python nachprogrammiert, um den Angriff ausprobieren zu können.
https://www.heise.de/ratgeber/Hill-Chiffre-in-Python-programmieren-und-angreifen-10253447.html?wt_mc=sm.red.ho.mastodon.mastodon.md_beitraege.md_beitraege&utm_source=mastodon
#Hacking #Python #Security #Software #Verschlüsselung #news
Ermittler haben zwei Internetseiten abgeschaltet, die für Cyberkriminalität genutzt worden sein sollen. Es seien zehn Millionen User registriert gewesen, so das Bundeskriminalamt. Acht Menschen wurden festgenommen.
➡️ https://www.tagesschau.de/wirtschaft/verbraucher/cyberkriminalitaet-ermittlungen-polizei-100.html?at_medium=mastodon&at_campaign=tagesschau.de
#Cyberkriminalität #Hacking #BKA
Sicherheitsforscher haben es geschafft, über das Internet die Kontrolle über Subaru-Fahrzeuge zu übernehmen. Entdeckt haben sie aber auch einen Datenschatz.
https://www.heise.de/news/Dank-Javascript-Autos-von-Subaru-liessen-sich-aus-der-Ferne-uebernehmen-10254605.html?wt_mc=sm.red.ho.mastodon.mastodon.md_beitraege.md_beitraege&utm_source=mastodon
#Cybersecurity #Datenschutz #Hacking #Subaru #news
Für erfolgreiche Angriffe auf Schutzfunktionen des Mikrocontrollers RP2350 lobten die Raspi-Macher ein Preisgeld aus, das sie nun viermal auszahlten.
https://www.heise.de/news/Raspberry-Pi-RP2350-Sicherheitsfunktionen-geknackt-10254523.html?wt_mc=sm.red.ho.mastodon.mastodon.md_beitraege.md_beitraege&utm_source=mastodon
#ARM #Hacking #Mikrocontroller #RaspberryPi #Security #Sicherheitslücken #news
15-jähriger Hacker veränderte Schulnoten - und Schifffahrts-Routen
Ein 15-jähriger Schüler aus dem italienischen Cesena hat es geschafft, sich in die Schlagzeilen der Medien zu hacken.Christian Kahle (WinFuture.de)
In fünf Terminen lernen Admins und IT-Security-Verantwortliche ab dem 10.02., wie sie mit Ethical Hacking Systeme absichern und Schwachstellen aufdecken.
https://www.heise.de/news/Proaktive-IT-Security-mit-Pentesting-Ethical-Hacking-fuer-Admins-10246220.html?wt_mc=sm.red.ho.mastodon.mastodon.md_beitraege.md_beitraege&utm_source=mastodon
#Hacking #Security #PenetrationTesting #news
Barcelona, nueva base de operaciones de piratas informáticos israelíes
Una investigación del periódico israelí 'Haaretz' desvela el traslado a la capital catalana en el último año de al menos tres equipos de empresas especializadas en hallar vulnerabilidades de móviles y ordenadoreselDiario.es Catalunya (ElDiario.es)
Haaretz Podcast
"There are roughly six such groups of Israelis who are the elite in the field – and half of them have moved to Spain," says an industry executive.
In the past two months, a team of Israeli vulnerability researchers - an industry term for hackers specializing in identifying weaknesses in digital defenses, known as "exploits" - arrived in Barcelona from Singapore. The team specializes in finding breaches in smartphone defenses through which spyware can be remotely installed."
https://www.haaretz.com/israel-news/security-aviation/2024-12-26/ty-article/.premium/israeli-hackers-flock-to-barcelona-as-spyware-industry-shifts/00000193-fec4-df5b-a9b3-fec5d9dc0000
#Israel #CyberSecurity #Hacking #Spyware #Spain #Barcelona
https://ground.news/article/a-us-judge-finds-nso-group-liable-for-exploiting-a-bug-in-whatsapp-to-spy-on-1-400-users-and-that-whatsapp-is-entitled-to-sanctions-against-nso?utm_source=mobile-app&utm_medium=newsroom-share
WhatsApp wins legal victory against NSO Group in Pegasus hacking case
Judge finds no merit in arguments made by Israeli spyware manufacturerFinancial Times (Ground News)
But now there’s rising interest in hacking other kinds of devices people use, like Wi-Fi-connected security cameras and other IoT products.
Toka, an Israeli startup backed by Andreessen Horowitz, specializes in this type of work. It previously gained attention for a 2022 Haaretz article detailing its claims about being able to obtain and even delete security camera footage.
The company is now looking to hire a “Client Director USA” to “support new business growth within the US government market.” The position requires a “strong history of technology sales within DoD and national security agencies.”"
https://techcrunch.com/2024/12/06/a16z-backed-toka-wants-to-help-us-agencies-hack-into-security-cameras-and-other-iot-devices/
#USA #Surveillance #PoliceState #StateHacking #Hacking #CyberSecurity #IoT
a16z-backed Toka wants to help US agencies hack into security cameras and other IoT devices | TechCrunch
An Israeli startup specializing in penetrating IoT devices says it's hiring to "support new business growth" in the US government market.Charles Rollet (TechCrunch)
What happens when an unfortunate bug ends up in a spider’s web? It gets bitten & wrapped in silk and becomes a meal. But if the web belongs to an orb-weaver and the bug is a male firefly, it seems the trapped firefly (once bitten) ends up imitating a female’s flash pattern & luring other males to their doom.
https://newatlas.com/biology/spiders-hack-fireflies-attract-webs/
#spider #firefly #hacking #nature #science #media #tech #news
![[ImageSource: Newatlas]
It all started with an observation that almost all fireflies in webs were male, and careful investigation revealed it’s not just some odd coincidence. When spiders are not present, the male fireflies don’t act any differently. When a spider is present and detects a male firefly, the spider wraps and bites the firefly differently than other insects. It’s unknown exactly what happens, but this somehow results in the male firefly imitating a female’s flash patterns. Males see this and swoop in to mate, but with a rather different outcome than expected.
