Indian Cyber Security Solutions - ICSS

(An ISO 27001 Certified Company) A unit of Green Fellow IT Security Solutions Pvt Ltd

IS your company data really secure ?

Get a Free Security Checkup

IS YOUR IT INFRASTRUCTURE SAFE FROM HACKERS ?

Go for a Demo Audit

Summer Training with Live Project

Apply Now

Our Services

Don`t Believe us ? Ask them | Reported critical vulnerabilities

Cyber Security Research Articles

Protocol of Telephony which is newer to Diameter Just As Vulnerable As SS7

Protocol of Telephony which is newer to Diameter Just As Vulnerable As SS7 Protocol is the special set of rules that end points in a telecommunication connection use when they communicate. Protocols specify interactions between the communicating entities. Security researchers say the Diameter protocol used with today’s 4G (LTE) telephony and data transfer standard is

admin
July 4, 2018
0

Ransomware Nozelesn Reportedly Using Spam to Target Poland

Ransomware Nozelesn Reportedly Using Spam to Target Poland Ransomware is a form of malicious software (or malware) that, once it’s taken over your computer, threatens you with harm, usually by denying you access to your data. The attacker demands a ransom from the victim, promising — not always truthfully — to restore access to the

admin
July 3, 2018
0

Vulnerability of Host Header Injection reported by ICSS Student Rabsun Sarkar

HTTP header injection HTTP header injection is a general class of web application security vulnerability which occurs when Hypertext Transfer Protocol (HTTP) headers are dynamically generated based on user input. Header injection in HTTP responses can allow for HTTP response splitting, Session fixation via the Set-Cookie header, cross-site scripting (XSS), and malicious redirect attacks via

admin
July 2, 2018
0

Brave Browser Adds Support for Private Browsing With Tor Integration

Brave Browser Brave is a free and open-source pay-to-surf web browser based on the Chromium web browser and its Blink engine (with the exception of its iOS version, a Firefox for iOS fork using the WebKit engine), announced by the co-founder of the Mozilla project and creator of JavaScript, Brendan Eich. Brave Browser

admin
June 30, 2018
0

A Study of the Indian BFSI Sector Based on Classification, Text Mining & Sentiment Analysis of Customer Feedback Using Python – By ICSS Student – Pijush Mandal

Sentiment Analysis Sentiment Analysis is the process of determining whether a piece of writing is positive, negative or neutral. It’s also known as opinion mining, deriving the opinion or attitude of a speaker. A common use case for this technology is to discover how people feel about a particular topic. With the recent advances in

admin
June 29, 2018
0

WPA3 New Wi-Fi Standard Released

WPA3 New Wi-Fi Standard Released WPA stands for Wi-Fi Protected Access, and is a security technology for Wi-Fi networks. It was developed in response to the weaknesses of WEP (Wired Equivalent Privacy), and therefore improves on WEP’s authentication and encryption features. Wi-Fi Alliance, the organization that manages Wi-Fi technologies, announced the official release of WPA3.

admin
June 27, 2018
0

EFF Launches Encryption Initiative for Email Domains Named STARTTLS Everywhere

EFF Launches Encryption Initiative for Email Domains Named STARTTLS Everywhere EFF (Electronic Frontier Foundation) announced a new project named STARTTLS Everywhere that aims to provide guidance to server administrators on how to set up a proper email server that runs STARTTLS the correct way. STARTTLS Everywhere is eerily similar to Let’s Encrypt, another pro-encryption initiative

admin
June 26, 2018
0

HMRC – The UK’s tax agency Recorded the Voices of 5.1 Million Brits

HMRC – The UK’s tax agency Recorded the Voices of 5.1 Million Brits HMRC is a non-ministerial department of the UK Government responsible for the collection of taxes, the payment of some forms of state support and the administration of other regulatory regimes including the national minimum wage. HMRC was formed by the merger of

admin
June 25, 2018
0

Docker Images Removed From Docker Hub

Docker Images Removed From Docker Hub Docker is a computer program that performs operating-system-level virtualization also known as containerization. It is developed by Docker, Inc. Docker is primarily developed for Linux, where it uses the resource isolation features of the Linux kernel such as cgroups and kernel namespaces. The Docker team has pulled 17 Docker

admin
June 16, 2018
0

Monero Currently in Circulation Has Been Mined Using Malware

Monero Currently in Circulation Has Been Mined Using Malware Monero cryptocurrency currently in circulation has been mined using malware, and about 2% of the total daily hashrate comes from devices infected with cryptocurrency-mining malware. These numbers are the results of in-depth research of the coin-mining malware scene by security researchers from Palo Alto Networks. The

admin
June 13, 2018
0

Ethereum “Giveaway” Scammers Have Tricked People Out of $4.3 Million

Ethereum “Giveaway” Scammers Have Tricked People Out of $4.3 Million Ethereum is a distributed public blockchain network. the Ethereum blockchain focuses on running the programming code of any decentralized application. In the Ethereum blockchain, instead of mining for bitcoin, miners work to earn Ether, a type of crypto token that fuels the network. Online crooks

admin
June 12, 2018
0

Weight Watchers IT Infrastructure Exposed via No-Password Kubernetes Server

Weight Watchers suffered a small Security Breach Weight Watchers is the registered trademark of Weight Watchers International, Inc. Just like many companies before it, weight loss program Weight Watchers suffered a small security breach after security researchers found a crucial server exposed on the Internet that was holding the configuration info for some of the

admin
June 12, 2018
0

Cisco Removes Backdoor Account, Fourth in the Last Four Months

Cisco Removes Backdoor Account, Fourth in the Last Four Months Cisco is the largest networking company in the world. The stock was added to the Dow Jones Industrial Average on June 8, 2009, and is also included in the S&P 500 Index, the Russell 1000 Index, NASDAQ-100 Index and the Russell 1000 Growth Stock Index.

admin
June 9, 2018
0

F-Secure Fixes Serious Vulnerability in Antivirus Products

F-Secure Fixes Serious Vulnerability in Antivirus Products F-Secure Corporation (formerly Data Fellows) is a Finnish cyber security and privacy company based in Helsinki, Finland. The company has 20 country offices and a presence in more than 100 countries, with Security Lab operations in Helsinki, Finland and in Kuala Lumpur, Malaysia. The company develops and sells

admin
June 9, 2018
0

CrowdStrike customers suffers data breach

CrowdStrike customers suffers data breach CrowdStrike is an American cybersecurity technology company based in Sunnyvale, California, and a wholly owned subsidiary of CrowdStrike Holdings, Inc. The company provides endpoint security, threat intelligence, and incident response services to customers in more than 170 countries. The company has been involved in countermeasure efforts to several high-profile cyber-attacks,

admin
June 8, 2018
0

Crypto Mining used by Prowli Malware which Infects over 40,000 Machines

Crypto Mining used by Prowli Malware which Infects over 40,000 Machines Crypto currency is a type of digital currency that uses cryptography for security and anti-counterfeiting measures. Public and private keys are often used to transfer cryptocurrency between individuals. Cyber-criminals have managed to assemble a gigantic botnet of over 40,000 infected web servers, modems, and

admin
June 7, 2018
0

All New Privacy and Security Features Coming in macOS 10.14 Mojave

macOS 10.14 Mojave coming with new Privacy and Security Features macOS is a series of graphical operating systems developed and marketed by Apple Inc. since 2001. It is the primary operating system for Apple’s Mac family of computers. Within the market of desktop, laptop and home computers, and by web usage, it is the second

admin
June 6, 2018
0

Drupal Sites Over 115,000 Still Vulnerable to Drupalgeddon 2

Drupal Sites Over 115,000 Still Vulnerable to Drupalgeddon 2 Drupal is a free and open source content-management framework written in PHP and distributed under the GNU General Public License. Drupal provides a back-end framework for at least 2.3% of all web sites worldwide – ranging from personal blogs to corporate, political, and government sites. Systems

admin
June 5, 2018
0

RSAT Will Automatically Be Reinstalled After New Updates in Next Windows 10 Version

