Hacking School Computers to Change Grades

Posted on April 6, 2018by adezero

Hackers recently targeted a Virginia high school in order to change the grades of multiple students. The hackers were able to obtain access to teacher accounts when they sent out a phishing link. The phishing link was included inside an email that pretended to be from the “Oaktown High School’s Honor Council” dedicated to “honor and integrity”. The link then directed the user to a malware site, which downloaded key logger software onto the computer.

A key logger records strokes on the user’s keyboard, including passwords and other sensitive data. That information is captured by the hacker, giving them the ability to access the user’s accounts.

Hacked School System

The Virginia high school hackers used their access to make several changes in the school system:

After the emails began circulating, there were multiple cases of grade changes being requested, as well as students’ passwords being changed and emails being sent through remote log-ins, according to the search warrant. The court document does not say whether the hackers were successful in changing any grades, and Fairfax County Public Schools officials declined to say. –The Washington Post

Hacking Grades Could Result in Heavy Charges

Law Enforcement haven’t found the high school hackers, but if they do, charges could be steep.

There was a recent case of a University of Georgia student who hacked into his professor’s computer in order to alter his grades. He was charged with over 70 counts of computer forgery and computer trespassing.

According to the Washington Post, these types of grade-changing hacks are increasing. There are also services for hire to help students change their grades through hacking, as well as YouTube tutorials.

Photo credit: Katy Levinson

News Social Media

Instagram wants to Fix the Mental Health Problems They’ve Caused

Posted on April 5, 2018by adezero

Social media is known to have a negative impact on mental heath. Spending too much time on social networks leads to depression, anxiety and addiction problems. Instagram is often criticized for causing negative body issues, especially in young teens. A 2017 survey found that the image sharing platform gave teens feelings associated with “high levels of anxiety, depression, bullying and FOMO, or the “fear of missing out.” –Time

Instagram Hires a “Wellbeing Team”

As a response to the reports that Instagram was affecting the mental health of young people, the company introduced a “wellbeing team.”

A senior Instagram executive said that the mental health of the users is a top priority. Part of the goal set for the team is to combat bullying, harassment, spam and abuse. Other than that, it’s pretty unclear how they will help users who are struggling with body image issues.

How do you fight “Fake”?

Often, Instagram photos are polished to make people look more attractive and food look more delicious. This creates a sense of inadequacy for the people viewing the pictures. The truth is, most of these images don’t depict real life – they are filtered embellishments. In fact, that’s what Instagram is mostly based on, filters. What you’re seeing isn’t real. Will the “wellbeing team” give disclaimers when photos are edited? It’s doubtful they would betray their content creators in that way, or else they wouldn’t have anyone left to post on the platform.

Furthermore:

“this problem stems from a larger, systemic cultural issue — where depression and other mental health issues remain under-addressed, and in which how you look, and how well you fit into cultural expectations of “success,” are given more credence than actual happiness.” –Futurism

Maybe Instagram intends to provide psychiatric counseling to its users who feel inadequate. Perhaps they could also prevent your girlfriend from continuously ‘hearting’ that guy’s selfies who she told you not to worry about.

Until then, I’ll stick to following only meme accounts.

Photo Credit: Md saad andalib

Hacking News Social Media

YouTube Staffer Live Tweets Shooting, then gets his Account Hacked

Posted on April 3, 2018by adezero

A YouTube staffer was live-tweeting about the active shooting when it happened at the YouTube headquarters earlier today. Shortly after, his Twitter account was briefly hacked.

Earlier today, a woman open fired at the YouTube headquarters and tragically shot 3 people before taking her own life. Vadim Lavrusik, a product manager at YouTube, was live tweeting the incident as it was happening.

Active shooter at YouTube HQ. Heard shots and saw people running while at my desk. Now barricaded inside a room with coworkers.

— Vadim Lavrusik (@Lavrusik) April 3, 2018

Not an hour later, Lavrusik’s account was breached by hackers.

