securityXspace: a blog about cyber-philosophy.

Source: Payday Lender Wonga Confirms Data Breach

Security researchers from firms McAfee and FireEye are warning of a Windows zero-day attack in the wild that put Microsoft users at risk of hack. Security researchers from security firms McAfee and FireEye are warning of hackers exploiting an Just opening an MS Word document could put you at risk, the exploitation of the flaw…

The Independent US election ‘ hacking ‘: Russian man arrested in Spain at request of American authorities The Independent An alleged Russian hacker has been arrested in Spain at the request of American authorities. His arrest set cybersecurity circles abuzz after Russian broadcaster RT raised the possibility it was linked to the US presidential election.…

Kaspersky and King’s College have published a nice piece of research into state sponsored hacking and espionage. Kaspersky  

APT10 seems to be drawing the attention of the main research groups at the moment, with PwC and FireEye releasing reports about their activities. FireEye have a nice and detailed look at the TTP and armory of this group: FireEye – APT10 The source code of the QuasarRAT is available on Github: QuasarRAT  

It’s 2017, and opening a simple MS Word file could compromise your system. Security researchers are warning of a new in-the-wild attack that silently installs malware on fully-patched computers by exploiting a serious — and yet unpatched — zero-day vulnerability in all current versions of Microsoft Office on fully-patched PCs. Source: Beware of an Unpatched…

Remember The Shadow Brokers? They are back. A hackers group that previously claimed to have stolen a bunch of hacking tools (malware, zero-day exploits, and implants) created by the NSA and gained popularity last year for leaking a portion of those tools is back. Source: Shadow Brokers Group Releases More Stolen NSA Hacking Tools &…

Source: WikiLeaks Details CIA Tool for Creating Windows Malware Installers

The ISBuzz Post : This Post Hackers Take Down Entire DNS For Brazilian Bank appeared first on Information Security Buzz . Details have emerged as to how hackers managed to take down the entire DNS infrastructure of a Brazilian bank in order to rob customers in October of last year. Source: Hackers Take Down Entire…

Customers of managed security service providers, website of U.S. trade lobby group targeted in separate campaigns Source: China-Based Threat Actor APT10 Ramps Up Cyber Espionage Activity