According to a court filing earlier this week, the FBI is refusing to comply with a judge’s request to answer just how it was able to compromise Tor and in turn, trigger a wave of child pornography investigations last year.
New ransomware called KimcilWare is targeting websites running the Magento ecommerce platform, used by the likes of Vizio, Olympus and Nike. According to security experts from the MalwareHunterTeam, hackers exploit vulnerabilities in the Magento ecommerce platform and install the KimcilWare ransomware on the webserver. Once installed, attackers use Rijndael block ciphers to encrypt website files and demanding Bitcoin payment ranging from $140 USD and $415 USD for decryption.
The Maktub Locker infection comes in the usual way: A spam mail from some company with an executable file (.exe) disguised as a text/pdf document. This file will open an “Updating our privacy policies and terms of service” text file that we will read because everyone reads them all the time, don’t we? But while we are doing that, the original file will start encrypting our files just as the other cryptolockers do.
Disclosed on Vulnerability Lab this week, researcher Kunz Mejri revealed the existence of an application-side mail encoding web vulnerability and filter bypass issue in the official PayPal online Web application.
A simple experiment carried out by Web security vendor Sucuri highlights that, four years after the release of a groundbreaking study on the state of SSL/TLS certificates in non-browser applications, some programming languages fail to provide developers with the appropriate tools to validate certificates.