RSAT (RSAT) Remote Server Administration Tools enables IT administrators to remotely manage roles and features in Windows Server 2012 R2, Windows Server 2012, Windows Server 2008, and Server 2008 R2 from a computer that is running Windows 10, Windows 8.1, Windows 8, Windows 7, or Windows Vista. RSAT allows administrators to run snap-ins and tools

admin
June 4, 2018
0

OMB Releases Damning Report on U.S. Govt’s Inability to Counter Cyber Threats

OMB Releases Damning Report on U.S. Govt’s Inability to Counter Cyber Threats OMB (Office of Management and Budget) oversees the implementation of the president’s objectives in the areas of policy, budget, management and regulation. To that end, the recent government-wide cybersecurity risk assessment, carried out by the OMB, in coordination with the Department of Homeland

admin
June 2, 2018
0

Ticketfly Temporarily Shuts Down to Investigate Hack

Ticketfly Temporarily Shuts Down to Investigate Hack Ticketfly is a ticket distribution service started in 2008 in San Francisco, California. Andrew Dreskin is the CEO of the company, previously co-founded the company Ticketweb, which is now owned by Ticketmaster. It grossed $500 million in 2013, processing 11.2 million tickets for more than 80,000 events across

admin
June 1, 2018
0

Remote Code Execution Vulnerability Disclosed in Windows JavaScript Component

JavaScript Component of Windows found Remote Code Execution Vulnerability JavaScript (/ˈdʒɑːvəˌskrɪpt/), often abbreviated as JS, is a high-level, interpreted programming language. It is a language which is also characterized as dynamic, weakly typed, prototype-based and multi-paradigm. JavaScript enables interactive web pages and thus is an essential part of web applications. The vast majority of websites

admin
May 31, 2018
0

Reboot Your Router to remove VPNFilter

Router reboot to remove VPNFilter Router is a networking device that forwards data packets between computer networks. Routers perform the traffic directing functions on the Internet. A data packet is typically forwarded from one router to another router through the networks that constitute an internetwork until it reaches its destination node. After it was reported

admin
May 30, 2018
0

Cobalt Hacking Group Still Active Despite Leader’s Arrest

Cobalt Hacking Group Still Active Despite Leader’s Arrest Cobalt hacker group that’s specialized in stealing money from banks and financial institutions has remained active, even launching a new campaign, its leader’s arrest in Spain two months ago. Cobalt is still active: its members continue attacks on financial organizations and other companies worldwide,” said Dmitry Volkov,

admin
May 29, 2018
0

Oracle Plans to Drop Java Serialization Support, the Source of Most Security Bugs

Oracle Plans to Drop Java Serialization Support, the Source of Most Security Bugs Oracle is one of the largest vendors in the enterprise IT market and the shorthand name of its flagship product, a relational database management system (RDBMS) that’s formally called Oracle Database. Oracle plans to drop support for data serialization/deserialization from the main

admin
May 28, 2018
0

Researchers Bypass AMD’s SEV Virtual Machine Encryption

Encryption of AMD’s SEV Virtual Machine Bypass by Researchers Encryption is the process of using an algorithm to transform information to make it unreadable for unauthorized users. This cryptographic method protects sensitive data such as credit card numbers by encoding and transforming information into unreadable cipher text. This encoded data may only be decrypted or

admin
May 26, 2018
0

Malware Found in the Firmware of 141 Low-Cost Android Devices

Firmware of 141 Low-Cost Android Devices holds Malware Firmware is a software program permanently etched into a hardware device such as a keyboards, hard drive, BIOS, or video cards. It is programmed to give permanent instructions to communicate with other devices and perform functions like basic input/output tasks. Two years after being ousted, a criminal

admin
May 25, 2018
0

Cryptocurrency Verge Network Falls Victim to Same Attack Even After Hard-Fork

Cryptocurrency Verge Network Falls Victim to Same Attack Even After Hard-Fork Cryptocurrency is a digital or virtual currency that uses cryptography for security. It is difficult to counterfeit because of this security feature. A defining feature of it, and arguably its most endearing allure, is its organic nature; it is not issued by any central

admin
May 24, 2018
0

Spam Botnet Tracked Down to Malicious PHP Script Found on 5,000 Hacked Sites

PHP Script (Malicious) Found on 5,000 Hacked Sites PHP scripts can be created using any basic text editor or HTML editing software tool. Each PHP file must be saved with a .php file extension in order to be recognized as a functioning PHP script. When the Apache server has the appropriate settings, PHP code can be

admin
May 23, 2018
0

Microsoft Releases KB4103714 Cumulative Update for Windows 10 Fall Creatives Updates

Windows 10 : Microsoft Releases KB4103714 Cumulative Update Windows 10 is a personal computer operating system developed and released by Microsoft, as part of the Windows NT family of operating systems. It was released on July 29, 2015. It is the first version of Windows that receives ongoing feature updates. Devices in enterprise environments can

admin
May 22, 2018
0

System Management Mode Speculative Execution Attacks

System Management Mode Speculative Execution Attacks System Management Mode (SMM, sometimes called ring -2) is an operating mode of x86 central processor units (CPUs) in which all normal execution, including the operating system, is suspended. An alternate software system which usually resides in the computer’s firmware, or a hardware-assisted debugger, is then executed with high

admin
May 19, 2018
0

How To Become White Hat Hacker

White Hat Hacker – Learn How to Become White hat hacker, or ethical hacker, uses penetration testing techniques to test an organization’s IT security and to identify vulnerabilities. IT security staff then uses the results of such penetration tests to remediate vulnerabilities, strengthen security and lower an organization’s risk factors. Nowadays, the world has experienced

admin
May 16, 2018
0

WiFi (Wireless) Network

Wireless Network – How to Hack Wireless network is a network that uses radio waves to link computers and other devices together. The implementation is done at the Layer 1 (physical layer) of the OSI model. Wireless networks are accessible to anyone within the router’s transmission radius. This makes them vulnerable to attacks. Hotspots are

admin
May 14, 2018
0

GhostInTheNet: protects Linux from MITM/DOS/scan

GhostInTheNet GhostInTheNet is a Ultimate Network Stealther that makes Linux a Ghost In The Net and protects from MITM/DOS/scan. Properties: Network Invisibility Network Anonymity Protects from MITM/DOS Transparent Cross-platform Minimalistic Dependencies: Linux 2.4.26+ – will work on any Linux-based OS, including Whonix and RaspberryPI BASH – the whole script root privileges – for kernel controlling

admin
May 11, 2018
0

Vulnerability: New Intel CPU Vulnerabilities Found

Vulnerability Vulnerability is a cyber-security term that refers to a flaw in a system that can leave it open to attack. It is may also refer to any type of weakness in a computer system itself, in a set of procedures, or in anything that leaves information security exposed to a threat. Computer users and

admin
May 9, 2018
0

DRAKVUF: Black-box Binary Analysis

DRAKVUF DRAKVUF consists of several plugins, each collecting different aspects of the guests’ execution, like logging system calls or tracking kernel heap allocations. It is a virtualization based agentless black-box binary analysis system. DRAKVUF allows for in-depth execution tracing of arbitrary binaries (including operating systems), all without having to install any special software within the

admin
May 7, 2018
0

Wireless Penetration Testing Tool

Wireless Penetration Testing Tool Wireless penetration testing tool is an important aspect of any security audit project, organizations are facing serious threats from their insecure WiFi network. A compromised wifi puts the entire network at risks. Consider the recent darkhotel attack, where the top business executives were the target. Penetration testing tool are used as

admin
May 4, 2018
0

DAMP: Persistence Through Host-based Security Descriptor Modification

Security Descriptor Modification | Host Based | DAMP Security Descriptor Modification, host based persistence into DAMP. This project contains several files that implement host-based security descriptor “backdoors” that facilitate the abuse of various remotely accessible services for arbitrary trustees/security principals. tl;dr – this grants users/groups (local, domain, or ‘well-known’ like ‘Everyone’) of an attacker’s choosing

admin
April 29, 2018
0

Top 6 best Linux Distribution for new Linux users

Linux Distribution Linux distributions are “easy to use”. Some users may refute this view, but in fact, when it comes to Linux, most people who are not engaged in IT or software development work will be attracted by the easiest user experience. Ubuntu Ubuntu is an open source operating system first released on

admin
April 28, 2018
0

Geoip attack map: Cyber security geoip attack map

Geoip attack map Visualization Geoip attack map visualizer was developed to display network attacks on your organization in real time. The data server follows a syslog file, and parses out source IP, destination IP, source port, and destination port. Protocols are determined via common ports, and the visualizations vary in color based on protocol type. This

admin
April 27, 2018
0

VMware Escapes: A bunch of Red Pills

VMware VMware is one of the leaders in virtualization nowadays. They offer VMware ESXi for cloud, and VMware Workstation and Fusion for Desktops (Windows, Linux, macOS). The technology is very well known to the public: it allows users to run unmodified guest “virtual machines”. Often those virtual machines are not trusted, and they must be

admin
April 25, 2018
0

Jackhammer: Security vulnerability assessment/management tool

Jackhammer Jackhammer is a collaboration tool built with an aim of bridging the gap between Security team vs dev team, QA team and being a facilitator for TPM to understand and track the quality of the code going into production. It could do static code analysis and dynamic analysis with inbuilt vulnerability management capability. It

admin
April 23, 2018
0

Pybelt: The hackers tool belt

Pybelt Pybelt is a Python-based hackers tool belt capable of cracking hashes without prior knowledge of the algorithm, scanning ports on a given host, searching for SQLi vulnerabilities in a given URL, verifying that your Google dorks work like they should, verifying the algorithm of a given hash, scanning a URL for XSS vulnerability, and

