Hacking Wisdom
Follow
Find
3.5K views | +0 today
 
Scooped by Alessandro Parisi
onto Hacking Wisdom
Scoop.it!

Car hacking code released at Defcon - CNET (blog)

Car hacking code released at Defcon - CNET (blog) | Hacking Wisdom | Scoop.it
Car hacking code released at Defcon
CNET (blog)
Car hacking code released at Defcon. Car computer hacking hit the gas on the first morning of Defcon 21, as hackers revealed how they took over two of the most popular cars in America.
more...
No comment yet.
Hacking Wisdom
Your new post is loading...
Your new post is loading...
Scooped by Alessandro Parisi
Scoop.it!

Touching a Laptop Can Break Its Encryption | MIT Technology Review

Touching a Laptop Can Break Its Encryption | MIT Technology Review | Hacking Wisdom | Scoop.it
The latest way to snoop on a computer is by measuring subtle changes in electrical potential as data is decrypted.
more...
No comment yet.
Scooped by Alessandro Parisi
Scoop.it!

Can't you hear me knocking: Identification of user actions on Android apps via traffic analysis

Alessandro Parisi's insight:
While smartphone usage become more and more pervasive, people start also asking to which extent such devices can be maliciously exploited as "tracking devices". The concern is not only related to an adversary taking physical or remote control of the device (e.g., via a malicious app), but also to what a passive adversary (without the above capabilities) can observe from the device communications. Work in this latter direction aimed, for example, at inferring the apps a user has installed on his device, or identifying the presence of a specific user within a network.In this paper, we move a step forward: we investigate to which extent it is feasible to identify the specific actions that a user is doing on his mobile device, by simply eavesdropping the device's network traffic. In particular, we aim at identifying actions like browsing someone's profile on a social network, posting a message on a friend's wall, or sending an email. We design a system that achieves this goal starting from encrypted TCP/IP packets: it works through identification of network flows and application of machine learning techniques. We did a complete implementation of this system and run a thorough set of experiments, which show that it can achieve accuracy and precision higher than 95%, for most of the considered actions.
more...
No comment yet.
Scooped by Alessandro Parisi
Scoop.it!

Researchers find it’s terrifyingly easy to hack traffic lights

Researchers find it’s terrifyingly easy to hack traffic lights | Hacking Wisdom | Scoop.it
Open wireless and default passwords make controlling a city's intersections trivial.
more...
No comment yet.
Scooped by Alessandro Parisi
Scoop.it!

Cryptolocker flogged on YouTube

Cryptolocker flogged on YouTube | Hacking Wisdom | Scoop.it
Cat video encrypts all the things
more...
No comment yet.
Scooped by Alessandro Parisi
Scoop.it!

Turns Out Your Complex Passwords Aren’t That Much Safer | Enterprise | WIRED

Turns Out Your Complex Passwords Aren’t That Much Safer | Enterprise | WIRED | Hacking Wisdom | Scoop.it
When the computer security company Hold Security reported that more than 1.2 billion online credentials had been swiped by Russian hackers, many people were worried—and justifiably so. Hold isn’t saying exactly which websites were hit, but with so many credentials stolen, it’s likely that hundreds of millions of ordinary consumers were affected. Some of these…
more...
No comment yet.
Scooped by Alessandro Parisi
Scoop.it!

Fifteen new vulnerabilities reported during router hacking contest

Fifteen new vulnerabilities reported during router hacking contest | Hacking Wisdom | Scoop.it
Five popular router models were hacked during the SOHOpelessly Broken competition at DefCon 22
more...
No comment yet.
Scooped by Alessandro Parisi
Scoop.it!

Turning USB devices into Evil with BadUSB | HackingWisdom.com

Provided that USB devices are connected to virtually all computers, the interface standard conquered the world over the past two decades thanks to its versatility; this versatility is also USB’s Achilles heel, since different device classes can plug into the same connectors, one type of device can turn into a more capable or malicious type without the user noticing.

more...
No comment yet.
Scooped by Alessandro Parisi
Scoop.it!

Hacker swipes $83,000 from Bitcoin mining pools - CNET

Hacker swipes $83,000 from Bitcoin mining pools - CNET | Hacking Wisdom | Scoop.it
Bitcoin exchanges and trading posts have been hacking targets over the past year, but now one hacker has taken on ISPs to loot cryptocurrency from mining pools.
more...
No comment yet.
Scooped by Alessandro Parisi
Scoop.it!

Eavesdropping with a camera and potted plants

Eavesdropping with a camera and potted plants | Hacking Wisdom | Scoop.it
Before you spill your deepest darkest secrets, or plans for world domination, look around you. Is there a gossipy potato chip bag or leafy houseplant?
more...
No comment yet.
Scooped by Alessandro Parisi
Scoop.it!

The Preferred Roaming List Zero Intercept Attack ≈ Packet Storm

Information Security Services, News, Files, Tools, Exploits, Advisories and Whitepapers
more...
No comment yet.
Scooped by Alessandro Parisi
Scoop.it!

