Blog Archives

OS X and iOS WireLuker malware

It targets OS X 64 bit and waits for an iOS device to be connected.  It then infects the iPhone/iPad, scanning for confidential information.  First appeared in “warez” software.

Google’s nogotofail dev tool for detecting ssl/tls bugs

Google has released a tool for developers to detect problems in ssl/tls encryption during live sessions.

Scamming Visa for just under $1m

Requires an “evil” POS terminal and some specific knowledge…

The spread of the SuperCookie

AT&T and Verizon tracking user’s browsing habits using these hard to avoid markers.

New “root w/o password” vulnerability for Yosemite?

No public details of a new vulnerability in the latest OS X.

Facebook does Tor

You can now SSL connect to Facebooks “onion” address if you are using Tor.

Drupal 7 critical vulnerability

If you run version 7, make sure you update.

Software “Black Box” recorder for e-commerce

User Replay got $3m in funding to record user transactions.

CurrentC has been hacked..

The proposed replacement for ApplePay/GoogleWallet etc, backed by Walmart and others, has been hacked.  Tester’s email info stolen.

Scanbox keylogger

More malware targeted at a variety of businesses.