admin
April 20, 2018
0

Noriben: Portable, Simple, Malware Analysis Sandbox

Noriben Noriben is a Python-based script that works in conjunction with Sysinternals Procmon to automatically collect, analyze, and report on runtime indicators of malware. In a nutshell, it allows you to run your malware, hit a keypress, and get a simple text report of the sample’s activities. Noriben allows you to not only run malware

admin
April 19, 2018
0

Pharos – Automated static analysis tools for binary programs

Pharos Pharos is a open source, static binary analysis framework that uses the ROSE compiler, developed by Lawrence Livermore National Laboratory for disassembly, control flow analysis, instruction semantics. These features help you automate common reverse engineering tasks with a focus on malicious code analysis. The Pharos framework is made up of the following static binary

admin
April 16, 2018
0

Danger of Using Public WiFi | What You Need to Know – ICSS

Danger of Using Public WiFi WiFi users are at risk from hackers, but fortunately there are safeguards against them. The recent explosion of free, public WiFi has been an enormous boon for working professionals. Since these free access points are available at restaurants, hotels, airports, bookstores, and even random retail outlets, you are rarely more

admin
April 13, 2018
0

Deep-pwning | Metasploit for machine learning

Deep-pwning Deep-pwning is a lightweight framework for experimenting with machine learning models with the goal of evaluating their robustness against a motivated adversary. Note that deep-pwning in its current state is nowhere close to maturity or completion. It is meant to be experimented with, expanded upon, and extended by you. Only then can we help

admin
April 11, 2018
0

Malware | Trojans & Keyloggers | ICSS Student |Gopal Roy

Malware Malware means malicious software.in fact, it has been a problem for ages.it is basically a program designed to infect a computer without the owner’s knowledge. Type of Malware Malware exists in Manu forms. Some common types of malware that one needs to keep track of are: Trojan Horse-Trojan virus or Trojan horse is a

admin
April 9, 2018
0

Pentmenu: a bash script for recon and DOS attacks

Pentmenu Pentmenu is a bash script inspired by pentbox. It is designed to be a simple way to implement various network pentesting functions, including network attacks, using wherever possible readily available software commonly installed on most Linux distributions without having to resort to multiple specialist tools. Requirements for Pentmenu: bash sudo curl netcat (must

admin
April 6, 2018
0

AWS S3 Security Scanning Tool | AWSBucketDump

AWS AWS launched in 2006 from the internal infrastructure that Amazon.com built to handle its online retail operations. AWS was one of the first companies to introduce a pay-as-you-go cloud computing model that scales to provide users with compute, storage or throughput as needed. Amazon Web Services provides services from dozens of data centers spread

admin
April 5, 2018
0

Sandiflux: Another botnet using Fast Flux technology has emerged

SandiFlux SandiFlux is a new Fast flux infrastructure has been identified. Hackers started using Fast Flux infrastructure in wild to hide the malicious activities such as malware and phishing campaigns. Fast Flux is a technique to have multiple IP addresses assigned to the same domain and they change consistently in quick sessions through DNS records.

admin
April 3, 2018
0

Streamalert: Serverless, Realtime Data Analysis Framework

Streamalert StreamAlert is a serverless, real-time data analysis framework which empowers you to ingest, analyze, and alert on data from any environment, using datasources and alerting logic you define. A serverless framework for real-time data analysis and alerting. Airbnb needed a product that empowered both engineers and administrators to ingest, analyze, and alert on data

admin
April 2, 2018
0

GScript: Scriptable dynamic runtime execution of malware

GScript (Genesis Scripting Engine) Genesis Scripting (gscript for short) is a technology I’ve developed to enable more intelligent malware stagers. Typically, stagers are pretty dumb. Most stagers are unique to the malware they deploy and do not allow for “bundling” of multiple payloads. Sophisticated attackers do in fact bundle their payloads, which makes runtime uncertainty

admin
April 1, 2018
0

Pagodo: Automate Google Hacking Database scraping

Pagodo (Passive Google Dork) The goal of this project was to develop a passive Google dork script to collect potentially vulnerable web pages and applications on the Internet. There are 2 parts. The first is ghdb_scraper.py that retrieves Google Dorks and the second portion is pagodo.py that leverages the information gathered by ghdb_scraper.py.

admin
March 29, 2018
0

WifiGod: Python script to test network security

WifiGod WifiGod is a tool coded and developing by Blackhole, it is written in the Python programming lanuage and is used to test network security. Coded and Developed by Blackhole. Need to know about WifiGod: Monitor Interface is created for you:When you enter your network interface in the options, always use one that is

admin
March 28, 2018
0

GyoiThon: growing penetration test tool using Machine Learning

GyoiThon GyoiThon is a growing penetration test tool using Deep Learning. Deep Learning improves classification accuracy in proportion to the amount of learning data. Therefore, GyoiThon will be taking in new learning data during every scan. Since GyoiThon uses various features of software included in HTTP response as learning data, the more you scan, the

admin
March 27, 2018
0

FakeDns: Python MITM DNS server with support for DNS Rebinding attacks

FakeDns FakeDns is A regular-expression based python MITM DNS server with correct DNS request passthrough and “Not Found” responses. Now with round-robin & improved options. A python regular-expression based DNS server. How to use the hosts file to fake DNS: The hosts file is stored on a computer or device to provide local

admin
March 26, 2018
0

NetRipper: Smart traffic sniffing for penetration testers

NetRipper NetRipper is a fairly recent tool that is positioned for the post-operating system based on Windowsand uses a number of non-standard approaches to extract sensitive data. It uses API hooking in order to intercept network traffic and encryption related functions from a low privileged user, being able to capture both plain-text traffic and encrypted traffic

admin
March 24, 2018
0

TrickBot (WebRoot) ship a new module, “screenlocker”

TrickBot TrickBot the recent version of banking trojan now includes a screenlocker component, suggesting the malware’s operators might soon start holding victims for ransom if infected targets don’t appear to be e-banking users. The good news is that the screenlocker mechanism is not fully functional just yet, and appears to still be under development. Nonetheless,

admin
March 23, 2018
0

Safesql: Tatic analysis tool for Go that protects against SQL injections

SafeSQL SafeSQL is a static analysis tool for Go that protects against SQL injections. SQL Injection is one of the vulnerabilities in OWASP’s Top Ten List for Web Based Application Exploitation. These types of attacks takes place on Dynamic Web applications as they interact with the databases for the various operations. How does

admin
March 22, 2018
0

Trape: People tracker on the Internet

Trape Trape is a recognition tool that allows you to track people, the information you can get is very detailed. We want to teach the world through this, as large Internet companies could monitor you, obtaining information beyond your IP. This tool has been published educational purposes in order to teach people how bad guys could

admin
March 21, 2018
0

Chrome Zero: Chrome extension

Chrome Zero Chrome Zero is a Google Chrome extension to protect users from microarchitectural and side-channel attacks. Chrome Zero implements JavaScript Zero, a fine-grained policy-based system which allows changing the behavior of standard JavaScript interfaces and functions. Using so-called policies, Chrome Zero enforces certain restrictions to a website to protect users from malicious JavaScript. The

admin
March 20, 2018
0

List of 29 Different Types of USB Attacks

Attacks of USB Attacks of USB is the driver-related attacks family in which an attacker plugs in a compromised malicious USB device that causes the host to download a specific malicious driver crafted in such a way as to execute malicious code on the host. Researchers from the Ben-Gurion University of the Negev in Israel have identified 29 ways in

admin
March 19, 2018
0

Algo VPN: Set up a personal IPSEC VPN in the cloud

Algo VPN Algo VPN is a set of Ansible scripts that simplify the setup of a personal IPSEC VPN. It uses the most secure defaults available, works with common cloud providers, and does not require client software on most devices. The ‘VP of all Networks’ is strong, secure and tidy. It uses the least amount

admin
March 17, 2018
0

ezXSS: Test Blind Cross Site Scripting

Blind Cross Site Scripting Blind cross site scripting (BXSS) is a variation of stored XSS, where the injection point and the execution point are different. It’s harder to find and certainly requires a different methodology than testing for stored (non-blind), reflected, or even DOM-based XSS. Typically, with stored Blind cross site scripting, the payload is

admin
March 15, 2018
0

Critical bugs in CredSSP allow remote code execution on Servers

CredSSP allow remote code The newly discovered Credential Security Support Provider protocol (CredSSP) vulnerability on the Windows platform allows hackers to use Remote Desktop Protocol (RDP) and Windows Remote Manager (WinRM) to remotely steal data or run malicious code. The CredSSP protocol was originally designed to provide cryptographic authentication when Windows hosts use RDP or

admin
March 14, 2018
0

Agrigento: Identify privacy leaks in Android apps

Agrigento Agrigento is a tool to identify privacy leaks in Android apps by performing black-box differential analysis on the network traffic. It performs root cause analysis of non-determinism in the network behavior of Android apps. Agrigento works in two steps: first, Agrigento establishes a baseline of the network behavior of an app; then, modifies sources

