Category: Hacking

20 Jan, 2016

Owning the Dark Web

Security experts developed their PunkSPIDER, a Tor crawler, that already scanned more than 7000 domains and discovered numerous vulnerabilities. PunkSPIDER, the crawler that scanned the Dark Web

Breaking News / Data breach / Hacking / malware

13 Jan, 2016

Malware over the 2015 festive period

As Usual, Attackers Were Busy Over the Holiday Season http://researchcenter.paloaltonetworks.com/2016/01/as-usual-attackers-were-busy-over-the-holiday-season

Breaking News / Data breach / Hacking

12 Jan, 2016

Scammers target Dell customers after apparent data breach

A number of Dell customers claim to have been contacted by scammers who had access to specific customer information that should have only been available to Dell. The company says it hasn’t been hacked...

Hacking / malware

12 Jan, 2016

Exploit kits throw Flash bash party, invite Crypt0l0cker, spam bots

Criminals behind some of the most potent exploit kits, Neutrino and RIG, are ramping up attacks slinging the latest ransomware and hosing users who have not applied recent Adobe Flash patches. The patched vulnerabilities...

Breaking News / Data breach / Hacking

11 Oct, 2015

Samsung Confirms Consumer Data is Safe After Breach

Samsung Electronics has confirmed that anyone using its mobile payments service, the recently launched Samsung Pay, has no cause for concern following the news of a data breach on subsidiary LoopPay’s network. Sensitive data...

Breaking News / Hacking / Pen Testing

11 Oct, 2015

Outlook.com CSRF disclosure

Synack senior security researcher Wesley Wineberg has received US$25,000 from Microsoft for quietly disclosing a bug that allows any Hotmail account to be hijacked. http://www.theregister.co.uk/2015/10/09/hotmail_hijack_hole_earns_boffin_25k_double_bug_bounty_trouble/

Hacking / Pen Testing / Resources / Tools

11 Oct, 2015

Linux post exploitation command list

Really useful reference sheet for post exploitation commands https://github.com/mubix/post-exploitation/wiki/Linux-Post-Exploitation-Command-List

Hacking / Pen Testing

11 Sep, 2014

Twitter welcomes hackers

https://hackerone.com/twitter?show_all=true

Recent Tweets

LocalBlox leaves 43M users data in an unsecured S3 Bucket. https://t.co/olw35F4NSN 1 day ago
RT @gcluley: Excel pivot table data leak leads to £120,000 fine for London council in wake of Grenfell Tower disaster… https://t.co/hdzMTS8rFW 2 days ago
Cisco issues critical patch to stop in-meeting attacks https://t.co/WoT4yHItsC 2 days ago
facing 10 years for URL fiddling? Careful the next time you increment that ID for a giggle... https://t.co/rKZyJJCEdc 2 days ago
"What street did you grow up on?", "What was your first car?", "Your first pets name?". Why are people answering th… https://t.co/TF8dwpzRMA 2 days ago
Ikea app reveals security breach https://t.co/M3o9zmWfj7 #databreach 3 days ago
RT @NCSC: A joint US and UK statement on attribution of malicious cyber activity carried out by Russian government… https://t.co/hyvAzuuGCH 4 days ago
Fingerprint ID from a WhatsApp photo enough to convict a dealer https://t.co/cWUZHHAdxE #whatsapp #id 5 days ago
"Currently only a third (30 per cent) of local police forces have an online capability that reaches the minimum sta… https://t.co/ShiVn7NcoS 1 week ago
GWR customers with sloppy password habits https://t.co/7dHuMqzRON #replay #databreach 1 week ago
Sad times for my fitness pal. There goes another chunk of my data. #databreach #myfitnesspal #underarmour https://t.co/LHunQzfHPX 2 weeks ago
MyFitnessPal breach affects millions of Under Armour users - https://t.co/UdYrYjTcSd 3 weeks ago
880000 payment cards breached https://t.co/P12hdIeRjl 4 weeks ago
Eugh..... It can only mean #patchtuesday https://t.co/78ZL6UmOha 3 months ago
Mozilla Confirms Web-Based Execution Vector for Meltdown and Spectre Attacks https://t.co/zB2atsxZX4 3 months ago
RT @MFF_Forum: Received a chaser email about an overdue invoice? | Be #fraud smart watch this video clip where @ciunderhill explai… https://t.co/sQNtYdrKVM 4 months ago
A quarter of all phishing sites now use HTTPS - how much do you trust the green padlock when you can get one easily for free? 4 months ago
Classified Pentagon data leaked on the public cloud - https://t.co/VS4uQaeOD4 5 months ago
RT @eqcybersec: Why is Facebook such an attractive target for fraudsters? Our CTO @ciunderhill tells us in the @Telegraph… https://t.co/uxz3MUGBdX 5 months ago
Phishing attacks intercepted and killed this week by our team at Equiniti Cyber Security. To protect your customers… https://t.co/0yLm2sZbyD 5 months ago
Android phones have been collecting the addresses of nearby cellular towers—even when location services are disable… https://t.co/E16omdFmDV 5 months ago
Uber paid hackers $100,000 to keep data breach quiet https://t.co/wXPGUoQ8C9 5 months ago
RT @eqcybersec: Continuing the @BarclaysUK #Digisafe campaign, our CTO @ciunderhill features in their latest video warning of the d… https://t.co/NcgCdQFMH1 5 months ago
RT @equinitidata: Continuing the @BarclaysUK #Digisafe campaign, our CTO @ciunderhill features in their latest video warning of the d… https://t.co/oDegapWYuP 5 months ago
RT @EquinitiDigital: @eqcybersec CTO @ciunderhill at the @Socitm NI event discusses #CyberSecurity, #databreaches and the #darkweb https://t.co/IdCk5jheQF 5 months ago

Follow @ciunderhill

Category: Hacking

Contact me