Tag Archive for: attackers

Zimperium Raises $8M For Mobile Security That Turns The Tables On Attackers – TechCrunch

/in

Zimperium Raises $ 8M For Mobile Security That Turns The Tables On Attackers
TechCrunch
Let's say you're at the airport, checking your email on your iPhone over the wifi. Well, you've already made your first mistake. You've trusted the airport network to be secure enough to protect you from hacker attacks. Zimperium announced today it has
California-based Zimperium raises $ 8 million in a funding round led by Sierra Venture Capital Post

all 2 news articles »

“mobile security” – read more

“Funded hacktivism” or cyber-terrorists, AmEx attackers have big bankroll

/in

The “cyber-fighters of Izz ad-Din al-Qassam” took American Express down for two hours yesterday afternoon.

On March 28, American Express’ website went offline for at least two hours during a distributed denial of service attack. A group calling itself “the cyber-fighters of Izz ad-Din al-Qassam” claimed responsibility for the attack, which began at about 3:00pm Eastern Time.

In a statement, an American Express spokesperson said, “Our site experienced a distributed-denial-of-service (DDoS) attack for about two hours on Thursday afternoon…We experienced intermittent slowing on our website that would have disrupted customers’ ability to access their account information. We had a plan in place to defend against a potential attack and have taken steps to minimize ongoing customer impact.”

The American Express DDoS is part of a new wave of attacks started two weeks ago by the Izz ad-Din al-Qassam group, which launched a larger campaign targeting US financial institutions that began last September. The group’s alleged goal is to force the take-down of an offensive YouTube video—or extract an ongoing price from American banks as long as the video stays up, which could be indefinitely.

Read 15 remaining paragraphs | Comments


Ars Technica » Technology Lab

Bug in EA’s Battlefield Play4Free allows attackers to hijack players’ PCs

/in

A frame from a video demonstrating an attack that allows attackers to execute malicious code on older Windows systems that have Play4Free installed.
ReVuln

If you play EA’s popular Battlefield Play4Free game on an older version of Windows, a pair of researchers say they can hijack your system by luring you to a booby-trapped website.

The proof-of-concept exploit, demonstrated last week at the Black Hat security conference in Amsterdam, allows attackers to surreptitiously execute malicious code on default systems running Windows XP or Windows 2003 that have the Play4Free title installed. There are close to 1 million players of the first-person shooter game, and about 39 percent of Windows users are still on XP.

The webpage used in the exploit opens the game on a victim’s computer and instructs it to load a malicious “MOD” file used to customize game settings and features, according to a document the researchers published Friday. Using some nonstandard behavior of a programming interface version found only in older versions of Windows, the MOD file is able to upload a malicious batch file that will be executed the next time the computer is restarted. The technique is successful because it overrides a whitelist that’s supposed to restrict the sites that are permitted to load the Play4Free game.

Read 4 remaining paragraphs | Comments


Ars Technica » Technology Lab

Microsoft patch stops attackers from owning PC via USB flash drive hack

/in

Yesterday Microsoft issued seven updates, four of them critical, to address 20 vulnerabilities in Windows, Office, Internet Explorer, SharePoint (Server Tools) and Silverlight. MS13-021 resolves nine issues in Internet Explorer.
Ms. Smith’s blog