admin
March 13, 2018
0

Dorothy 2: A malware/botnet analysis framework

Dorothy 2 Dorothy 2 is a malware/botnet analysis framework written in Ruby. Dorothy 2 is a framework created for suspicious binary analysis. Main strengths of Dorothy are a very flexible modular environment and an interactive investigation framework with a particular care of the network analysis. Additionally, it is able to recognize newly spawned processes by

admin
March 12, 2018
0

Trinity – Fuzz tester

Trinity – A Linux System call fuzz tester Trinity is a Fuzz testing engine. One that has been done many times before on Linux, and on other operating systems, where Trinity differs is that the arguments it passes are not purely random. Trinity is slightly different from traditional fuzzing. Trinity Fuzzer knows how to do “really

admin
March 10, 2018
0

MALHEUR – Automatic Analysis of Malware Behavior

Malheur: Automatic Analysis of Malware Behavior Malheur is a tool of automatic analysis malware behavior. Malheur has been designed to support the regular analysis of malicious software and the development of detection and defense measures. Malheur allows for identifying novel classes of malware with similar behavior and assigning unknown malware to discovered classes. MALHEUR supports four

admin
March 9, 2018
0

Limon: Sandbox for Analyzing Linux Malwares

Limon: Sandbox for Analyzing Linux Malwares Limon is a sandbox for automating Linux malware analysis. It was developed as a research project for learning Linux malware analysis. It is written in python and uses custom python scripts and various open source tools to perform static, dynamic/behavioural and memory analysis. Limon analyzes the malware in a controlled

admin
March 9, 2018
0

DAFF – Droid Application Fuzz Framework

Droid Application Fuzz Framework Droid Application Fuzz Framework (DAFF) helps to fuzz Android Browsers and PDF Readers for memory corruption bugs in real android devices. Everyone can use the inbuilt fuzzers or import fuzz files from one’s own custom fuzzers. DAFF consist of inbuilt fuzzers and crash monitor. Droid-FF is the very first Android fuzzing framework

admin
March 8, 2018
0

Mara Framework: Mobile Application Reverse engineering and Analysis Framework

Mara Framework MARA is a Mobile Application Reverse engineering and Analysis Framework. It is a tool that puts together commonly used mobile application reverse engineering and analysis tools, to assist in testing mobile applications against the OWASP mobile security threats. Its objective is to make this task easier and friendlier to mobile application developers and security professionals. How it all

admin
March 7, 2018
0

Hash Buster – scraps online hash crackers to find cleartext of a hash

Hash Buster A hash buster is a program that generates a string of text for insertion in a spam message so that, to a spam filter, the e-mail appears to be a different message each time it is sent. The text might appear in the Subject line, its From line, or after the message body,

admin
March 6, 2018
0

Top 20 Network Sniffing Tools

Network Sniffing Tools Network Sniffing Tools were listed since 2014 from the web’s favorite hacking/ pentesting software hacker tools as used by hackers, geeks, ethical hackers and security engineers (as well as black hat hackers). This list and resource sprung to life when we organized an online poll way back in 2013 that was very

admin
March 5, 2018
0

Cybersecurity Threats not to be ignored by SMB Etailers

Cybersecurity Threats not to be ignored by SMB Etailers. Some small e-commerce website operators may think their relative obscurity offers protection, but the fact is that SMBs are especially vulnerable to cyberattacks and malware. “Very often small businesses don’t feel vulnerable to cybersecurity threats because they assume cybercriminals prefer to launch attacks on large companies,”

admin
February 24, 2018
0

Cyber Security in the digital dark age

Cyber Security in the digital dark age Cyber Security in the digital dark age. Business leaders who recently convened in Davos for the annual World Economic Forum fretted over the various catastrophes that could hit the globe hard and – given the recent spate of cyber attacks – cyber security was high up on the

admin
February 23, 2018
0

Cyber Attacks and Asia’s geopolitical events could have a link?

Cyber Attacks and geopolitical events in Asia may go hand in hand, according to Comodo’s first annual Global Malware Report for 2017, particularly when it comes to North Korea and China. Cyberespionage and cyber war preparation in Asia is nothing new, so it is no surprise that the region experiences significant Cyber Attacks spikes when

admin
February 20, 2018
0

Hacking websites? Here are the six most popular ways.

Hacking websites? Here are the six most popular ways. Hackers can hack a website or system or network, which would ultimately lead to the data theft, shutting down of the website, businesses experiencing big losses and so many other serious issues arising due to Hacking websites. Hackers can carry out their attacks in numerous ways to

admin
February 19, 2018
0

What is Zero Net and why one should use it?

What is Zero Net? Zero Net is a network of peer-to-peer users. It is based on the idea of Decentralized Computing. In the modern times, our desktop PCs and other computers have become so advanced that their full potential far exceeds than what is needed. As a matter of case, it remains ‘idle’ most of

admin
February 17, 2018
0

Cybersecurity Audits of companies? Here is what you need to know

Cybersecurity Audits? Well! unfortunately, most companies believe that their computer systems are secure. But one of the only ways to determine whether this is actually true is by performing a thorough audit of computer systems. Here is why your company should make a point of auditing its security on a regular basis, not only this

admin
February 7, 2018
0

Identity data turning toxic for big companies. Wait but how?

Identity data turning toxic for big companies. Wait but how? Google might be in trouble for collecting the personal data of its users, but many companies have a growing incentive to rid their hands of the data that users entrust them with. This is because of growing costs of holding onto it. A major cause

admin
January 31, 2018
0

Communication is key when responding to a cyber security incident

Communication is key when responding to a cybersecurity incident. There’s an old joke that goes something like this: “To err is human, but to really screw things up you’ll need a computer.” Of course, it’s funny, but as we all know computers just do what they’re told (or programmed) to do. They’ll do it to

admin
January 30, 2018
0

Healthcare industry getting affected by cyber

Healthcare industry getting affected by cyber. The Healthcare industry has featured in the top 5 industries attacked by cyber criminals for a number of years now. The WannaCry ransomware attack earlier this year that affected many health trusts across England and Scotland brought the health impact of the cyber threat to the forefront of media

admin
January 23, 2018
0

Skygofree android spyware discovered

Skygofree (one of the most powerful strains of Android spyware) has been discovered. Security researchers from Kaspersky have found one of the most powerful strains of Android spyware that enable attackers to take full control over the infected devices remotely. The new spyware has been called Skygofree, it has been created for targeted surveillance. The researchers traced

admin
January 20, 2018
0

Blackberry hacked to mine cryptocurrency

Blackberry hacked to mine cryptocurrency. As cryptocurrency spread its roots globally, the ways of illegally earning or ‘mining’ it is also becoming advanced and much more sophisticated. Blackberry mobile’s website recently became a victim when hackers used it to illegally mine cryptocurrency. With Bitcoin and other cryptocurrencies gaining popularity, hackers are finding newer ways to mine.

admin
January 13, 2018
0

DuckDuckGo, Brave Improving online privacy

DuckDuckGo Brave Improving online privacy. The feature is accessible today via the new Brave browser desktop release 0.19.116 and will be combined in Brave Android and iOS apps in the first quarter of 2018. Here’s how DuckDuckGo Brave are increasing online privacy together. Users that open a new private tab in Brave will be offered with

admin
January 12, 2018
0

Wi-Fi Alliance WPA3 with new security features

Wi-Fi Alliance WPA3 with new security features. The Wi-Fi Alliance has finally announced the long-awaited next generation of the wireless security protocol—Wi-Fi Protected Access (WPA3). Wi-Fi Alliance WPA3 will replace the existing WPA2—the network security protocol that has been around for at least 15 years and widely used by billions of wireless devices every day,

admin
January 11, 2018
0

Apple update Meltdown and Specter flaws resolved

Apple update Meltdown and Spectre flaws resolved. 2018 kicked off with a bang security-wise due to the announcement of the serious Meltdown and Spectre flaws found in processors widely used by a wide range of computing devices and smartphones. 2018 kicked off with a bang security-wise due to the announcement of the serious Meltdown and

admin
January 9, 2018
0

Location tracking services vulnerabilities allow to access unauthorized GPS location data

Location tracking services vulnerabilities allow accessing unauthorized GPS location data. Security scholars have published a testimony on a series of errors that they termed “Trackmageddon” that distress many GPS and location tracking services. These security defects could permit cybercriminals to divulge delicate information on millions of online location tracking devices controlled by vulnerable GPS services.

admin
January 6, 2018
0

Opera browser update to combat cryptocurrency mining

Opera browser update to combat cryptocurrency mining. The last year has seen a rise in the number of websites hogging visitor’s CPU and browser resources by surreptitiously mining for cryptocurrencies while you surf. Due to Opera browser update, Sites like Pirate Bay have found themselves in hot water after visitors discovered it had added CoinHive’s

admin
January 5, 2018
0

Automatic autofill of credentials, is it really safe?

