If you own a website, take advantage of the security features that your DNS registrar offers you or risk suffering the kind of attack OurMine wrought against WikiLeaks.
Tag Archives | Wikileaks
WikiLeaks's revelations about security vulnerabilities in Apple products appear to be a damp squib.
Read more in my article on the We Live Security blog.
WikiLeaks' Julian Assange may be making unreasonable demands about how he will share details of the alleged zero-day vulnerabilities that have been leaked from the CIA
After the media hystericane, Julian Assange says he will help bugs get fixed.
WikiLeaks has published thousands of pages of what appeared to be leaked internal CIA documents.
The haul, which WikiLeaks has somewhat pretentiously dubbed "Vault 7", is claimed to be "the largest ever publication of confidential documents on the agency."
Ecuador has said it pulled the plug on Julian Assange's web access out of concern that he was using WikiLeaks to influence the U.S. presidential election.
David Bisson reports.
Veteran anti-virus researcher Vesselin Bontchev has discovered that there are thousands of samples of malware available for download from the WikiLeaks website.
The malware found by Bontchev is found in a large tranche of emails leaked from AKP, a Turkish political party.
Since many of the AKP members have been recipients of malware sent by e-mail (most likely random spam but could have also been targeted attacks), the received malware in the e-mails is also present in the dump. As a result, the Wikileaks site is hosting malware. For the record, I consider this to be extremely irresponsible from the part of Wikileaks. Malware distribution is not "journalism" by any definition of the term.
Bontchev found 3277 malicious files on the WikiLeaks site, accessible to anyone on the internet via a single click.
Of course, it's perfectly possible that the true number of malware samples published on the WikiLeaks site is much larger than this. Bontchev's focus so far has been on one particular email dump, and used the VirusTotal service to determine if a file was identified as malicious or not.
Furthermore, one cannot discount the possibility that some of the email dumps published by WikiLeaks contain targeted attacks that are not presently detected by any anti-virus product.
WikiLeaks has been criticised before for its unwillingness to curate the leaked information that it leaks - by, amongst others, no less than Edward Snowden.
Anti-virus industry old-timers like me and Bontchev are left with our heads in our hands when we hear that WikiLeaks is apparently making no efforts whatsoever to prevent its readers from encountering malware samples.
When OurMine and Anonymous get embroiled in an online battle, other websites feel the pain.
Read more in my article on the Hot for Security blog.
WikiLeaks has published online more than one million emails from spyware firm Hacking Team - accessible through a simple searchable interface.
Leaked Sony Pictures emails reveal that a "Doctor Who" movie may be on its way... albeit not in the immediate future.
Don't feel too smug about Sony's discomfort - ask yourself if you are taking enough steps to secure your passwords.
Does your company use strong password management software to generate complex, unique, hard-to-guess passwords?
The trailer for the Wikileaks movie "The Fifth Estate" has been released on the internet, and it features no less a star than acclaimed British actor Benedict Cumberbatch as the website's controversial founder and editor-in-chief.
Queen Beatrix of the Netherlands has her personal phone number released onto the web, via WikiLeaks diplomatic cables.
Even regal grandmothers can find they have been exposed by WikiLeaks.
Computer crime authorities will be hoping that they have struck a significant blow against the Anonymous and LulzSec hacking groups, following a series of raids and arrests on both sides of the Atlantic.
MasterCard's website was knocked offline following what appears to be a WikiLeaks-inspired internet attack by hacktivists against it.
Once again, a denial-of-service attack is a hactivist's best friend - but don't forget they're illegal.
An Anonymous "source", interviewed by a TV news programme, appears to be no stranger to internet memes when discussing arrests in the USA and UK.