At about 2:10 p.m., after Lavrusik tweeted that he was safe and evacuated, a new tweet came up from the account, writing, “PLEASE HELP ME FIND MY FRIEND I LOST HIM IN THE SHOOTING,” with a Flipboard URL linking to a photo of KEEMSTAR, a YouTube personality.

Three minutes after that tweet, another post came in saying, “my name is so gay honestly.” -CNET

looking like someone hacked vadim’s account, per last two tweets pic.twitter.com/Hy66RxAWXj

— ಠ_ಠ (@MikeIsaac) April 3, 2018

Twtter’s @Jack was alerted to the issue and promptly restored his account.

Three people have been reported to be injured in the shooting, they have been taken to the hospital.

Data Breaches News Security

Panera Bread Ignored Data Breach Warning, Said it was a “Scam”

Posted on April 3, 2018by adezero

Panera Bread has suffered a major data breach, affecting potentially 7 million customers. The data is said to include names, email addresses, and credit card information. What’s worse – the data could have been crawled and indexed with simple automated tools.

This wasn’t news to those at the top at Panera Bread. Last summer, a security researcher told Panera Bread that their website was exposing this sensitive data. When Panera was made aware of the flaw, they dismissed it as a scam or sales pitch. After months of the flaw continuing to be exposed and unpatched, the security researcher decided to go public with evidence of the vulnerability.

“I am not exaggerating when I say you have a massive sensitive data exposure issue,” he said, “and I’d simply like you to be made aware of it so you can quickly resolve it.” -researcher Dylan Houlihan (in response to Panera Bread maintaining that he was giving a sales pitch).

Panera Bread is now downplaying the security of the breach, telling Fox News they have secured the breach and only ten thousand records were exposed. Krebs on Security is not buying it, especially considering Panera’s commercial division which serves countless catering companies which may run on the same software.

As the disclosure shitshow that describes @panerabread response to their breach indicates, most companies respond to breach notifications like they would a stranger telling them they have a cold sore on their lip. If you get no love, please ping krebsonsecurity @ gmail dot com

— briankrebs (@briankrebs) April 3, 2018

As of this writing, Panera has not made any statement on their website (it was recently taken down) nor on Twitter about the breach.

Photo Credit: Mike Mozart

News Privacy Smart Phones Technology

What is Alphonso? Game Apps Use Smartphone Mics to Track Users

Posted on December 29, 2017by adezero

Gaming apps are widely used on many smart phones as a way to pass the time. Seemingly innocuous, mini games like bowling and pool can be addictive and fun for a variety of users. If you’re not paying close attention, however – you may be giving these apps more permissions than you bargained for.

A company called Alphonso is a service that provides software to app developers known as Automated Content Recognition or “ACR”. This ACR software, once installed, collects data about TV-viewing habits for advertisers by using the smartphone’s microphone. Yes, Alphonso actually listens to the sounds coming from your tv in order to target more relevant ads to you later.

Gaming app developers are using Alphonso in their apps in order to share data with advertisers. They are able to “listen in” in this way because the user gave permission to the app to use the microphone.

From Alphonso’s Privacy Policy for app Developers:

With your permission provided at the time of downloading the app, the ACR software receives short duration audio samples from the microphone on your device. Access to the microphone is allowed only with your consent, and the audio samples do not leave your device but are instead hashed into digital “audio signatures.” The audio signatures are compared to commercial content that is playing on your television, including content from set-top-boxes, media players, gaming consoles, broadcast, or another video source (e.g., TV shows, streaming programs, advertisements, etc.). If a match is found, Alphonso may use that information to deliver more relevant ads to your mobile device. The ACR software matches only against known, commercial audio content and does not recognize or understand human conversations or other sounds.

A big concern is that kids are being “tricked” into downloading these privacy-invading apps because they don’t always understand what they are agreeing to. There are some apps using Alphonso that are directed specifically toward kids. (Engadget)

According to Engadget, Alphonso says that its software doesn’t record human speech and they are in full compliance with the law. Others say that just because it is legal, doesn’t make it any less creepy and maybe is even unethical.