Automatic autofill of credentials, is it really safe? Nowadays, Trackers found silently grabbing your information as you surf the web. Is your browser’s built-in login manager leaking your username (and possibly your password too)? Researchers at Princeton’s Centre for Information Technology Policy have uncovered two third-party tracking scripts that can scoop up information provided by your

admin
January 4, 2018
0

phpMyAdmin – A critical security vulnerability has been reported

phpMyAdmin – A critical security vulnerability has been reported. One of the most popular applications for managing the MySQL database—which could allow remote attackers to perform dangerous database operations just by tricking administrators into clicking a link. Discovered by an Indian security researcher, Ashutosh Barot, the vulnerability is a cross-site request forgery (CSRF) attack and

admin
January 3, 2018
0

Forever 21 payment card breached

Forever 21 payment card breached. First notified in November of a data breach incident, popular clothing retailer Forever 21 has now confirmed that hackers stole credit card information from its stores throughout the country for several months during 2017. Although the company did not yet specify the total number of its customers affected by the

admin
January 2, 2018
0

Password Managers can be exploited using Web Trackers

Password Managers exploited using web trackers. This type of abusive conduct is possible because of a configuration flaw in the login handlers included with all browsers, login managers that allow browsers to memorize a user’s username and password for particular sites and auto-insert it in login fields when the user revisits that site again. Experts

admin
December 30, 2017
0

Smartphones are hackable using sensors via guessing 4 digit smartphone PIN

Smartphones are hackable using sensors via guessing 4 digit smartphone PIN. NTU researchers have revealed that smartphones can now be hacked using the data accumulated from sensors. Dr. Shivam, a scientist at NTU, who recently developed an app that can hack data from smartphones using sensors, found this recently and the news has sent shockwaves

admin
December 29, 2017
0

FBI’s biometric hacked?

FBIs biometric hacked. The allegations that Russia hacked the 2016 elections in the United States are known to many but now biometric data of millions of American citizens may or may not be at risk of being compromised as software used by the Federal Bureau of Investigation (FBI), the Transportation Security Administration (TSA) and 18,000

admin
December 28, 2017
0

Security vulnerability found in ATM machines running on Windows XP in Russia

Security vulnerability found in ATM machines running on Windows XP in Russia. All ATMs that are still running on Microsoft’s 16-year-old Windows XP operating system are at the risk of getting hacked easily, as the OS is no longer supported by the Redmond giant except for emergency security patches (for instance, patch blocking the WannaCry ransomware

admin
December 27, 2017
0

Satori IoT Botnet Exploits Zero-Day to Zombify Huawei Routers

Satori IoT Botnet Exploits Zero-Day to Zombify Huawei Routers identified by researchers. The flaw is in Huawei’s router model HG532. It said it is tracking hundreds of thousands of attempts to exploit the vulnerability in the wild. The Mirai botnet made headlines in October 2016, targeting DNS provider Dyn and the Krebs on Security website with massive DDoS attacks.

admin
December 26, 2017
0

Cryptocurrency Mining Virus spreading through Facebook Messenger

Cryptocurrency Mining Virus spreading through Facebook Messenger. These hackers send a video file (packed in zip archive) from anybody’s profile (or your friends) – Do not click on it. Researchers from security firm Trend Micro are warning users of a new cryptocurrency mining bot which is spreading through Facebook Messenger and targeting Google Chrome desktop

admin
December 23, 2017
0

WordPress captcha plugin having a hidden backdoor affects over 300,000 websites

WordPress captcha plugin having a hidden backdoor affects over 300,000 websites. Obtaining prevalent plugins with an enormous user-base and using it for effortless malicious campaigns have become a new trend for bad players. Recently a renowned developer BestWebSoft sold a popular WordPress Captcha plugin to an anonymous buyer, who then amended the plugin to download and

admin
December 22, 2017
0

ProtonVPN has launched its app!

ProtonVPN has announced the public release of the ProtonVPN Android app! The app is available as of now in the Play Store. To download it, simply follow this link: https://play.google.com/store/apps/details?id=com.protonvpn.android They first launched ProtonVPN in June of this year, and have seen an overwhelming response from the community. They are continuously working towards their mission

admin
December 21, 2017
0

A new android malware can be a possible threat to your phone.

A new Android malware has been discovered by a group of researchers, which can possibly physically damage your phone. Your phone is physically under threat due to this new Android Malware. Hackers, as well as legitimate website administrators, are progressively using Javascript based cryptocurrency miners to monetize by levying the CPU power of your PC

admin
December 20, 2017
0

SSL Certificate

SSL Certificate SSL Certificate authenticity is being doubted because of the increase in the online hacking of your personal data even from the websites having SSL certificate. Wondering how it’s done? Here we have explained it in a very simplified manner. Did you know how the online passwords are hacked? Well, read on to learn.

admin
December 16, 2017
0

Security Flaw in WPA2

Security Flaw in WPA2 Security flaw in WPA2, the security protocol for most modern WiFi systems could make it easily possible for the attackers to steal all sorts of sensitive data such as credit card numbers, passwords, emails etc – said by Researchers at Belgian university KU Leuven. Wifi systems could be vastly affected

admin
December 14, 2017
0

Breach of personal data

Breach of personal data Breach of personal data by online hackers has jeopardized the online user’s life in a great way. It’s usually the weakest link that hackers go for at first to gain access to your online accounts. Over 1.4 Billion plain texts leaked passwords dispersed online Reusing the same password across multiple channels

admin
December 13, 2017
0

UBER Authentication Vulnerability found

UBER Authentication Vulnerability found that allows anyone to change anyone’s Uber account password without any authentication. Vincenzo C., an Italian security expert who is popular on Twitter as @Procode701, has discovered a critical Authentication Vulnerability in UBER by which anyone can reset the password for any account. The company held the Bug Bounty program which

Debolina biswas
May 21, 2017
0

Hackers Attacked 100 countries using NSA Spying tool

Hackers Attacked 100 countries using NSA Spying tool A group called the Shadow Brokers using hacking tools leaked a global cyber-attack online believed to have been developed by the US National Security Agency (NSA). This attack is believed to be the biggest cybersecurity attacks in recent history. Hackers Attacked 100 countries using NSA Spying tool. The malicious

Debolina biswas
May 16, 2017
0

Urgent Malware Warning Issued by known Mac App developers

Mac App developers Issued Urgent Malware Warning

Mac App developers Issued Urgent Malware Warning Mac App developers Issued Urgent Malware Warning. Mac security has been going through some difficult times after the warning from Checkpoint to users regarding a first of a kind Trojan spreading in Europe. The latest malicious problem has been found in one of the most important video transcoding

Debolina biswas
May 14, 2017
0

Employee paid $300,000 for hacking employer

Employee paid $300,000 for hacking employer Employee paid $300,000 for hacking employer. Security Specialists, a former private security officer has been told to pay nearly $319,000 in damages for hacking his employer’s payroll records, so that he can fill the number of hours he had worked hard. The main culprit , Yovan Garcia later hacked

Debolina biswas
May 12, 2017
0

Retailer Debenhams’s Flowers website hacked

Retailer Debenhams’s Flowers website hacked Retailer Debenhams’s Flowers website hacked. The news came that Retailer Debenhams’s Flowers website was hacked and up to 26,000 customers, personal data has been compromised. Department store chain Debenhams has issued a statement on the data breach, revealing payment details, names and addresses were potentially taken , which targeted Ecomnova, a

Debolina biswas
May 8, 2017
0

Intel fixed nine year’s old flaw

Intel fixed nine years old flaw Intel fixed nine years old flaw. Yes, after nine years a flaw was detected and patched by Intel. Intel, one of the world’s largest semiconductor chip makers, has come under fire it’s emerged that the company had sold workstation and server chips with a vulnerability that could give a remote

Debolina biswas
May 7, 2017
0

UIDAI rejects data leak claim

UIDAI rejects data leak claim On Tuesday (May 02),UIDAI rejected a report about an online leak of Aadhaar numbers and bank accounts linked to them. UIDAI rejects data leak claim which was claimed by a research report. A research report by a Bangalore-based organization, claimed that almost 13 crore Aadhar numbers have been leaked along with

Debolina biswas
May 5, 2017
0

App Flaw Reportedly Creates Backdoor Hacking Millions Android Phones

App Flaw Reportedly Creates Backdoor Hacking Millions Android Phones It has been revealed through a recent study of an internet communication mechanism common in mobile devices that so-called ‘open ports’ are much more vulnerable to security breaches than expected. App Flaw Reportedly Creates Backdoor Hacking Millions Android Phones. Open ports are integral pieces of internet

Debolina biswas
May 4, 2017
0

Google Facebook $100 million email scam found

Google Facebook $100 million email scam found The tech companies Google and Facebook have confirmed that they fell victim to a $100 million email scam. It was reported that a Lithuanian man had been charged over an email phishing attack against “two US-based internet companies.” Google Facebook $100 million email scam found Evaldas Rimasauskas, a

