ITACS 5211: Introduction to Ethical Hacking
September 12, 2017 by Wade Mackey 9 Comments
Ian Riley says
September 12, 2017 at 10:20 pm
1) I am still unable to start a thread- my UI is as follows https://pasteboard.co/GK6RXoN.png
2) For the presentation / summary, are we supposed to be writing this as if presenting to the company? Should we be talking about what we found, or how we found it?
Joseph Nguyen says
September 13, 2017 at 11:36 pm
Same here with 1) and 2) What is that UI and thread, please?
Andres Galarza says
September 16, 2017 at 4:10 pm
For my hacking article of the week, I wanted to try a different approach. Below are some of my favorite news sources for security-related topics.
Also, since we talked about Google hacking this week, I thought I’d share the below infographic.
Christie L Vazquez says
September 17, 2017 at 8:59 am
@Andres, thanks for sharing! I have a hard time following articles on reddit but it is a great source of information.
My article: http://thehackernews.com/2017/09/vevo-music-video-hacked.html
Hacker group OurMine hacked Vevo and then leaked the data. They call themselves white hackers, which I would disagree. Releasing data is something a malicious hacker group would do.
September 17, 2017 at 4:50 pm
Pretty weird that “The group… removed the stolen information from its website on Vevo’s request.” Especially once you consider the fact that once it’s downloaded once, pulling it off their website doesn’t really do anything to stop the flow of info.
September 17, 2017 at 5:43 pm
@Ian, good catch! And yeah very strange. You would think Vevo would know that..
Matt Roberts says
September 18, 2017 at 1:55 pm
One thing that I found very odd about the story as well is Vevo’s first response (or rather that of an employee) to OurMine’s initial contact informing them about the breach. It seems strange that someone who I would assume is in a position in the IT or security department would be so immediately dismissive of a message notifying them of a breach, Clearly, it was something worth looking into and should have been treated with more seriousness from the outset. This incident will definitely get them to reevaluate their IDS if nothing else.
Amanda M Rossetti says
September 18, 2017 at 5:40 pm
CCleaner, a tool used by many too delete unnecessary filed on their Windows computer and keep it running smoothly, was infiltrated with malware. Piriform, the company that developed CCleaner says they noticed an unknown IP address receiving data from the software on September 12th. They have patched the issue so users need to update CCleaner as soon as possible. The paid version of CCleaner has automatic updates but the free version does not so free version users are most at risk currently. The do not know who perpetrated the attack or when they got in but do know the server the data was being sent to is in the US.
September 18, 2017 at 9:47 pm
That is definitely unfortunate for users of the free version if they don’t follow this kind of news. They could potentially go weeks or months without realizing that there is compromised software on their device. Companies should consider implementing some sort of notification system to communicate with all users of their product in the event of incidents like these. to help ensure patches will be downloaded. I think that would be a good step towards mitigating the security risk posed by these kind of issues.
You must be logged in to post a comment.