Over 250 games are currently using the Alphonso software.

For those interested, Alphonso does provide a “Mobile Opt-Out Guide” (found here) that will help explain how you can use your mobile device controls to revoke your consent for them to access your microphone.

Photo credit: Esther Vargas – “Smartphones”

Hacking News

Rhino Horn Auction Page is Hacked

Posted on August 12, 2017by adezero

A webpage for a Rhino horn auction in South Africa looks like it has been hacked.

Looks like the rhino horn auction website has been hacked pic.twitter.com/jahtpiTgGz

— Rachael Bale (@Rachael_Bale) August 11, 2017

https://www.theguardian.com/environment/2017/jun/26/rhino-breeder-auction-horns-south-africa-rhinoceros

A breeder planned an auction of rhino horns in South Africa. This is what the Guardian tells us about the auction:

A rhino breeder in South Africa is planning an online auction of rhino horns to capitalise on a court ruling that opened the way to domestic trade despite an international ban imposed to curb poaching.

The sale of rhino horns by breeder John Hume, to be held in August, will be used to “further fund the breeding and protection of rhinos”, according to an auction website.

Hume has more than 1,500 rhinos on his ranch and spends over $170,000 a month on security for the animals, in addition to veterinary costs, salaries and other expenses, the auction website said.

“Each rhino’s horn is safely and regularly trimmed by a veterinarian and capture team to prevent poachers from harming them,” it said, adding that Hume has a stockpile of more than six tonnes of rhino horns.

As of right now it appears that rhinohornauction.com is hacked. The site now reads: “Oops, your website has been seized! Everything on your website and server have been erased! Your lack of common compassion for animals is outrageous and has been dealt with properly. We have downloaded all your credentials and removed your files. Next time, do not run a website that auctions off animals, or we will auction off your data.”

Guess they were not running web hosting security from SiteGround 😉 Looks like the site is back up and running, but for how long?

The twitter account NFAgov is providing some information about the hack.

*Update 8/12/2017, 2pm EST: it looks like the Rhino Horn website is back up and in tact. However, the NFAgov twitter account promises, “they won’t be shortly”

Internet News Piracy

ExtraTorrent Says Goodbye

Posted on May 17, 2017by adezero

Farewell, ExtraTorrent

ExtraTorrent is probably gone for good. Our friends at Torrentfreak gave us the bad news this morning that one of the more popular torrenting sites, ExtraTorrent, has decieded to shut down permanently.

ExtraTorrent Shuts Down https://t.co/ddHCB09v6A pic.twitter.com/An0M4bFtlJ

— TF (@torrentfreak) May 17, 2017

We already recently lost KickassTorrents and Torrentz.eu. Isohunt also shut down a couple of years ago “indefinitely” after years of court battles over copyright issues with the MPAA.

Demonoid has been on and off for years as well.

Demonoid is Still Down, But Not Out https://t.co/s4lvMCy6jp

— TF (@torrentfreak) March 4, 2017

Many of our readers are wondering what will be left?

As of now, The Pirate Bay (thepiratebay.org) still functions, but they have had a rocky ride the last few years – many of the main players have faced raids, prison time and are still tied up in courts. TPB seems to live up to its slogan, however, “The galaxy’s most resilient BitTorrent site“.

ExtraTorrent Closes on Wednesday

The beloved torrent site left us with this message on their home page: “ExtraTorrent has shut down permanently ExtraTorrent with all mirrors goes offline.. We permanently erase all data. Stay away from fake ExtraTorrent websites and clones. Thx to all ET supporters and torrent community. ET was a place to be…. May 17, 2017″

No one knows yet if the contributers to ExtraTorrent are under legal pressure, but it would follow the trend in relation to pirate sites in recent years.

The internet reacts to the loss:

Goodbye #EXTRATORRENT #Extratorrent… you will be missed 😥😥😥😥 pic.twitter.com/iUvcTQ3xi9

— SliveR TwisT🌐 (@S_T_512) May 17, 2017

🙁

Extratorrent.cc is down pic.twitter.com/YpRjJuav5X

— ShadowBabixz (@ShadowBabixz) May 15, 2017

What’s left to do?