Debolina biswas
May 3, 2017
0

SNMP flaw affects online devices

SNMP flaw affects online devices A serious security flaw in the application of the SNMP (Simple Network Management Protocol) allows an attacker to gain control over at least 78 cable modem models. SNMP flaw affects online devices which gives a green signal to the attackers. SNMP (Simple Network Management Protocol) is used for automated network device

Debolina biswas
May 2, 2017
0

Karmen low-cost ransomware found

Karmen low-cost ransomware found Karmen low-cost ransomware found. Yes, security experts have spotted a new “ransomware as a service” (RaaS) called Karmen from threat intelligence firm Recorded Future. This service permits anyone to set up an account and customize their own ransomware campaign. Ransomware is malware for data kidnapping, an exploit in which the attacker encrypts the victim’s data and demands

Debolina biswas
April 28, 2017
0

Suspected Russian hackers targeting French Presidential elections

Suspected Russian hackers targeting French Presidential elections It was Suspected Russian hackers targeting French Presidential elections in France by launching a new cyber attack against the campaign offices of the front-runner candidate Emmanuel Macron, claimed by Trend Micro, A Tokyo-based cyber security firm. On Tuesday the report was released by the firm. The researchers doubted

Debolina biswas
April 27, 2017
0

1.4 Million citizens Aadhaar card leaked

1.4 Million citizens Aadhaar card leaked Though India goes ahead in its digital India, Security practices left behind a huge remark when coming to Indian Document Security. An incident in Jharkhand again seems to have raised some serious questions of Aadhaar’s data-breach vulnerabilities. 1.4 Million citizens Aadhaar card leaked which need to be secured in

Debolina biswas
April 26, 2017
0

Facebook Twitter Snapchat paying hackers to recover technical bugs

Facebook Twitter Snapchat paying hackers to recover technical bugs In our day to day lives we socialize and interact with many different types of people, including family, friends, colleagues, or even complete “strangers”. Yes, most of the people we meet on social sites are strangers. Many have fake accounts, sending requests to people and people

Debolina biswas
April 23, 2017
0

Hackers Collecting Pre-Hack data

Hackers Collecting Pre-Hack data Marketers and Advisers use a simple trick to track web users and email recipients. It is email marketing. This also been abused by cyber criminals and online spies to collect information on possible targets or to improve the efficiency of phishing attacks, both mass and targeted in scope. Hackers collecting Pre-Hack

Debolina biswas
April 21, 2017
0

Protect Your Device From Hackers

Protect Your Device From Hackers First thing to keep in mind that hacking a system for unauthorised access that does not belong to you is an illegal practice, whatever intention it may be. This is not the first time when any hacker has been watchful, we have seen many more cases in which hackers have

Debolina biswas
April 20, 2017
0

Phishing Attack Affects Browser

Phishing Attack Affects Browser A Chinese security researcher has revealed a scary phishing attack that is almost impossible to detect in web browsers like Chrome, Firefox, and Opera. The attack uses unicode characters in domains that look exactly like the common ASCII characters. For example, “xn--pple-43d.com” is equivalent to “аpple.com”. This Phishing Attack Affects Browser. Punycode is

Debolina biswas
April 19, 2017
0

Hackers announces NSA’s powerful Windows hacking tool

Hackers announces NSA’s powerful Windows hacking tool Hackers announces NSA’s powerful Windows hacking tool .The Shadow Brokers, a hacking group, who previously stole and leaked a portion of the NSA hacking tools has just released a collection of spy tools that is allegedly used by the National Security Agency online. On Friday, the group published the

Debolina biswas
April 17, 2017
0

Five Prisoners hacked Prison Network

Five Prisoners hacked Prison Network Official Inspector General of the State of Ohio reported a 50-page investigative report of the incident which now came in public domain, that took place back in 2015. It came to know that Five Prisoners hacked Prison Network. According to the reports, five prisoners from the Marion Correctional Institution (MCI)

Debolina biswas
April 17, 2017
0

Indian Election Commission throws open challenge

The Indian Election Commission throws open challenge to hack its electronic voting machines (EVMs). This step is being taken by different political parties due to some rise of allegation, which claimed that machines used in UP elections only voted for BJP. The opposition parties have also demanded that paper trail of voting should be re-introduced in the

Debolina biswas
April 13, 2017
0

Unique Ransomware Vulnerability Attack

Unique Ransomware Vulnerability Attack In the Past few days, you might have heard about various news of hackers using malicious ransomware forcing users to pay huge amounts of money but today’s scenario is something different. Today, we bring you a unique kind of ransomware which forces its victims to make a high score of at

Debolina biswas
April 11, 2017
0

Smartphone Update Vulnerability Found

Smartphone Update Vulnerability Found A Google Project Zero researcher, Gal Beniamini has found some vulnerabilities including a remote code execution in Broadcom’s Wi-Fi system-on-chip (SoC) which if exploited can allow attackers to compromise Smartphone devices like iPhone, Samsung, and Google Nexus. Smartphone update vulnerability found. Broadcom’s Wi-Fi chips are used in a number of well-known devices and any

Debolina biswas
April 7, 2017
0

North Korean hackers breached overseas banks

North Korean hackers breached overseas banks North Korean hackers breached overseas banks to create a network of accounts to move around embezzled funds. CNN reported on Tuesday that “Funds from the operation are most likely being used to finance Pyongyang’s nuclear weapons development”. According to Kaspersky, a Russian cybersecurity firm, North Korea is linked to cyberattacks on

Debolina biswas
April 5, 2017
0

Anonymous hacks ISIS website; infecting users with malware

Anonymous Hackers Hacked ISIS site

Amaq, the official news agency of ISIS or Daesh terrorist group informed its users about a huge compromise in the security of its website. They said Anonymous Hackers Hacked ISIS site which is now infecting thousands of users. When visiting the site, the following message keeps appearing:- “The site ahead contains malware, and that attacker might attempt to install

Debolina biswas
April 2, 2017
0

Scareware scammers lock iOS Safari

Scareware scammers lock iOS Safari Scareware scammers lock iOS safari to extort ransom money from iOS users. As researchers Andrew Blaich and Jeremy Richards at the San Francisco- firm explain in a blog post based mobile security: “The user reported that he had lost control of Safari after visiting a website and was no longer

Debolina biswas
March 30, 2017
0

Sensitive Information Leaked Publicly

Sensitive Information Leaked Publicly “Think twice before you click” We often shared to computer users to help them protect from unreliable links and malware infected email links. Wait a moment and look at the pop-up “Do not show this message again”. This is a warning message which we face daily. It is trying to say

Debolina biswas
March 28, 2017
0

How to generate Word list using Crunch ?

How to generate Word list using Crunch ? How to generate Word list using Crunch ? In our previous blog, we discussed about how to hack or recover any unknown passwords. In this blog, we will tell you how to generate word list using Crunch. In password cracking, we often need to use a word

Debolina biswas
March 22, 2017
0

Crack Any Password And Identify Unknown Password

Crack Any Password And Identify Unknown Password Crack Any Password And Identify Unknown Password. Password Cracking refers to guess or crack passwords to gain access to a computer system. It is a common approach to identify an unknown or forgotten password. Password crackers will usually use a variety of tools, scripts or software to crack a

Debolina biswas
March 21, 2017
0

USG Protects Hacking Attacks

USG Protects Hacking Attacks USG Protects Hacking Attacks. Do you ever feel the need for a hardware firewall for your USB ports? USG v1.0 is one such effective device that users can use to identify the maliciousness stored on suspicious USB drive. It is fully open firmware and two STM32F4 microprocessors make this possible. So,

Debolina biswas
March 20, 2017
0

Student Hacked Professors’ Email

Student Hacked Professors’ Email Student Hacked Professors’ Email. A University has expelled a student for hacking their several Professors’ email. Technion Institute of Technology, a public research institute based in Haifa, Israel, revealed the disciplinary actions it took against the student to Ynetnews: “We are taking this case very seriously, as it is very unusual. The student, who

Debolina biswas
March 16, 2017
0

US Air Force documents backup leaks

US Air Force documents backup leaks US Air Force documents backup leaks. Sensitive information of United States Air Force got exposed publicly on Internet. It allows anyone to use them without any authorisation and password. Only via web connection anyone can access it. Security researchers at MacKeeper discovered that they found gigabytes of files on

Debolina biswas
March 16, 2017
0

Popular Smartphone Infected with Malware

Popular Smartphone Infected with Malware Want to buy a new android Smartphone? Or Already bought new android Smartphone? Do not expect it to be a clean sheet. Popular Smartphone Infected with Malware. Pre-installed android malware found in 36 Smartphone’s. Popular manufacturing companies like Samsung, LG, Xiaomi , Asus, Nexus, Oppo and Lenovo distributed by two

