Friday, October 9, 2015

A rival company would have stolen the Uber databases

It’s as old as the first network, but is still happening and many times we don’t realize when a company is attacked. We talk about the fights between rival companies, like the attacks of Denial of Services to incapacitate the customer service or the robbery of confidential information. This would have happened in Uber, according to a recent research we'll talk about. We'll also talk about a dangerous malware which is stealing credentials in the Cisco virtual networks, the small fortune paid by Microsoft to a hacker and a tool for web administrators to find out if their servers in the cloud are showing sensible information.

In May last year someone stole the database of the Uber company, which kept 50.000 drive licenses from their users. Some of them were sold in the Dark Net. Uber started a research which has just finished now, where an IP direction was tracked to a rival company, Lyft, concretely to its CTO, who has denied everything.

Attack to Cisco VPNs 

We tackle now an attack which is happening now: the theft of user’s credentials of virtual private networks. Unknown attackers are infecting VPNs of Cisco Systems to install backdoors which take all the names and password of anybody who log in the corporatives networks used by these devices. At least 12 infections have been detected but they suspect that the real number is much bigger.

I've read your Hotmail 

Another interesting attack is the one by Wesley Wineberg, a security researcher from the company Synack, to enter in the accounts, what once was Hotmail. Wineberg found an elegant and easy way to do it, which implied creating an app, called Evil App, and force the victim to visit a page, with nothing to do there, only entering. Microsoft has payed him a $24.000 reward for being legal and warn about the failure.

IPs in the cloud

We finish with a present to play this weekend: a new tool which will delight the system and networks administrators, CloudPiercer, that automatically tests which sensible information are showing our web servers, like the IP address. The interest is not trivial: 70% of the protected domains of Security Providers based on the Cloud (CBSP) are showing their real IPs. 

We wish our readers a good weekend and we summon them to visit us next Sunday, when we'll publish an interview with one of the most veteran hackers from Spain: Ramón Martínez, also known as Rampa, his war name.  


Post a Comment