Hacking And Security Archives

by geekslopJuly 5, 2020

If you or your ISP are running BIG-IP devices, they are almost certainly under active attack right now. On Wednesday, F5 Networks issued patches for a remote code execution vulnerability in BIG-IP devices. Within hours, security researchers reported targeted attacks against BIG-IP devices.

12Jun

Hacking and Security, Internet

You can block all YouTube ads by simply adding a dot to the end of the domain name.

by geekslopJune 12, 2020

It's so stupidly simple, you gotta wonder how we missed this all these years. Adding a dot to the end of a domain name throws off the browser's cookie handling (breaks CORS too). This hack works on YouTube (for now, anyway) and many other websites that operate behind paywalls (e.g. New York Times).

12Jun

Hacking and Security

Twitter shuts down massive number of accounts spreading deceptive information from Russia, China, and Turkey.

by geekslopJune 12, 2020

Twitter announced Thursday that it deleted more than 170,000 accounts tied to the Chinese government. The accounts were pushing narratives around the Hong Kong protests and Covid-19 that Twitter considered…

New CallStranger exploit takes advantage of UPnP vulnerability

11Jun

Hacking and Security

New CallStranger exploit takes advantage of UPnP vulnerability in millions of routers, gaming systems, TVs, printers, and other Internet-connected attachable devices.

by geekslopJune 11, 2020

Researchers just announced the discovery of a UPnP vulnerability that impacts any UPnP device exposed on the Internet. The attack, called CallStranger (CVE-2020-12695), is being used for massive DDoS attacks…

09Jun

Hacking and Security

And the top attackers for June 9, 2020 are…

by geekslopJune 9, 2020

Somewhat unusual cast of characters today. IPHostCountryBlock Count45.235.36.98ANMAX TELECOMUNICACIONES MAXIMILIANO BIONDI EIRL Chile302177.41.23.8Diretoria de Planejamento e Tecnologia Brazil263103.62.140.205CIRCLE NETWORK Bangladesh197103.219.206.80Knet Solutions P. Ltd India91202.47.35.198Cyber Internet Services Pakistan Pakistan30 Most of…

09Jun

Hacking and Security

India’s hackers-for-hire firm, BellTroX InfoTech Services, determined to be targeting US businesses, government officials, journalists, advocacy groups, non-profits…

by geekslopJune 9, 2020

Evidence shows BellTroX InfoTech Services, aka Dark Basin or Mercenary.Amanda, targeted government officials, celebrities, non-profit organizations, advocacy groups, journalists, investors, and large and small corporations in a hacking spree that is believed to be under investigation by U.S. law enforcement.

28May

Hacking and Security

NSA issues security alert warning of new wave of cybersecurity attacks against email servers conducted by Russia’s GRU.

by geekslopMay 28, 2020

The NSA says that members of Unit 74455 of the GRU Main Center for Special Technologies (GTsST), a division of the Russian military intelligence service, have been attacking email servers…

28May

Hacking and Security

Forget the 26 new USB bugs found in Linux and Windows, it’s the security fuzzer tool that discovered them that’s the news.

by geekslopMay 28, 2020

A research team from Purdue University has created a tool, USBFuzz, which fuzzes calls to the USB driver stack. Apparently the tool is pretty groundbreaking. The researchers said, "At its…

25Mar

Hacking and Security

Guccifer 2.0 mistakenly reveals identity after accidentally dropping VPN connection – and yes, pigs can fly

by geekslopMarch 25, 20180 comment

News erupted this week proclaiming the enigmatic hacker, Guccifer 2.0, accidentally dropped his VPN connection, revealing his secret identity. According to Daily Beast, his true IP address was revealed while he visited a social media site – and it tracked directly to Russia’s GRU headquarters. That’s akin to Batman forgetting to put on his mask or locking the door to the bat-cave. Could it happen? Sure. But not likely.

15Nov

Hacking and Security

Commander X on the run – flees to Mexico from Canada

by geekslopNovember 15, 20170 comment

Like him or not, the controversial Commander X (Christopher Doyon) is reportedly on the run. Below is a statement released from Anonymous explaining Commander X’s flight from Canada to Mexico for asylum. It’s worthy to note that Commander X has just released a book, Behind the Mask, about his exploits during his time with Anonymous.