Debolina biswas
March 13, 2017
0

Fortune 1000 Companies Vulnerability

Fortune 1000 Companies Vulnerability Fortune 1000 Companies Vulnerability. A recent report reveals about the Fortune 1000 Companies Face Data Breaches. This Fortune 1000 company suffer twice the amount of data breaches their peers. BitSight’s latest report revealed “How Secure Are America’s Largest Business Partners? and Rating Cybersecurity Performance of Fortune 1000,” companies which are part

Debolina biswas
March 10, 2017
0

DNA Digital Data Storage

DNA Digital Data Storage DNA Digital Data Storage. Usually , You all have heard about computer storage devices like floppy disks, USB flash drives, memory cards, memory sticks, tape cassettes, zip cassettes, computer hard drives, CD’s and DVDs etc Have you ever heard about DNA storage? Yes, Researchers are discovering and investing lots of efforts into new storage

Debolina biswas
March 6, 2017
0

Bypass Google’s ReCaptcha v2 anywhere

Bypass Google’s ReCaptcha v2 anywhere We can easily Bypass Google’s ReCaptcha v2 anywhere on the web . Yes, you heard it right. ReBreakCaptcha is a new bypassing technique for Google ReCaptcha v2. The three steps of ReBreakCaptcha :- Audio Challenge Recognition – Converting the audio and sending it to Google’s Speech Recognition API. Verification –

Debolina biswas
March 2, 2017
0

Scam iTunes Receipt Found

Scam iTunes Receipt Found Scam iTunes Receipt Found. Want to go for a Movie? Everyone loves to. But before booking the Movie Ticket you should check whether it’s legit or not. Yes, you heard it right. A new campaign started a fake iTunes for buying movie tickets online and taking Apple users sensitive information.

Debolina biswas
February 27, 2017
0

Web Mails disasters

Web Mails disasters Web Mails disasters. Checking mails is the regular schedule in everyone’s daily life. But one hacker will think who else has read his emails. Sounds Strange? It’s obvious. If you used a web based email services like Gmail, Outlook365 , the answer can be shocking. Have you ever seen after reading your

Debolina biswas
February 26, 2017
0

Android Malware Hack Bank Accounts Credentials

Android Malware Hack Bank Accounts Credentials Android Malware Hack Bank Accounts Credentials. Few Days back a New Android Banking Malware ESET discovered on Google Play was spotted. Recently one more Malware was spotted which is targeting banks and taking their important credentials. Through investigation, threat has uncovered its code which was build using source code was

Debolina biswas
February 25, 2017
0

MacOS under Ransomware attack

MacOS under Ransomware attack MacOS under Ransomware attack. Crypto-ransomware is more popular nowadays and is more common amongst cybercriminals. Mostly it affects windows systems but also affected Linux or macOS in 2016 like KillDisk affecting Linux and KeRanger attacking OS X. We have seen a new Ransomware campaign for Mac, last week. This new ransomware, written in Swift, is

Debolina biswas
February 24, 2017
0

SBI Vulnerability Exposed

SBI Vulnerability Exposed SBI Vulnerability Exposed….A One-Time Password (OTP) is an automatically generated numeric or alphanumeric string of characters that authenticates the user for a single transaction or session. An OTP is more secure than a static password, especially a user-created password, which is typically weak. OTPs may replace authentication login information or may be

Debolina biswas
February 21, 2017
0

Google Disclosed Microsoft Vulnerability- Microsoft’s Delay Their Latest Updates

Google Disclosed Microsoft Vulnerability- Microsoft’s Delay Their Latest Updates Google Disclosed Microsoft Vulnerability and in the eleventh hour Microsoft decided to delay their latest updates. All Windows users are so accustomed on getting updates on windows gadgets and waited for their latest updates to come on public…On Second

Debolina biswas
February 20, 2017
0

Hacking your voice to perform social engineering attack

Hacking your voice to perform social engineering attack Hacking you voice is real and possible as Hackers can use photoshopping voiceover . An engineer’s dream is “project voco” where the software allows the controller to edit and insert words into an audio recording without bringing back the original vocalist back to the studio. Hacking your

admin
January 26, 2017
0

Mongo DB Databases hijacked

Mongo DB Databases wiped out Mongo DB databases had been kidnapped by the hackers. The hackers have deleted mongo DB databases from the company servers and are demanding ransom for safely return of the information. The victims are hospitals, small businesses and educational institutes. Nearing 27,000 database could be hacked. There are security measures built

admin
January 10, 2017
0

WiFi phishing attack

WiFi phishing attack – You can be the next target? Wifi phishing attack is the next level attack even though the wifi in modern days are secured with wifi Protected Access II (WPA2) a security protocol which has a strong cryptographic hash function to protect the pre-shared key (PSK). During a penetration testing it is

admin
January 7, 2017
0

Virtual Reality – Are we thinking of Security?

Virtual Reality and its security Virtual Reality making it big in the market and every individual is keen to use it. What we need to worry is its security? It is not a big target for hackers still now. Bulky prototype virtual reality devices were being tested in labs as early as 1960, but there

admin
January 6, 2017
0

Dark Web

Dark Web – The internet beyond Google Dark Web which is indeed a very interesting topic to talk about as due to recent hacks and terrorist activities which took place took the help of the dark web. In this article, we will explain how one novice interest and curiosity can be dangerous in the

admin
January 5, 2017
0

Ransomware Top 10 list of 2016

Ransomware Top 10 list of 2016 Ransomware attack in corporate houses in 2016 was very common. Some ransomware attacked the critical infrastructure of organizations. Ransomware attacks panicked the entire corporate world. There are hundreds of ransomware families which came into lam light after they attacked many organizations. Some of the most dangerous ransomware of 2016

admin
December 20, 2016
0

Internet Safety Manual for family & friends to support digitalization in India

Internet Safety Manual for family & friends Internet safety manual or common hygiene to be maintained by common people while they are on the internet is really missing in India. We at Indian Cyber Security Solutions have taken the major step to educate the common people how to use internet safely. Do`s and don’ts

admin
December 9, 2016
0

Sony IP Cameras are vulnerable to be Hacked

Hacking Sony security cameras by backdoor attacks Hacking Sony security cameras took the industry by a storm. If you have a Sony IP based camera installed at your house or office premises you must be aware of this fact. SEC Consultant researchers have found out a real flaw (0-day vulnerability) in Sony IP

admin
December 8, 2016
0

IOT Devices and Cyber Security are major concern for the future

IOT devices are more vulnerable to hack IOT devices and Cyber Security goes hand in hand. Every day there is increase in devices which are being connected to internet. Development in the field of machine learning and artificial intelligence had increased dramatically due to increase of interconnected devices and growth of IOT devices in

admin
December 8, 2016
0

Ransomware attack on hospital forces the hospital authority to cancel 2,800 operations and completely shut down the system.

Ransomware attack on Hospital – New Blackmailer Game Ransomware attack on hospitals had increased in recent past. With Locky Ransomware attacking the healthcare industry recently. Different industries had been attacked in India and abroad with ransomware. Numerous cases had been registered in India with Bangalore based IT companies are falling pray to ransomware. To

admin
December 7, 2016
0

$31 million hacked from Russian Central Bank

Russian Central Bank Hacked – $31 million stolen from Bank Russian central bank hacked as millions of dollars of customers were stolen on Friday as disclosed by bank authority. This is the latest example of a planned cyber-attack on the financial institutions. After the Russian central bank hacked the officials came out with a stunning

admin
December 5, 2016
0

Pacemakers are the target for hackers

Hackers can target pacemakers Hackers can target pacemakers remotely as researchers have found security flaws in the device that can be exploited and hacked. Hackers can target the pacemakers remotely from a distance by sending malicious codes which can trigger fatal shocks can cause death. Using common equipment’s the researchers were able to find loopholes

admin
December 3, 2016
0

Router hack makes 9,00,000 Germans go offline

Router hack makes 9,00,000 Germans go offline Router hack forces 9,00,000 Deutsche Telekom customers offline on this Sunday and Monday. Serious attempts were made to compromise broadband routers and turn them into a botnet. Zyxel and Speedport router hack by malicious hackers as the vulnerabilities were exploited. Routers were coded to transform into botnet

admin
November 30, 2016
0

Android Banking Malware uses social engineering to bypass battery saving process

Android Banking Malware uses social engineering to bypass battery saving process Android banking malware can stay connected with its control servers even after the android device is off. Flaw in Doze functionality in Android Doze is a power mode that activates once the android device haven’t been interacting with the

admin
November 19, 2016
0

IPhone passcode bypass – IOS vulnerability

IPhone passcode bypass IPhone passcode bypass is not new as attackers had been attacking your IOS devices and accessing your private data. IPhone users were exited as the new IOS 10 from Apple would prevent IPhone passcode bypass. Hackers got better of it and still can bypass the passcode of IOS 10.

