Hackers have mined more than 500 million DogeCoins by exploiting a vulnerability in some Synology's network attached storage systems, according to PCMag's SecurityWatch. All mined DogeCoins are said to be worth over $600.000. The affected systems display certain lags and spikes in CPU usage.
Some 680,000 votes from an online democracy poll on the upcoming Hong Kong elections were declared invalid after the “biggest DDoS attack in the history," according to The Register.
Code Spaces closed after a 12-hour DDoS attack and extortion attempt, the Code-hosting service said on its website.
The Microsoft Malware Protection Engine faces a security vulnerability that exposes several Microsoft antimalware products to denial-of-service attacks, according to a Microsoft advisory.
The records of 600,000 customers of pizza chain Domino’s in France and Belgium are exploited by hackers asking for money to restore sensitive information, according to the threatpost.com.
Two Russian men have been accused of using Apple devices to extort money, the Russian Ministry announced in a press release.
An XSS vulnerability in TweetDeck, a Twitter application, has been exploited in an attack, according to The BBC.
A new banking Trojan nicknamed Pandemiya is being promoted in hacker forums and underground online markets as an alternative to the infamous Zeus, according to an RSA blog post. The source code, which includes 25,000 lines of original code written in C language, is retailed at around $1,500, the RSA Security’s Fraud Action team says.
The official websites in Uganada of the Unites States Embassy (http://washington.mofa.go.ug), the Russian Embassy (http://moscow.mofa.go.ug), the Australian Embassy (http://canberra.mofa.go.ug), the German Embassy (http://berlin.mofa.go.ug) and the Embassy of the United Kingdom (http://london.mofa.go.ug) have been defaced by notorious Syrian hacker Dr.SHA6H, according to a PasteBin post.
Access points and Android devices using libraries linked to vulnerable versions of OpenSSL are affected by the Heartbleed bug, according to The Register.
Pakistan Haxors Crew, one of the most active hacktivist groups targeting Indian sites, defaced the main page of the Taj Mahal website (www.tajmahal.gov.in) to emphasize security vulnerabilities of the Indian government, according to ehackingnews.com.
Leader of hacktivist group LulzSec, Hecto Xavier "Sabu" Monsegur, will receive a reduced penalty of 7 months in prison for helping US authorities sabotage some 300 hacking attacks, according to itnews.com.
Over 70 XMPP-based service operators and software developers have permanently upgraded to encrypted connections to secure users’ communications and prevent traffic sniffing, according to Prosody, an XMPP communications server.
As security solutions grow more efficient, cyber criminals are shifting to more sophisticated “deceptive” tactics, including malicious downloads and ransomware, according to a cybersecurity report from Microsoft.