Hacking and Security

This just popped up on Pastebin – legit?

by geekslopMay 17, 20170 comment

This just popped up on pastebin claiming to expose the members of the WannaCry attack. Legit?

Hacking and Security

Check out the WannaCry/WannaCryptor/WanaDecryptor (WCry 2.0) ransomware indicators

by geekslopMay 12, 20170 comment

Somebody dumped a file in VirusTotal claiming it's the new WCry 2.0 variant that's wreaking havoc today. Details below but take with grain of salt until we know more.

13Dec

Hacking and Security

How we know Russia hacked the US election – (and the truth about Guccifer 2.0 and why he and Julian Assange are best buds)

by geekslopDecember 13, 20160 comment

Assange served as the gateway for stolen US government documents that appeared to be an attempt to influence the US election process. The documents were rumored to come from the Russian government and an enigmatic lone-wolf hacker known as Guccifer 2.0.

30Nov

Hacking and Security

Rule 41 changes pass – long live legalized electronic eavesdropping of all Americans!

by geekslopNovember 30, 20160 comment

The new Rule 41 dictate is going to be law and it's a doozy, both mind-boggling (for its stupidity) and stomach-churning (for its stupidity) at the same time. Effectively, what the law does is allow any judge, anywhere (including Podunk, Texas), to grant a warrant for electronic surveillance of any US citizen. If you thought the NSA spying fiasco was bad – you ain't seen nothing yet.

31Oct

Hacking and Security

The Shadow Brokers dropped another server list today–is it relevant?

by geekslopOctober 31, 20160 comment

The Shadow Brokers published another encrypted drop today on Medium which they say reveals NSA IP addresses linked to the Equation Group (some believe Equation Group is a NSA hacking cooperative). TSB’s drop uses the same PGP as previous drops so it appears to be legit.

24Oct

Hacking and Security

Why we should fear Mirai and IoT botnets (and how stupidly simple it is to quash those fears)

by geekslopOctober 24, 20160 comment

The first thought for anyone who has examined the Mirai codebase is how well the application was coded. The second thought is how easy it would be to disable. Being a C&C server inherently means you can control the Mirai botnet with it - even to the point of shutting it down – permanently.

Hacking and Security

If you’re running a BIG-IP device, you’re under attack right now.

You can block all YouTube ads by simply adding a dot to the end of the domain name.

Twitter shuts down massive number of accounts spreading deceptive information from Russia, China, and Turkey.

New CallStranger exploit takes advantage of UPnP vulnerability in millions of routers, gaming systems, TVs, printers, and other Internet-connected attachable devices.

And the top attackers for June 9, 2020 are…

India’s hackers-for-hire firm, BellTroX InfoTech Services, determined to be targeting US businesses, government officials, journalists, advocacy groups, non-profits…

NSA issues security alert warning of new wave of cybersecurity attacks against email servers conducted by Russia’s GRU.

Forget the 26 new USB bugs found in Linux and Windows, it’s the security fuzzer tool that discovered them that’s the news.

Guccifer 2.0 mistakenly reveals identity after accidentally dropping VPN connection – and yes, pigs can fly

Commander X on the run – flees to Mexico from Canada

This just popped up on Pastebin – legit?

Check out the WannaCry/WannaCryptor/WanaDecryptor (WCry 2.0) ransomware indicators

How we know Russia hacked the US election – (and the truth about Guccifer 2.0 and why he and Julian Assange are best buds)

Rule 41 changes pass – long live legalized electronic eavesdropping of all Americans!

The Shadow Brokers dropped another server list today–is it relevant?

Why we should fear Mirai and IoT botnets (and how stupidly simple it is to quash those fears)

In the know

Sign up for our newsletter

Shop by theme

Shop Science

Shop Household

Clothing & Apparel

GEEK SHOP

Geek slop

Contact info

Company

Useful

Warrant Canary/Transparency Report

Transparency Report

Signup now!

25%

Sign up for
our newsletter
and Get a Discount

Login

In the know

Sign up for our newsletter

GEEK SHOP

Geek slop

Contact info

Company

Useful

Warrant Canary/Transparency Report

Transparency Report

Signup now!

25%

Sign up for our newsletter and Get a Discount

Sign up for
our newsletter
and Get a Discount