research Archives - Page 24 of 37

research

New insider attack steals passwords by reading thermal energy from keyboards

July 6, 2018

After entering a password, your regular computer keyboard might appear to look the same as always, but a new approach harvesting thermal energy can illuminate the recently …

New LTE attacks can reveal accessed websites, direct victims to malicious sites

July 3, 2018

Three new attacks against the LTE 4G wireless data communications technology have been pinpointed by researchers from Ruhr-University Bochum and New York University Abu Dhabi. …

Researchers release app that masks printers’ tracking dots

June 27, 2018

Did you know that nearly all modern color laser printers put tracking patterns of tiny yellow dots on each piece of paper they print? Most printer manufacturers include these …

How criminals abuse IDNs to conduct malicious activities

June 27, 2018

New research from Farsight Security examines the prevalence and distribution of IDN lookalike domain names, also called homographs, over a 12-month period with a focus on 466 …

Underground vendors can reliably obtain code signing certificates from CAs

June 26, 2018

More and more malware authors are switching to buying new, valid code signing certificates issued by Certificate Authorities instead of using stolen (compromised) ones, …

Inferring Internet security posture by country through port scanning

June 20, 2018

In this podcast, Tod Beardsley, Director of Research at Rapid7, talks about the recently released National Exposure Index, which aims to better understand the nature of …

3,000+ mobile apps leaking data from unsecured Firebase databases

June 20, 2018

Appthority published research on its discovery of a new HospitalGown threat variant that occurs when app developers fail to require authentication to Google Firebase …

Researcher hacks smart fingerprint padlock in mere seconds

June 14, 2018

The Tapplock one “smart” padlock, which received many rave reviews by tech-focused news sites and YouTubers, can be forced to open in under two seconds with a …

Vulnerable ship systems: Many left exposed to hacking

June 7, 2018

Pen Test Partners’ Ken Munro and his colleagues – some of which are former ship crew members who really understand bridge and propulsion systems – have been …

Are attackers harnessing your Redis server?

June 1, 2018

Earlier this year security researchers warned about vulnerable Apache Solr, Redis, and Windows servers hit with cryptominers. Imperva now says that that are still too many …

Will GDPR be the death of WHOIS?

May 31, 2018

Two cybersecurity and privacy attorneys recently argued that the General Data Protection Regulation (GDPR) will interfere with the availability of the WHOIS database and will …

Attacking hard disk drives using ultrasonic sounds

May 30, 2018

Another group of researchers has demonstrated that hard disk drives (HDDs) can be interfered with through sound waves, but they’ve also shown that ultrasonic signals …

research

New insider attack steals passwords by reading thermal energy from keyboards

New LTE attacks can reveal accessed websites, direct victims to malicious sites

Researchers release app that masks printers’ tracking dots

How criminals abuse IDNs to conduct malicious activities

Underground vendors can reliably obtain code signing certificates from CAs

Inferring Internet security posture by country through port scanning

3,000+ mobile apps leaking data from unsecured Firebase databases

Researcher hacks smart fingerprint padlock in mere seconds

Vulnerable ship systems: Many left exposed to hacking

Are attackers harnessing your Redis server?

Will GDPR be the death of WHOIS?

Attacking hard disk drives using ultrasonic sounds

Don't miss

3 business application security risks businesses need to prepare for in 2023

Researchers release PoC exploit for critical Windows CryptoAPI bug (CVE-2022-34689)

Attackers use portable executables of remote management software to great effect

How businesses can bolster their cybersecurity defenses with open source

ChatGPT is a bigger threat to cybersecurity than most realize