Experts found 125 new flaws in SOHO routers and NAS devices from multiple vendors

Researchers discovered many flaws in over a dozen small office/home office (SOHO) routers and network-attached storage (NAS) devices. Security experts have discovered multiple vulnerabilities in over a dozen small office/home office (SOHO) routers and network-attached storage (NAS) devices. The research is part of a project dubbed SOHOpelessly Broken 2.0 conducted Independent Security Evaluators (ISE). In […]

The post Experts found 125 new flaws in SOHO routers and NAS devices from multiple vendors appeared first on Security Affairs.

September 17, 2019
Read More >>

Making hostapd work on Realtek 8812au?

Hi all,

I have a nice Asus RT8812au dongle lying around that I want to have some fun with. Unfortunately, it seems like every time I try to launch a MitM attack using either Fluxion or Airgeddon, hostapd fails to initialise the driver and crashes. Turns out that ‘stock’ hostapd doesn’t work with certain Realtek chipsets, which needless to say I’m less than thrilled about, and am now looking for a solution for.

I’ve been trawling around on github and have been reading about people having mixed success trying a patched build for Realtek, or a different driver that’s supposed to work with the nl80211 interface. Now before I try to reinvent the wheel by wrapping my head around the delightful subjects of source builds, kernel headers etc, has anyone here made any headway on making this work?

submitted by /u/tresslessone
[link] [comments]

September 17, 2019
Read More >>

Fraudulent purchases of digitals certificates through executive impersonation

Experts at ReversingLabs spotted a threat actor buying digital certificates by impersonating legitimate entities and then selling them on the black market. Researchers at ReversingLabs have identified a new threat actor that is buying digital certificates by impersonating company executives, and then selling them on the black market. The experts discovered that digital certificates are then […]

The post Fraudulent purchases of digitals certificates through executive impersonation appeared first on Security Affairs.

September 17, 2019
Read More >>

Any vigilantes out there willing to toy with a scammer posing as an employer?

I was recently on Indeed searching for new employment & ran into a fake employer running a check or mule scam. I fell for it at 1st (by believing it) but after searching Reddit I found stories almost verbatim that matched mine & the emails I was receiving from the scammers. Luckily, I used to work for a Financial Institution and was educated on these types of scams so I knew not to deposit a check into my personal account.

I’ve seen these types of scams destroy people’s lives, both in person (when I worked at a bank) and online. The stories on Reddit are heart breaking. Some people get so desperate they want to believe the job prospect is real so they can provide for their families. They target desperate, good hearted people by posing as charities or elderly people. Robbing already unemployed victims of thousands of dollars and ruining their checking accounts. It’s disgusting.

I still have all the emails that I can provide, along with the fake company name. I dont know how to hack, obviously lol But if theres some good vigilante hacker out there that would be interested in toying with these thieves please let me know & I will provide all the info I have.

submitted by /u/AnxiousCucumber7
[link] [comments]

September 17, 2019
Read More >>