“extratorrent has shut down permanently” pic.twitter.com/1vK1JSOQp3

— eilians (@eilians) May 17, 2017

Dumped!

It feels like ET broke up with me without any warning, I thought we’re good girl..#ExtraTorrent pic.twitter.com/GNwu4UxErX

— Briane D. Cepeda (@mariabriane) May 17, 2017

Interesting Theory

You all people paying for Netflix is the reason ExtraTorrent has shut down.

— Haider. (@ZuHaider) May 17, 2017

We’re all struggling bro

Another heart breaking news came.
Extratorrent is no more with us.
RIP#Extratorrent pic.twitter.com/S9CgbqEjyM

— Abhinav Karn (@programmer_abhi) May 17, 2017

Techworm_in has some alternative suggestions:

ExtraTorrent shuts down permanently; Top 3 alternativeshttps://t.co/u2VvZjFaMS pic.twitter.com/67htKfHNrr

— Techworm (@Techworm_in) May 17, 2017

An update from Torrentfreak:

Update: We were informed by SaM that ExtraTorrent’s release group ETRG is gone now. “Ettv and Ethd could remain operational if they get enough donations to sustain the expenses and if they people handling it ready to keep going,” we were told. (Read more…)

Like our Facebook page to get updates as they come in.

Wannacry Ransomware Attack – Updates From Top Sources

Posted on May 17, 2017by adezero

WannaCry? Ransomware Spreads Globally…

A ransomware attack began last week in Europe, targeting thousands of computers running Windows. Ransomware is malicious software that makes it impossible for the user to access their computer files unless they pay a ransom. Ransomware attackers frequently ask to be paid in bitcoin. Often times, even after the ransom is paid, the user still does not regain access to their files. The name of the worm that targets the Windows OS is called Wannacry (or WannaCrypt, WanaCrypt0r 2.0, Wanna Decryptor)

Here are some updates about the Wannacry ransomware attack from some top tech sources as well as clever comments from the internet:

NSA says ransomware was like “fishing with dynamite”

NSA agents say using EternalBlue, the leaked exploit used in WannaCry ransomware, was like “fishing with dynamite” https://t.co/5v8ZZZZvDw pic.twitter.com/oW75jBOPkC

— Mikael Thalen (@MikaelThalen) May 17, 2017

Quick guide on how it all works:

Here's a quick demo on how #WannaCry ransomware works, and how Sophos Intercept X protects against it: https://t.co/GgAaXshxJI pic.twitter.com/Imub1qlwAz

— Sophos (@Sophos) May 16, 2017

More leaks coming….

Hackers behind stolen NSA tool for WannaCry: More leaks coming https://t.co/7WzM00mvMS pic.twitter.com/1mmKimWCd2

— CNET (@CNET) May 17, 2017

Leave Wannacry Hero Alone!

The guy who stopped WannaCry just wants to be left alone https://t.co/V6LtwAf5M3 pic.twitter.com/ImueCHmWqg

— Mashable (@mashable) May 16, 2017

“A stealthy cryptocurrency-mining malware that was also using Windows SMB vulnerability at least two weeks before the outbreak of WannaCry ransomware attacks.”

A Cryptocurrency Mining Botnet had hacked over 150,000 computers using same SMB Exploit weeks before #WannaCry https://t.co/gEhOwYLhN5

— The Hacker News (@TheHackersNews) May 16, 2017

IBM Suggestions to protect yourself from ransomware

4 actions to protect your business from the #WannaCry ransomware attack. Patch, Block, Monitor, Response Plan: https://t.co/Rom89tvxVI pic.twitter.com/Yb6wGdiIkw

— IBM (@IBM) May 17, 2017

Microsoft be like

#Microsoft on #WannaCry attack be like. pic.twitter.com/gK4YrSdAln

— HackRead (@HackRead) May 16, 2017

“The Wannacry Starter Pack”

The “WannaCry” Starter Pack pic.twitter.com/QrNm29dL66

— Malware Unicorn (@malwareunicorn) May 17, 2017

VXShare claims to have access to Wannacry samples

Looking for #wannacry samples? Currently showing 71 in the corpus thanks to generous researchers!

