Clik here to view.
Mac Hack Demonstration
Securing your SSH password is very important. Otherwise, you might be pwned by a little girl with her Raspberry Pi.Don't worry, it's an authorized hack, she asked her mom for permission. On 15/05/15...
View ArticleClik here to view.
Ransomware spam e-mails targeting users in Italy and Spain
In the past few days, we received some cases from our customers in Italy and Spain, regarding malicious spam e-mails that pointed to Cryptowall or Cryptolocker ransomware.The spam e-mails pretended to...
View ArticleSMS Exploit Messages
There's an iOS vulnerability affecting iPhone, iPad, and even Apple Watch that allows for a denial of service.Crashing a phone with an SMS? That's so 2008.S60 SMS Exploit MessagesUnlike 2008, this...
View ArticleClik here to view.
Found Item: UK Wi-Fi Law?
I visited the UK last Thursday, found a coffee shop offering "free" Wi-Fi, and read this…"UK Law states that we must know who is using our Wi-Fi at all times."Now I'm not a lawyer — but that seems...
View ArticleClik here to view.
Problematic Wassenaar Definitions
The Wassenaar Arrangement, a multilateral export control regime, defines "intrusion software" as software specially designed or modified to avoid detection by monitoring tools, or to defeat protective...
View ArticleClik here to view.
The Trusted Internet: Who governs who gets to buy spyware from surveillance...
When hackers get hacked, that's when secrets are uncovered. On July 5th, Italian-based surveillance technology company Hacking Team was hacked. The hackers released a 400GB torrent file with internal...
View ArticleClik here to view.
Hacking Team 0-day Flash Wave with Exploit Kits
After Hacking Team was compromised, a lot of information were publicly disclosed beginning 5th of July, particularly its business clients and a zero-day vulnerability for the Adobe Flash Player that...
View ArticleClik here to view.
IOS Crash Report: Blocking "Pop-Ups" Doesn't Really Help
The Telegraph published an article on Thursday about a scam targeting iOS users. Here's the gist: scammers are using JavaScript generated dialogs to display warnings of so-called "IOS Crash" reports...
View Article'Zero Days', the documentary
VPRO (the Dutch public broadcasting organisation) produced a 45-minute documentary about hacking and the trade of zero days. The documentary has now been released in English on Youtube.The documentary...
View ArticleClik here to view.
Duke APT group's latest tools: cloud services and Linux support
Recent weeks have seen the outing of two new additions to the Duke group's toolset, SeaDuke and CloudDuke. Of these, SeaDuke is a simple trojan made interesting by the fact that it's written in...
View ArticleClik here to view.
"IOS Crash Report" Update: Safari Adds Block Feature
Ask, and sometimes, you shall receive.Last Friday, we wrote about call center scammers targeting iOS. And today, Apple released a new (beta) feature that should help.Apple released iOS 9 Public Beta...
View ArticleClik here to view.
Work In Progress
Regular readers will have noticed it's been slow here of late.Under ConstructionWe're finally undertaking an upgrade from Greymatter 1.7.3. This may be the world's oldest Greymatter blog… that will...
View ArticleClik here to view.
Soon
Our "construction project" is progressing nicely.And it should resolve this…Fix mobile usability issues?Translation: your site doesn't help us sell more Android phones and ads.But whatever, the...
View ArticleClik here to view.
New Home: labsblog.f-secure.com
This blog – News from the Lab – was started 4,232 days ago to monitor the Mydoom worm's DDoS attack on sco.com.A bit more than 11 years and two months… and we're now moving this blog to a new...
View Article