DNS

bitdefender.com

Coincheck cryptocurrency exchange targeted by hackers, customer emails exposed

Japanese cryptocurrency exchange Coincheck has announced that earlier this week hackers managed to access some emails sent to the firm by its customers, after its domain name registrar account was compromised.

Read more in my article on the Hot for Security blog.

Smashing Security podcast #145: Apple and Google willy wave while home assistants spy – DoH!

Apple’s furious with Google over iPhone hacking attacks against Uyghur Muslims in China, DNS-over-HTTPS is good for privacy but makes ISPs angry, and concern over digital assistants listening to our private moments continues to rise.

All this and much more is discussed in the latest edition of the award-winning “Smashing Security” podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by journalist John Leyden.

Sky Broadband firmware update bricks routers using third-party DNS settings

Some Sky Broadband users are experiencing problems with the latest firmware update that was rolled out to their routers.

welivesecurity.com

Ethereum cryptocurrency wallets raided after Amazon’s internet domain service hijacked

Approximately US $150,000 worth of Ethereum-based cryptocurrency stolen from MyEtherWallet users.

Read more in my article on the We Live Security blog.

Hacker defaces Donald Trump fundraising site via subdomain takeover attack

A hacker defaced a presidential campaign fundraising website for Donald Trump with a little help from a DNS misconfiguration issue.

David Bisson reports.

bitdefender.com

DDoS attack against DNS provider knocks major sites offline

Web users are struggling to reach some of the world’s most well-known websites – including Twitter, Spotify, Github, Reddit and AirBnB – after the managed DNS service they use, Dyn, was hit by a massive DDoS attack.

Read more in my article on the Hot for Security blog.

Dridex malware adopts redirection attacks to target high-value UK banking customers

The Dridex trojan has adopted a new attack methodology that it is using to target high-value customers of several UK banks.

David Bisson reports.

bitdefender.com

Hackers hijack Tesla’s website, Twitter account and email – but how?

Tesla Motors is famous for its high performance, gadget-filled, electric cars – but that doesn’t necessarily mean that it’s a master of all technology.

This weekend Tesla’s website and Twitter account was hijacked by hackers. But how did they do it?

Read my article on the Hot for Security blog.

Google needs to get a grip on its websites, as hackers meddle in Malaysia

If you visited Google’s Malaysian website today, you might have had a big surprise.

Because rather than finding the familiar minimalist interface of the world’s favourite search engine, visitors to google.com.my would have seen something rather different.

tripwire.com

How hackers can hijack your website and read your email, without hacking your company

Lenovo and Google’s web presence in Vietnam got hit by the Lizard Squad hackers this week.

And no company should be fooled into thinking that they’re not also potentially a target for a similar attack.

Read more in my article on the Tripwire State of Security blog.

bitdefender.com

Lizard Squad disrupts Google in Vietnam to promote DDoS-for-hire service

The notorious Lizard Squad hacking gang has claimed another scalp, having successfully disrupted Google’s internet presence in Vietnam.

Read more in my article on the Hot for Security blog.

Syrian Electronic Army hackers meddle (briefly) with Facebook’s domain

The Syrian Electronic Army’s hack of MarkMonitor put them within a hair’s breadth of hijacking Facebook’s domain.

Things could have been much worse.

Over 4 million infected PCs in 100 countries, but guilt of DNS Changer gang not proven says court

An Estonian court has found the case against four suspected members of the DNS Changer malware gang, arrested under “Operation Ghost Click”, not proven.

Metasploit website hijacked by pro-Palestinian hackers… via fax

Rapid7’s Metasploit is the latest high profile website to fall foul of a pro-Palestinian group of hackers, who hijacked its DNS records.

And it seems the hackers used an old-fashioned fax message to commit their crime.

Vigilance saves Avast anti-virus from having its website pwned

It has been revealed that WhatsApp, AVG and Avira weren’t the only companies to be targeted by a pro-Palestinian hacking gang this week.

Find out how human vigilance saved one security company’s bacon.

WhatsApp website attacked by hackers, goes offline

Popular smartphone messaging app WhatsApp has had its website hacked by a pro-Palestinian group.