image source Today (January 19th, 2017),   Mingyu,  a    staff of OnePlus company has published a post to its official OnePlus blog site stated that the hackers injected some malicious scripts  into the company’s payment page code and stolen all credit card data.  However, OnePlus maintains that customers  who used saved credit cards or paid via the “Credit Card via PayPal” and  those who bought OnePlus products via PayPal should not be affected.   According to  Mingyu's statement on the official OnePlus blog --  “We cannot apologize enough for letting  something like this happen. We are eternally grateful to have such a  vigilant and informed the community, and it pains us to let you down.”   “We are working with our current payment  providers to implement a more secure credit card payment method, as well  as conducting an in-depth security audit. All these measures will hel...

What's this vulnerability ? Just one day ago a Github user  taviso  reported a serious vulnerability in Electrum Bitcoin Wallet. This is a very serious security bug which allows an attacker to steal your Electrum wallet seed via a simple browser and java script. The attacker can only steal your seed if you left your wallet unprotected without encrypting it. How does it work ? On the Electrum's  github issue page  he shows how it is possible to steal Electrum wallet seed -- He Installed Electrum 3.0.3 on Windows. Created a new wallet with all default settings. He left the wallet not encrypted with password- the default setting. Visited in Chrome. Now, it's time to guess the right port number. He used JSON RPC server by default. It does use a random port but a website (run by an attacker) can simply scan for the right port in seconds. After a few seconds he succeeded to guesses the right port, and then an alert() appeared with: seed: {"id": 0.7398595...

Yesterday, I got a few twitter notifications where electrum warned about using of "Electron Cash". What is "Electron Cash" ? It's a lightweight HD wallet for "Bitcoin Cash", very likely to "electrum". There is a potential risk of losing your original Bitcoins if you are currently using electrum and if you install both "electrum" and "electron cash" on the same PC. Because, it copies all your "electrum wallet files" into its own directory. And it's too dangerous to use your original "electrum seed" into "electron cash" to import your existing BTC wallets. In addition its binary files are signed with a pseudonym  "Jonald Fyookball".  I'm astonished that why the creator or developer group want to hide their real identities and wanna keep them as anonymous. If a huge amounts of BTC are stolen via "electron cash" then there will be no chance to trace them. Although,...

image credit Is Ethereum is secured platform as Bitcoin ? Probably not. I know a very small about Ethereum. I'm just holding a few amounts of ETH. Today I exchanged $100 SBD from my steemit account to one of my ETH address. Shapeshift said that it was completed but I did not getting the desired amounts. Here is the shapeshift details -- Order Summary: Order Number: e3fe28c6d0 You Deposited: 0.06377304 BTC You Received: 0.50078266 ETH The exchange took 454 seconds Deposit Address: 152EeaUFoYq2uReFJrmfEX6tLRWZHKhRQb Withdraw Address: 0xfb2046386f65d9033ca0f6470b8f0eb17ecdc9ab View on the blockchain. So, I have lost $100 now. Then I tried to send some ETH based tokens (MNE) from my myether wallet to my Livecoin address for exchange. Again I lost 18 MNE worth $180. Here you find the tx :  View on the blockchain. All my ETH wallets are 100% mine, not controlled by any third party. And I have private keys on all my addresses. So, what is actually happened ? Now, I ha...

Samy Kamkar who previously developed many sophisticated hacking tools has recently developed a very strong hacking tool called “Poison Tap”. It’s a very small USB device that works by re-routing all the internet traffic to its own domain and hence accesses cookies. And for this the attacker can access even password protected computer.  This hacking tool evades the following security mechanisms: Password Protected Lock Screens Routing Table priority and network interface Service Order Same-Origin Policy X-Frame-Options HttpOnly Cookies SameSite cookie attribute Two-Factor/Multi-Factor Authentication (2FA/MFA) DNS Pinning Cross-Origin Resource Sharing (CORS) reference : https://www.hackread.com/hacking-tool-bypass-locked-computers-security/ Tags : Hacks, Security, Technology, Cyber Attack, News, Video, Youtube,  This Post Was Published On My Steemit Blog . Please, navigate to steemit and cast a free upvote to help me if you like my post. Fir...

Tags : Malware, Technology, Hacks, Security, Cyber Crime, Cyber Attack, News, Amazing News,  This Post Was Published On My Steemit Blog . Please, navigate to steemit and cast a free upvote to help me if you like my post. First Time heard about Steemit ? Click Here To Know Everything About Steemit 

In my previous post  https://steemit.com/programming/@royalmacro/a-free-open-source-data-encryption-program-for-steemit-users  I share a data encrypton tool with source code, now, today here I share another program, a strong password generator with source code. This program will generate strong, hard-to-guess passwords. I’ll do it by hashing together “domain name”, “login/user id” & “a secure master key”. If you use the same secure master key for every password generations then you do not need to write down or, memorize your generated passwords. When you need your password then repeat the same procedure to re-generate it. If your “domain name”, “login/user id” & “a secure master key” are not different then you will generate the same password. If you use only one secure master key then you have to only memorize your master key, not the passwords. Lets try it ! Step by Step Development : Open a new project in Visual Basic 8. Select “Standard EXE”. ...

image credit What is Locky Ransomware ? The name of this ransomware is LOCKY. What is Locky ? it actually denotes one of the today’s prevalent ransomware families. It was discovered in the mid-February 2016. This file-encrypting epidemic proved to be sophisticated enough to fly under the radar of conventional anti-malware defense. However, Locky is one of the most preferred malicious software used by hackers.  Who Discovered ? Bart Blaze, a very well known reputed security researcher first discovered this type of ransomware attack which is being conducted via Facebook Messenger. Later, Peter Kurse, another security researcher with extensive experience in investigating cyber-crimes confirmed the news to reporters. Bart Blaze wrote in his personal blog :  “As always, be wary when someone sends you just an ‘image’ – especially when it is not how he or she would usually behave”.  And Facebook has released the following statement in response to the discovery...

  image credit 1. Widespread DDoS Attacks The main target of DDoS (Distributed Denial of Service) attacks are the Financial institutions (which companies that have online financial transactions). DDoS Attacks keep their servers & online base services down for several hours or days and causes a huge loss of these victim companies. image credit 2. Cyber Terrorist Attacks Cyber Terrorist Attacks could infiltrate the highest levels of security in government servers & computers, disrupt government operations, bring down the entire Internet, close down the power grid, cause nuclear arms to launch, and so much more. image credit 3. A New Breed of Ransomware Is Looming Ahead Nowadays Ransomware is a very real threat to not only companies but also every individuals around the world. Ransomware is a malware which attacks your PC & then encrypts all your personal & important files. To get your files decrypt back it demands virtual currencies such as Bitcoin....