The research paper contains added details but it’s clear that there is more going on in this process than meets the eye. Spiders are already fascinating creatures (we’ve seen an amazing eye-tracking experiment on jumping spiders) and it’s remarkable to see this sort of bio-hacking going on under our very noses.](https://nerdculture.de/system/media_attachments/files/113/600/408/742/987/355/original/a49ee2adc2580e21.png "[ImageSource: Newatlas]
It all started with an observation that almost all fireflies in webs were male, and careful investigation revealed it’s not just some odd coincidence. When spiders are not present, the male fireflies don’t act any differently. When a spider is present and detects a male firefly, the spider wraps and bites the firefly differently than other insects. It’s unknown exactly what happens, but this somehow results in the male firefly imitating a female’s flash patterns. Males see this and swoop in to mate, but with a rather different outcome than expected.
The research paper contains added details but it’s clear that there is more going on in this process than meets the eye. Spiders are already fascinating creatures (we’ve seen an amazing eye-tracking experiment on jumping spiders) and it’s remarkable to see this sort of bio-hacking going on under our very noses.")
NSO Group Spies on People on Behalf of Governments - Source: www.schneier.com - CISO2CISO.COM & CYBER SECURITY GROUP
Source: www.schneier.com - Author: Bruce Schneier The Israeli company NSO Group sells Pegasus spyware to countries around the world (including counCISO2CISO Editor 2 (CISO2CISO Cyber Security Group)
https://www.propublica.org/article/microsoft-solarwinds-golden-saml-data-breach-russian-hackers
#Tech #News #Cybersecurity #Hacking #Data #Technology
On Wednesday, the Barcelona-based human rights nonprofit Iridia announced that it had filed a complaint in a Catalan court earlier this week accusing NSO’s founders Omri Lavie and Shalev Hulio, as well as Yuval Somekh, an executive of two affiliate companies, of hacking crimes.
Iridia represents lawyer Andreu Van den Eynde, an attorney and university professor who specializes in cybersecurity. According to a 2022 investigation by Citizen Lab, a nonprofit that has been investigating government spyware for more than a decade, Van den Eynde was among the victims of a wide-ranging hacking campaign against at least 65 Catalans linked to the region’s attempts to become independent from Spain, which was carried out using NSO’s Pegasus software. Amnesty International independently confirmed Citizen Lab’s findings."
https://techcrunch.com/2024/11/13/lawyer-allegedly-hacked-with-spyware-names-nso-founders-in-lawsuit/
#CyberSecurity #NSOGroup #Pegasus #Spyware #Spain #Hacking
Lawyer allegedly hacked with spyware names NSO founders in lawsuit | TechCrunch
Spanish lawyer Andreu Van den Eynde is suing NSO Group and its founders Omri Lavie and Shalev Hulio, accusing them of illegal hacking.Lorenzo Franceschi-Bicchierai (TechCrunch)
The data includes the employees’ name, work contact information, and what location they work at, and has more than 2.8 million lines of data, according to the post on Breach Forums. The post says the source of the data was MOVEit, which is suite of cloud data management tools.
“Amazon and AWS systems remain secure, and we have not experienced a security event. We were notified about [a] security event at one of our property management vendors that impacted several of its customers including Amazon. The only Amazon information involved was employee work contact information, for example work email addresses, desk phone numbers, and building locations,” an Amazon spokesperson told 404 Media in an email."
https://www.404media.co/amazon-confirms-breach-of-employee-data/
#Amazon #DataBreach #DataProtection #Privacy #Hacking #CyberSecurity
Amazon Confirms Breach of Employee Data
The breach includes the employees’ name, work contact information, and what location they work at.Joseph Cox (404 Media)
https://securityaffairs.com/170823/hacking/cyberattack-payment-systems-israel.html
#securityaffairs #hacking #iphone
A cyberattack on payment systems blocked cards readers across stores and gas stations in Israel
A cyberattack in Israel allegedly disrupted communication services, causing widespread malfunction of credit card readers across the country.Pierluigi Paganini (Security Affairs)
The FBI’s public notice filed this week is a rare admission from the federal government about the threat from fraudulent emergency data requests, a legal process designed to help police and federal authorities obtain information from companies to respond to immediate threats affecting someone’s life or property. The abuse of emergency data requests is not new, and has been widely reported in recent years. Now, the FBI warns that it saw an “uptick” around August in criminal posts online advertising access to or conducting fraudulent emergency data requests, and that it was going public for awareness.
“Cyber-criminals are likely gaining access to compromised US and foreign government email addresses and using them to conduct fraudulent emergency data requests to US based companies, exposing the personal information of customers to further use for criminal purposes,” reads the FBI’s advisory."
https://techcrunch.com/2024/11/08/fbi-says-hackers-are-sending-fraudulent-police-data-requests-to-tech-giants-to-steal-peoples-private-information/
#USA #CyberSecurity #FBI #Hacking #Privacy #DataProtection #DataBreaches
FBI says hackers are sending fraudulent police data requests to tech giants to steal people's private information | TechCrunch
The warning is a rare admission from the FBI about the threat from fake emergency data requests submitted by hackers with access to police email accounts.Zack Whittaker (TechCrunch)
https://scidsg.medium.com/how-to-check-your-iphone-for-pegasus-338bafb2358e
#threatmodel #security #iPhone #hacking #phishing #amnesty #journalism #opensource #press #law