Criminals this morning massively attacked Dyn, a company that provides core Internet services for Twitter, SoundCloud, Spotify, Reddit and a host of other sites, causing outages and slowness for many of Dyn’s customers.
In a statement, Dyn said that this morning, October 21, Dyn received a global distributed denial of service (DDoS) attack on its DNS infrastructure on the east coast starting at around 7:10 a.m. ET (11:10 UTC).
The Hack the Pentagon bug bounty program—which Defense Secretary Ashton Carter announced last March at the RSA security conference—lasted several weeks, but it was so successful that the Department of Defense is now following up with an expanded initiative.
The new, expanded DOD bug bounty effort will be operated by HackerOne and Synack. In a bug bounty program, security researchers are rewarded for responsibly disclosing security bugs.
Researchers have devised an attack that gains unfettered "root" access to a large number of Android phones, exploiting a relatively new type of bug that allows adversaries to manipulate data stored in memory chips.
The US OFFICE of Personnel Management doesn’t radiate much glamour. As the human resources department for the federal government, the agency oversees the legal minutiae of how federal employees are hired and promoted and manages benefits and pensions for millions of current and retired civil servants. The core of its own workforce, numbering well over 5,000, is headquartered in a hulking Washington, DC, building, the interior of which has all the charm of an East German hospital circa 1963. It’s the sort of place where paper forms still get filled out in triplicate.
A feature in Intel's Haswell CPUs can be abused to reliably defeat an anti-exploitation technology that exists in all major operating systems, researchers have found.
The technique, developed by three researchers from State University of New York at Binghamton and the University of California in Riverside, can be used to bypass ASLR (address space layout randomization) and was presented this week at the 49th annual IEEE/ACM International Symposium on Microarchitecture in Taipei.
Millennials are more likely to fall for tech support scams than baby boomers, Microsoft says.
The findings are revealed in a recent Microsoft study that saw it poll peeps in the United Kingdom, the United States, Australia and nine other countries. Redmond's not revealed the number of respondents.
Data breaches seem to dominate the news these days but in the mind of to Joe Public, hacking is still the sole domain of antisocial nerds and computer geeks. A stereotype persists to this day that most (if not all) hackers are spotty, teenage basement-dwellers, crashing websites for giggles rather than multi-million-dollar paydays.
Security researchers and the networks they rely on were at risk of breach by the hackers they investigate, thanks to now mitigated man-in-the-middle holes in a popular plugin for analysing debugger OllyDbg.
The debugger disassembles binaries, making it a handy way to understand an application's workings without having access to source code. Those abilities mean OllyDbg is often found in malware investigators' toolkits.
If you use a debit card issued by an Indian bank, you will want to keep your eyes peeled for any unrecognizable transactions.
Several Indian banks are issuing an advisory to their customers, asking them to change their security code (more popularly known as ATM pin) or better replace the card, reports the Economic Times.
Two pseudonymous hackers called Revolver and Peace have claimed to have hacked the online hookup site Adult FriendFinder. While Revolver posted two screenshots of the site's database, Peace claimed to have gained access to a database of around 73 million users.
