USPS Hacked, Employee and Call Center Data Affected

Information about more than 800,000 employees including names, addresses and social security numbers may have been compromised. As call centers were also affected, customers who made calls between Jan 1 and Aug 16 may have their details affected. Image Credits: scmagazine.com

Read More

Some Websites May Still be Vulnerbale to Heartbleed

Many web admins skipped revoking the old SSL certificates before issuing new ones, says researchers from University of Maryland. They were thinking that just reissuing will solve the problem. Meaning that any unrevoked certificated will remain valid for two or more years. Image Credits: Wikimedia

Read More

G20 Summit Warned of Cyber Attack Threat

The Cyber Security Operations center of Australian Department of Defence has issued a warning(pdf) to the organizers of the G20 summit that the event may be targeted as an attempt of cyber espionage of government devices. There have been similar attempts targeting ASEAN and APEC events in the past. The expected threat and the previous attempts were webmail

Read More

Proof of Heartbleed exploit (SSL keys extracted)

Cloudflare challenged everybody to hack their NGINX based webserver(with the vulnerable version of openSSL). Two researchers have managed to successfully extract the SSL keys off of the vulnerable NGINX server on Saturday. Researches have promised not to release the exploitation method for a week, giving administrators time to patch up their servers.     Cloudflare

Read More