— VirusShare (@VXShare) May 16, 2017

Some Linux users are gloating

Linux user watching #WannaCry ransomeware while attacking windows users #infosec pic.twitter.com/yyDb4i0q2P

— Awais (@Aysh_pk) May 16, 2017

See more news stories like this.

Photo Credit: christiaancolen

News Social Media

2600 Magazine Offers $10K for Access to Donald Trump’s Tax Return

Posted on September 28, 2016by adezero

The Twitter account that represents 2600 Magazine – The Hacker Quarterly says they will offer $10K for first access to Donald Trump’s tax return. They also say that identities will be protected and provide a PGP key.

We are offering $10K for 1st access to @realDonaldTrump's tax return. Identity protected, PGP key at https://t.co/oU079zJ4YV [email protected]

— 2600 Magazine (@2600) September 28, 2016

Twitter users responded with several funny comments:

Assange rn@2600 @realDonaldTrump @wikileaks pic.twitter.com/IyNz2cFbvV

— Eating Machine (@emmajaniejones) September 28, 2016

@2600 Please tell me that when you release it, you'll tell the press that it was obtained by "the hacker known as 4chin"

— John Shade (@John5hade) September 28, 2016

@2600 @realDonaldTrump. How about $10K for Hillary's deleted e-mails?

— Jim (@TypeError_) September 28, 2016

"Hi IRS this is the real actual Donald Trump. I just wanted to make sure that my refund's gonna be YOOOGE"

— r000t (@rootworx) September 28, 2016

There have been many recent attacks on the Democratic National Committee including the Guccifer 2.0/Wikileaks release of DNC emails and more recently a possible hack of some of the party member’s phones. Some say that hackers have been focusing too much on exposing the DNC and not enough on the RNC. Perhaps this is the opportunity they have been waiting for.

2600 has also extended the offer to Trump himself:

Incidentally, we will also pay @realDonaldTrump $10K if he gives us his tax return first. Or anyone in his campaign or family. Fair is fair.

— 2600 Magazine (@2600) September 28, 2016

Hacking News Social Media

Hackers Find Exploit and Reactivate LizardSquad’s Twitter Account

Posted on September 3, 2016by adezero

On September 2, hackers calling themselves “Spain Squad” used an exploit to take control of several previously suspended Twitter accounts. Among these accounts were usernames like @Hitler, @botnet, @LizardSquad and @1337. Twitter re-suspended all of the breached accounts shortly after the hack, but it is unclear whether or not they are still vulnerable to this exploit.

One of the hackers aligned with Spain Squad tweets about reactivated accounts.

“It could be a vulnerability in Twitter’s software, a compromised staff account, or some other explanation. It’s also unclear whether the exploit is still active, or was patched concurrently with the banning of the hijacked accounts.” (Business Insider)

A spokesperson for the hacking group has stated they can do even more than recover old accounts with the exploit they found:

“The new exploit allows Spain Squad to change to suspend active accounts, change a user’s Twitter handle and even take control of active accounts. So far, the group has only demonstrated the ability to recover officially suspended accounts — though all of those have already been re-suspended by the social media company.” (Engadget)

Twitter actively suspends accounts that violate their Terms of Service (TOS). Sometimes these suspensions can be temporary and the user is able to restore their account after acknowledging broken rules and promising not to violate TOS again. Often, the user must delete offending tweets before the account will be restored. Alternatively, a Twitter account can become permanently suspended, which means the account is never to be restored under any circumstances. Restoring access to accounts that were thought to be never again accessible could prove to be profitable for hackers selling screen names that may be valuable. However Spain Squad claims to be non-malicious. Whatever their intent, they were definitely doing some of it for the lulz when they took control of the LizardSquad account: