Hacks

Massive worm hits Tumblr, spams big blogs like USA Today

A massive bug swept Tumblr today and infected some of the biggest blogs -- including USA Today, Reuters, The Verge, and CNET -- until Tumblr resolved the issue shortly before 10:30 a.m. PT.

GNAA, a hacker group, claimed responsibility for the attack. The group's Twitter profile earlier today said 8,600 unique Tumblr users were affected.

Tumblr didn't explain what happened but said in a blog post that no accounts were compromised, and users didn't need to take any further action.

"Our sincere apologies for the inconvenience," the company said. "As always, … Read more

Some Samsung printers vulnerable to hackers

Owners of certain Samsung printers may find their devices a target for hackers.

Samsung printers and some Dell printers made by Samsung have a hardcoded account that someone could use to control and access information on the devices, according to US-CERT (United States Computer Emergency Readiness Team).

As described by the security team, these printers contain a hardcoded SNMP (Simple Network Management Protocol) string that has full read/write access and stays active even if the network protocol is disabled by the user.

"A remote, unauthenticated attacker could access an affected device with administrative privileges," US-CERT said. "… Read more

Hackers steal and publish e-mails from U.N. nuclear agency

Hackers have made their way into one of the servers of the United Nation's International Atomic Energy Agency, according to Reuters. The agency confirmed that the hackers stole information and published it online.

"The IAEA deeply regrets this publication of information stolen from an old server that was shut down some time ago," agency spokesperson Gill Tudor told Reuters. "The IAEA's technical and security teams are continuing to analyze the situation and do everything possible to help ensure that no further information is vulnerable."

A group that calls itself "Parastoo" claimed responsibility … Read more

U.S. accused of cyberattack on French government

The United States has been charged with launching a cyberattack against France -- a claim the U.S. government has categorically denied.

According to L'Express, a French news outlet, sources with knowledge of a cyberattack that occurred in May have said the U.S. was behind the attack. The news outlet claims that the attack occurred a few days before the country's presidential election and targeted "the team of [former French President] Nicolas Sarkozy."

L'Express' sources say the hackers worked their way through Sarkozy's team to attack his closest advisers. In order to climb … Read more

Anonymous escalates its 'cyberwar' against Israel

Anonymous' hacking campaign against Israel to protest its attacks on Gaza escalated today with the release of a list of thousands of individuals who supposedly donated to a pro-Israel organization.

The collective posted a Pastebin document that it said featured names -- and in some cases home addresses and e-mail addresses -- of donors for the Unity Coalition for Israel, which claims to represent "the largest network of pro-Israel groups in the world." The document appears to be quite old: one of the military e-mail addresses belonged to Douglas Feith, the U.S. undersecretary for defense under Bush, … Read more

Israel government Web sites hit by hacker blitz

Israel's government Web sites have been bombarded by hackers in the last couple of days, logging more than 44 million hacking attempts since Israel launched the Gaza air strikes on Wednesday.

One of the attempts was successful, Finance Minister Yuval Steinitz told Reuters, noting that an unidentified site was offline for about 10 minutes before being resurrected. Popular targets include defense-related sites, as well as those of Israel's prime minister, president, and Foreign Ministry.

Most of the attacks have been traced to Israel and the Palestinian territories.

"The ministry's computer division will continue to block the … Read more

Anonymous targets Israeli Web sites in protest over Gaza

Anonymous is in the midst of a hacking campaign against a number of Israeli sites in protest of attacks taking place on Gaza.

The hacking spree, dubbed OpIsrael and begun early Thursday, has resulted in so many Israeli Web sites being defaced or shut down through methods including denial of service (DoS) attacks, that it's hard to keep count. However, some enterprising hacktivists have begun compiling lists of affected Web sites. Targets have included governmental, retail, and business sites -- some belonging to the automotive and fashion industries.

The Bank of Jerusalem, one of Israel's largest financial institutions, … Read more

China cyber-espionage threatens U.S., advisory group warns

Congress needs to take action to deflect the growing threat of Chinese cyber-espionage against the U.S., a U.S. commission recommends in a new report.

Released today, the 500-page annual report to Congress by the U.S.-China Economic and Security Review Commission details various security issues concerning China. But the commission expressed particular fear over the country's ongoing cyberwarfare efforts.

Calling China the "most threatening actor in cyberspace," the report found that in 2012, Chinese state-sponsored hackers continued to target computers systems run by the U.S. government and military as well those maintained in … Read more

Skype fixes e-mail security flaw

Skype has resolved a nasty e-mail and password security bug and reinstated its password reset page.

Revealed by Skype earlier today, the vulnerability allowed someone to create a Skype account using the same e-mail address as that of the intended victim. That person was then able to reset the password for all accounts associated with that address, thereby locking out the account owner from Skype.

As a precaution, Skype earlier today took down its password reset page to prevent hackers from taking advantage of the flaw. But the company managed to resolve the security hole not long after announcing it, … Read more