eLearnSecurity Blog

Blog

$1 Million Stolen Using Dyre Wolf Malware + Social Engineering Tactics

dyre-wolf-attack

Hackers have stolen millions from various enterprises in an attack using a variation of the Dyre Wolf Malware plus some Social Engineering tactics. These attackers have  come up with a sophisticated method that consists of spear phishing, malware and DDOS attacks during this crime.

Tags: , , , , ,

Read more

British Airways Executive Club Accounts Suffer from Cyberattack

british airways cyberattack

A few members of the British Airways Executive Club complained about their points from their accounts getting stolen. Some of these points were used to book a hotel room and others had all their points wiped out. According to a report from BBC, this issue was dated back at least 2 weeks.

Tags: , , ,

Read more

Web Vulnerability Discovered in Hilton Hotel Site

hilton honors web vulnerability security

A security flaw was discovered in the Hilton.com website that allowed an attacker to gain access to a client’s account simply by knowing or guessing the account number. Bansec security firm found the flaw at the Hilton HHonors page wherein an attacker could hijack any other account just by changing the site’s HTML content to reflect the other account number, then reloading the page.

Tags: , , , , , , , , ,

Read more

GISEC 2015 in Dubai

gisec 2015

eLearnSecurity will be at the Dubai World Trade Center for the Gulf Information Security Expo & Conference (GISEC) 2015 event on April 26-28, 2015. This is the 3rd edition of the Middle East and Africa’s Essential I.T. security knowledge platform that assembles industry, government and thought leaders to tackle threats, issues and countermeasures in the MENA region.

Tags: , , , ,

Read more

Join the Fight Against Web Application Vulnerabilities!

web application security

Web Applications are under constant attack from criminals – mostly with very little defense! The demand for skilled warriors to fight against these vulnerabilities is rapidly increasing. It’s time to stand up and fight!

Imagine that you have the knowledge to test web applications for vulnerabilities, being an expert in XSS and SSL Injections, mastering burp-suite, knowing all about HTML5 attacks and how to bypass filters and WAF techniques.

Tags: , , , , , ,

Read more

Top 5 Hackmes in January 2015

jan 2015 hackmes

We rounded up the Top 5 Hackme challenges started by users in January 2015. Based on the list, we have a new entry which is the Simple Directory Traversal 2 Challenge.

Hack.me is a free-for-all virtual lab on web application security that offers various fun and challenging scenarios to test your penetration testing skills.

Tags: , ,

Read more

Go to top of page