Secure microkernel that uses maths to be 'bug free' goes open source

Secure microkernel that uses maths to be 'bug free' goes open source | Hacking Wisdom | Scoop.it
Hacker-repelling, drone-protecting code will soon be yours to tweak as you see fit
more...
No comment yet.
Scooped by Alessandro Parisi
Scoop.it!

How Malware Analysis has evolved in complex environments | HackingWisdom.com

more...
No comment yet.
Scooped by Alessandro Parisi
Scoop.it!

Attackers raid SWISS BANKS with DNS and malware bombs

Attackers raid SWISS BANKS with DNS and malware bombs | Hacking Wisdom | Scoop.it
'Retefe' trojan uses clever spin on old attacks to grant total control of bank accounts
more...
No comment yet.
Scooped by Alessandro Parisi
Scoop.it!

Did you swipe your card through one of these UPS Store tills? You may have been pwned

Did you swipe your card through one of these UPS Store tills? You may have been pwned | Hacking Wisdom | Scoop.it
As many as 100k transactions spied upon by malware
more...
No comment yet.
Scooped by Alessandro Parisi
Scoop.it!

RadSec Paper: Security Analysis of a Full-Body Scanner

Alessandro Parisi's insight:

The system provides weak protection against adaptive adversaries: It is possible to conceal knives, guns, and explosives from detection by exploiting properties of the device’s backscatter X-ray technology. We also investigate cyberphysical threats and propose novel attacks that use malicious software and hardware to compromise the the effectiveness, safety, and privacy of the device. Overall, our findings paint a mixed picture of the Secure 1000 that carries lessons for the design, evaluation, and operation of advanced imaging technologies, for the ongoing public debate concerning their use, and for cyberphysical security more broadly.

more...
No comment yet.
Scooped by Alessandro Parisi
Scoop.it!

Hospital hack 'exploited Heartbleed'

Hospital hack 'exploited Heartbleed' | Hacking Wisdom | Scoop.it
A leading security expert alleges that hackers made use of the Heartbleed flaw to steal the personal details of 4.5 million healthcare patients.
more...
No comment yet.
Scooped by Alessandro Parisi
Scoop.it!

Blackphone rooted at BlackHat

Blackphone rooted at BlackHat | Hacking Wisdom | Scoop.it
Details awaited on privilege escalation bug
more...
No comment yet.
Scooped by Alessandro Parisi
Scoop.it!

Google leaves STUPID vuln on Nest devices

Google leaves STUPID vuln on Nest devices | Hacking Wisdom | Scoop.it
Security? But this is the Internet of Things!
more...
No comment yet.
Scooped by Alessandro Parisi
Scoop.it!

CVE-2014-2477 VirtualBox Guest Additions VBoxGuest.sys Privilege Escalation | Rapid7

A vulnerability within the VBoxGuest driver allows an attacker to inject memory they control into an arbitrary location they define. This can be used by an attacker to overwrite HalDispatchTable+0x4 and execute arbitrary code by subsequently calling NtQueryIntervalProfile on Windows XP SP3 systems.

more...
No comment yet.
Scooped by Alessandro Parisi
Scoop.it!

Microsoft: Critical Windows and Internet Explorer patches incoming

Microsoft: Critical Windows and Internet Explorer patches incoming | Hacking Wisdom | Scoop.it
August Patch Tuesday to feature nine updates
more...
No comment yet.
Scooped by Alessandro Parisi
Scoop.it!

Igor Korkin: Applying Memory Forensics to Rootkit Detection

Alessandro Parisi's insight:

A brand new method for rootkit detection; very good stuff from Mr. Igor Korkin!

more...
No comment yet.
Scooped by Alessandro Parisi
Scoop.it!

Google to reward HTTPS sites with higher search rankings

Google to reward HTTPS sites with higher search rankings | Hacking Wisdom | Scoop.it
The firm wants to push encryption
more...
No comment yet.
Scooped by Alessandro Parisi
Scoop.it!

Android ID flaw exposes smartphones

A security firm warns of a flaw in the way Android ID checks apps that puts thousands of smartphones and tablets at risk.
more...
No comment yet.
Scooped by Alessandro Parisi
Scoop.it!

I2P Anonymous Network and The Invisible Internet Project | HackingWisdom.com

I2P Anonymous Network and The Invisible Internet Project | HackingWisdom.com | Hacking Wisdom | Scoop.it

I2P is an anonymous network, exposing a simple layer that applications can use to anonymously and securely send messages to each other.

The network itself is strictly message based (a la IP), but there is a library available to allow reliable streaming communication on top of it (a la TCP).

more...
No comment yet.
Scooped by Alessandro Parisi
Scoop.it!

Arrests made after eBay Stubhub thefts

Arrests are made in the UK, US, Canada and Spain after a scam involving e-tickets for Elton John concerts and other shows sold via Stubhub.
more...
No comment yet.