eLearnSecurity Blog

Archives

Sally Beauty Security Breach – Yet Another Credit Card Attack

credit card breach

Yet another security breach has been reported. US cosmetics retailer Sally Beauty Holdings is investigating a possible attack on its payment systems after a year of experiencing a data breach. Last year (March 2014), the company has reported that hackers have stolen sensitive information from over 280,000 payment cards and have released these details on black market websites.

Tags: , , , , , ,

Read more

18 Year-Old Security Flaw Discovered in All Versions of Windows

redirect to smb

An 18 year-old security flaw has been recently discovered which affects all versions of Windows and lets an attacker steal a victim’s information from some of the products and services in the victim’s network. Cylance cybersecurity firm disclosed the flaw and mentions in a blog post that this was based on a security hole dating back to 1997.

Tags: , , ,

Read more

$1 Million Stolen Using Dyre Wolf Malware + Social Engineering Tactics

dyre-wolf-attack

Hackers have stolen millions from various enterprises in an attack using a variation of the Dyre Wolf Malware plus some Social Engineering tactics. These attackers have  come up with a sophisticated method that consists of spear phishing, malware and DDOS attacks during this crime.

Tags: , , , , ,

Read more

British Airways Executive Club Accounts Suffer from Cyberattack

british airways cyberattack

A few members of the British Airways Executive Club complained about their points from their accounts getting stolen. Some of these points were used to book a hotel room and others had all their points wiped out. According to a report from BBC, this issue was dated back at least 2 weeks.

Tags: , , ,

Read more

Web Vulnerability Discovered in Hilton Hotel Site

hilton honors web vulnerability security

A security flaw was discovered in the Hilton.com website that allowed an attacker to gain access to a client’s account simply by knowing or guessing the account number. Bansec security firm found the flaw at the Hilton HHonors page wherein an attacker could hijack any other account just by changing the site’s HTML content to reflect the other account number, then reloading the page.

Tags: , , , , , , , , ,

Read more

GISEC 2015 in Dubai

gisec 2015

eLearnSecurity will be at the Dubai World Trade Center for the Gulf Information Security Expo & Conference (GISEC) 2015 event on April 26-28, 2015. This is the 3rd edition of the Middle East and Africa’s Essential I.T. security knowledge platform that assembles industry, government and thought leaders to tackle threats, issues and countermeasures in the MENA region.

Tags: , , , ,

Read more

Join the Fight Against Web Application Vulnerabilities!

web application security

Web Applications are under constant attack from criminals – mostly with very little defense! The demand for skilled warriors to fight against these vulnerabilities is rapidly increasing. It’s time to stand up and fight!

Imagine that you have the knowledge to test web applications for vulnerabilities, being an expert in XSS and SSL Injections, mastering burp-suite, knowing all about HTML5 attacks and how to bypass filters and WAF techniques.

Tags: , , , , , ,

Read more

Go to top of page