Tag Archives: Security News

Infosec Weekly Round-up December 10-16, 2012

“Dexter” malware steals credit card data from point-of-sale terminals A researcher has uncovered new malware that steals payment card data from point-of-sale terminals used by stores, hotels, and other businesses. Dexter, as the malware is called, has infected hundreds of

Infosec Weekly Round-up November 12-18, 2012

Dumping Domain Password Hashes Using Metasploit (ntds_hashextract.rb) “The ntds_hashextract.rb script is a standalone tool that can be used to quickly and efficiently extract Active Directory user account password hashes from the exported datatable of an NTDS.dit database. As it turns

Infosec Weekly Round-up October 29- November 04, 2012

Popular websites leaking system status information, private data and even passwords Security researchers have discovered that thousands of popular websites are putting their users’ data at risk by leaking internal status information. Most of the sites are only leaking enough

Infosec Weekly Round-up October 22-28, 2012

Wi-Fi chips in phones, tablets, vulnerable to DoS attack Security researchers at Core Security have identified a denial-of-service (DoS) vulnerability in the firmware for Wi-Fi chips installed in several smartphones, tablets, laptops, and even a car. The vulnerability is present

Infosec Weekly Round-up October 15-21, 2012

Businesses take 7 months to detect intruders “Corporations are taking an average of seven months to detect system breaches despite most having access to forensic information in their logs, Verizon has warned. According to Bryan Sartin, vice president of Verizon’s

Infosec Weekly Round-up October 08-14, 2012

Skype worm spreads, using LOL trick to infect unwary users Skype users are warned to be on their guard, regarding malicious instant messages that have been sent through the service, designed to infect Windows computers. http://nakedsecurity.sophos.com/2012/10/08/skype-worm-spreads/ New TDL4 strain very

Infosec Weekly Round-up October 01-07, 2012

Millions of Brazilian internet users falling victim to a sustained and silent mass attack “This is the description of an attack happening in Brazil since 2011 using 1 firmware vulnerability, 2 malicious scripts and 40 malicious DNS servers, which affected