Iran Says it Foiled US Cyber Attack on Oil Ministry

d3247bb393f819904914ae3cf1f38cffab72d200
Iran said on Tuesday it had foiled a cyber-attack on the Islamic republic’s oil ministry, and that those behind the hacking attempt were based in the United States. The Fars news agency cited Brigadier General Kamal Hadianfar, head of the cyber police, as saying the unit had thwarted...
Continue reading »

Attackers Use Exploit Kit to Hijack Routers: Researcher

router_dns_hijacking1_500
A security researcher has come across a campaign in which malicious actors are changing the DNS settings of routers in order to take control of their owners’ Internet connections. The French researcher known as “Kafeine” first spotted this pharming operation in April. The attackers had been using an...
Continue reading »

Synology Fixes XSS, Command Injection Vulnerabilities in NAS Software

unas3
Taiwan-based network attached storage (NAS) company Synology has released software updates to address several vulnerabilities reported by Dutch security company Securify. One of the flaws uncovered by researchers is a reflected cross-site scripting (XSS) bug in Synology DiskStation Manager (DSM), the operating system that runs on the company’s...
Continue reading »

Emerson Patches SQL Injection Vulnerability in ICS Product

DeltaV
Emerson’s Process Management group has released a software update to address a SQL injection vulnerability in the Emerson AMS Device Manager product. ​Emerson Process Management provides production, processing, and distribution automation solutions for various industries. The company’s AMS Suite: Intelligent Device Manager​ is designed to help organizations monitor...
Continue reading »

NSA Planned Hack of Google App Store

google-play
The US National Security Agency developed plans to hack into data links to app stores operated by Google and Samsung to plant spyware on smartphones, a media report said Thursday. The online news site The Intercept said US intelligence developed the plan with allies in Britain, Canada, New...
Continue reading »

UC Browser Poses Security, Privacy Risks: Researchers

UC-browser
Researchers at Citizen Lab have analyzed the popular mobile web browser UC Browser and discovered that it’s plagued by some serious security and privacy issues. Citizen Lab is an interdisciplinary laboratory based at the University of Toronto that focuses on studying information and communication technologies (ICT), human rights,...
Continue reading »