admin
November 18, 2016
0

Million Android users downloaded Trojan from Google Play Store

Android Trojan downloaded from Google Play Store Android Trojan is now being downloaded by millions of users from the Google Play Store. The Russian Security Agency “Doctor Web” found the malware popularly known as Android.MulDrop.924. The new Android Trojan disguise itself as games and other apps in Google play store. The Android Trojan can

admin
November 15, 2016
0

Pupy RAT

Pupy a Killer RAT Pupy is an open source Remote Administration Tool which have an embedded Python interpreter. It is a cross platform based interpreter which allows to load Python packages from memory and access python objects. As it uses reflection dill injection in windows leaving no traces of it on the disk. Due

admin
November 14, 2016
0

Facebook spam – New way to hack Android Devices – Be aware

Facebook spam to hack your android devices Facebook spam with a news of DONALD TRUMPH dead in a heart attack is new way to hack into your android device. What it Does ? Victims if click on the Facebook spam post are redirected to new page and the phone starts vibrating. Victim is

admin
November 11, 2016
0

SMS phishing scam to hack into Apple ID

SMS phishing scam to hack into Apple ID SMS phishing also known as smishing is not new to the world of technology. We at Indian Cyber Security Solutions think that this SMS phishing scams are increasing in huge numbers and victims have no clue how to be safe. In this article today we will

admin
November 11, 2016
0

Tesco Bank Hacked

Tesco Bank Hacked – 20,000 Accounts are compromised by a Black Hat Hacker Tesco Bank Hacked as over 20,000 bank accounts of customers where compromised in United Kingdom. After the Tesco bank hacked bank authority had frozen all online transactions from those accounts. Tesco bank hacked had forced the bank authority to implement a quick contingency

admin
November 9, 2016
0

DDoS attack

DDoS attack set Liberia out of internet- culprit Mirai Botnet DDoS attack had put the whole country of Liberia under distress, when people of the country could not access to internet. The culprit used Mirai malware to shut down the internet of insecure IoT devices. Mirai malware is remotely controlled by the bots, the systems

admin
November 7, 2016
1

Linux is hacker’s first choice

Linux is hacker’s first choice Linux is hacker’s first choice as it is an operating system that is based on open source. By open source we mean, the user or the programmer can use source code that has been applied to design Linux as per programmers or developers requirement. Hence one can easily modify the

admin
November 5, 2016
0

Whatsapp Hacking – Your Privacy is at STAKE !!

Whatsapp Hacking – Your Privacy is at STAKE !! Whatsapp Hacking is an interesting topic where all are interested to know in details. Today we will unleash the real details and how a hacker can conduct a watsapp hacking remotely and you will not be aware of it. Black hat hackers are always one step

admin
October 26, 2016
1

Top 5 hacking software

Top 5 hacking software – Be a Hacker Top 5 hacking software which are available for free. You can use them without paying a single rupee. These hacking software’s are used all over the globe. IT security professionals do use them. There are many paid and licensed version hacking software used by MNCs but it

admin
October 20, 2016
1

Man Hacked Apple iCloud & Gmail accounts of 30 celebrities in Loss Angeles.

Email Phishing scam does the trick for the Hacker. Email phishing is a very old technique used by hackers to get the log in credentials of the victim. On September 23rd 2016 a man hacked into iCloud and Gmail accounts of 30 celebrities in Loss Angeles. As per the report the hacker conducted the email

admin
October 3, 2016
0

Android Ransomware Attack the new terror

ANDROID RANSOMWARE USING PSEUDORANDOM PASSCODE Android Ransomware is not new to the world and it had infected many android devices in the recent past but a new version of Ransomware is much more powerful. Attacks on android devices had increased heavily as more sensitive data is now stored in the small portable device which is

admin
October 2, 2016
0

FBI confirms hacking attempts on U.S election system

Hackers targeting the election system of United States US Election system is under contentious scanning an efforts of the hackers to hack into it as per FBI. Over the last one month the voter registration database of states of US is under cyber attack. Mr. Comey (Director FBI) did not say whether those hacking attempts

admin
September 30, 2016
0

Armenian hackers hacks into Banks and Military data of Azerbaijani

Armenian hackers leaked personal data of government officials and also defaced embassy sites to celebrate 25 years of independence Armenian Hackers from MMCA – Montel Melkonian Cyber Army claim to have hacked into Azerbaijani banks, military and police servers. They have leaked several confidential data and made it public just to celebrate their 25th independence.

admin
September 26, 2016
0

Phishing scam targets Godaddy customers

Phishing scam targets Godaddy customers Phishing scam to steal user’s personal data or financial credentials Phishing scam to steal user’s personal data or financial credentials is nothing new and this time GoDaddy users are the victim of it. With each day the cyber scammers are coming up with more inventive and compelling ways to out

Anamitra Sarkhel
August 29, 2016
0

ATM Hacking in Thai Banks

ATM Hacking in Thai Banks ATM Hacking in Thai Banks!!!! A staggering 12.29 million Baht ($350,000) stolen. So after Japan, it’s Thailand. The hacking spree continues. Just a couple of months back cyber criminals had successfully stolen 1.44 billion Yen ($13million) from more than 1400 ATMs in just over 2 hours and fled from the

Anamitra Sarkhel
August 26, 2016
0

Unreal tournament gaming hacked, Epic gaming forum hacked

Unreal tournament gaming hacked Unreal tournament gaming hacked, Epic gaming forum hacked!!!! Till now the gamers have ‘hacked’ their way through the game but now the gamers themselves have been compromised by a real band of hackers. It seems that more than 8, 00,000 forum accounts of Unreal Engine and its creators Epic Games’ forum

Anamitra Sarkhel
August 24, 2016
3

Locky Ransomware threat in Healthcare Industry

Locky Ransomware threat in Healthcare Industry Locky Ransomware, as it is called is causing great adversities for health centres and hospitals in the United States. Yes, malicious actors and scammers are employing the highly advanced Locky Ransomware there which penetrates infecting the entire system in a very short span of time by using the file

Anamitra Sarkhel
August 21, 2016
0

Volkswagen Vulnerability found in VW Cars

Volkswagen Vulnerability found in VW Cars Volkswagen vulnerability this time!! Even cars of the standard and stature of Volkswagen cannot evade vulnerability from hacking these days. Such is the susceptible cyber security scenario in the world at the moment. These kind of hacks along with system compromise, data breaches and other form of cyber crimes

Anamitra Sarkhel
August 18, 2016
0

Android devices vulnerable to Linux Kernel flaw

Android devices vulnerable to Linux Kernel flaw Android devices running Android 4.4 KitKat and higher are vulnerable to a recently disclosed Linux Kernel flaw and guess what even the latest, updated and improved technology of Android Nougat Preview also seem to have not been able to evade it. This vulnerability is estimated to be present on

Anamitra Sarkhel
August 17, 2016
0

Dota 2 Forum Hacked

Dota 2 Forum Hacked Dota 2’s (Defense of the Ancients 2) official forum has suffered a serious setback with close to 2 million registered user’s personal information being stolen. Dota 2 is a multi-player online battle arena video game. E-mail and IP addresses, usernames, user identifiers and hashed passwords were accessed and stolen. This massive

Anamitra Sarkhel
August 15, 2016
0

Push notification enhances android security

Push Notification Enhances Android Security Push notification is Google’s next endeavour in keeping its security as tight as possible in Android phones. After the recent announcement of already implementing some vital security features in the next Android OS version Android Nougat it is now on its way to bring to the table a new feature

Anamitra Sarkhel
August 3, 2016
0

Israeli Hacker Hacks Again

Israeli Hacker Hacks Iranian ISP ‘Daba’ Israeli Hacker does it again, Iranians exposed to privacy breaches, yet once more!! The login credentials of thousands of online registered users of an Iranian Internet Service Provider (ISP) called Daba have been leaked earlier today by a hacker operating by the name of Zurael_sTz after who was able

admin
August 2, 2016
0

Combating Ransomware

Combating Ransomware Attack – Europol takes initiative to fight back Ransomware has been something that has been bothering and affecting individuals and companies very badly for quite some time now. It’s a type of malicious software that is designed to block access to a computer system until a sum of money is paid as deemed

Anamitra Sarkhel
July 26, 2016
1

gmail hacking

Gmail Hacking and Security Tips Gmail hacking is very common and this is how many underworld hacking communities are gaining access to millions of gmail accounts. Google had taken many steps but it seems that hackers are always one step ahead of them. Due to lack of awareness many high ranked government officials and high

admin
July 24, 2016
0

Android Nougat

Android Nougat-Will it be ‘sweeter’ than Marshmallow Google is raising the bar with the latest version of its mobile operating system named Android Nougat after so many names were suggested for the same from all over the tech world and social networking sites following the trend of keeping its name after a sweet which

admin
July 24, 2016
1

Web Application Firewall Testing

Test your Web Application Firewall NOW before its too late A form of firewall covering the control of input/output & access from, to, or by an application or service is called application firewall or in full term web application firewall (abbreviated as WAF). They are of two types i) Network based and ii) Application

admin
November 26, 2015
0

Do not leave it to your assumption

Call us for a Demo IT Security Audit