Follow Slashdot blog updates by subscribing to our blog RSS feed


Forgot your password?
Check out the new SourceForge HTML5 internet speed test! No Flash necessary and runs on all devices. ×

Submission + - Hackers pop 6000 sites on active 18-month carding spree (

mask.of.sanity writes: Hackers have installed skimming scripts on more than 6000 online stores and are adding 85 each day in a wide-scale active operation that may have compromised hundreds of thousands of credit cards. The malware is infecting stores (full list) running vulnerable versions of the Magento ecommerce platform, and also compromised the US National Republican Senatorial Committee store.

Submission + - Security analyst says Yahoo!, Dropbox, LinkedIn, Tumblr all popped by same gang (

mask.of.sanity writes: Five hackers are said to be behind breaches totalling up to a staggering three billion credentials from some of the world's biggest tech companies including the 2014 breach of Yahoo! that led to the loss of 500 million credentials .

The hacks are attributed to the so-called Group E, a small Eastern European hacking outfit that makes cash breaching companies and selling to buyers including nation states.

Submission + - Hacker takes down CEO wire transfer scammers, sends their Win 10 creds to the co (

mask.of.sanity writes: A penetration tester is hacking business email scammers compromising their Microsoft accounts and sending the criminal's information to police. The scammers, or whalers, are responsible for causing billions of dollars of damage by tricking business into wiring funds to bank accounts.

Submission + - Mysterious sudden demise of world's most dangerous exploit kit Angler is solved (

mask.of.sanity writes: On June 7, Angler, possibly history's most advanced financially-driven exploit kit went silent and nobody knew why. Now Kaspersky's lead intelligence researcher has revealed it was the progeny of some 50 arrested hackers known as the Lurk group. The report is the culmination of some six years of research and bookends the mysterious demise of one of the biggest threats to end users on the internet.

Submission + - Inside the BlackHat Las Vegas NoC where even the Zeus trojan is cool (

mask.of.sanity writes: Neil Wyler and Bart Stump are responsible for managing what is probably the world’s most hostile wireless network. They are part of a team of 23 who run the network operations centre at the Black Hat hacking conference in Las Vegas taking place this week, and reveal how they need to loosen their normally strict defensive rulebooks for the conference networks to prevent only the worst attacks from taking place.

Submission + - Screen overlays, accessibility features, twin tools of modern Android malware (

mask.of.sanity writes: Screen overlay functions and accessibility features are valuable tools to compromise modern Android operating systems including Android version 5 Lollipop and version 6 Marshmallow. The functions can be exploited to fully compromise phones when paired with clever social engineering tricks.

Submission + - LastPass accounts can be 'completely compromised' when users visit sites (

mask.of.sanity writes: A dangerous zero-day vulnerability has been found in popular cloud password vault LastPass, which can completely compromise user accounts when users visit malicious websites. The flaw is today being reported to LastPass by established Google Project zero hacker Tavis Ormandy who says he has found other "obvious critical problems".

Submission + - Australia's SmartRider public transport cards popped by student researchers (

mask.of.sanity writes: University students in the Australian city of Perth found and ahref exploited severe holes to rewind travel charges incurred using the city's SmartRider public transport smart card. One has been charged after the research was considered an act of fraud, despite that the academics covered the $18 in false recharges.

Submission + - Researchers defeat Google, Facebook CAPTCHAs in automated attacks (

mask.of.sanity writes: Google's and Facebook's CAPTCHA services have been defeated in research that successfully designed an automated system to solve the human verification challenges. Their proof-of-concept attacks detailed in a paper had a 70.78 percent CAPTCHA-cracking success rate against 2235 CAPTCHAs, with an average running time of 19.2 seconds. It could also be applied to other CAPTCHA schemes including that used by Facebook, the trio says, with a higher accuracy of 83.5 percent.

Slashdot Top Deals

"Probably the best operating system in the world is the [operating system] made for the PDP-11 by Bell Laboratories." - Ted Nelson, October 1977