10Fold- Security Never Sleeps- 99

By the 10Fold Security Team

Hating the Wait Just Got Worse

Hacking into 911? A new found flaw could take low life hackers another step lower….

We all despise bad hold music—but that might ring especially true if you’re on hold after suffering a concussion, ingesting poison or requiring stitches.  If you thought getting through to emergency operators was like pulling teeth before, a new found mobile telephony flaw could take long wait times to a whole new level.

Recently researchers found a way to effectively disable the 911 emergency system across an entire state by launching what’s known as a telephony denial of service attack against 911 call centers by infecting mobile phones to make bogus emergency calls unbeknownst to their owners. Would hackers really do this? Maybe not, but it is possible, and that’s a scary thought when these services are so vital to thousands of people every day.

Luckily there are several countermeasures being considered, one of which would give carriers the option to forego servicing customers that aren’t attached to a particular customers’ plan. Many often use phones without a service plan to place untraceable or prank calls, and can be used to overflow emergency systems as well. The current FCC proposal reinstates the option for carriers to refuse to process these calls, cutting significantly the risk of system overload.

Hacker for Hire Group Earns $600k

Apparently it pays to play the hacking game.

Israeli hacking group ‘vDOS’ has reportedly been making large sums of cash from worldwide customers over the last few years. The hackers offer monthly ‘service plans’ that vary on the strength of the attack that each customer chooses. After payment these hackers attack a chosen website, knocking it offline for various amounts of time.

The news comes after the vDOS website itself was hacked by competitor hacking service PoodleStresser. This left the site vulnerable for enough time for valuable records to be observed, including their financial accounts. Over $600,000 was made by the group with over 150,000 different customers enlisting their services.

Xen’s in the Xen Project? Not Anymore.

New Xen Project updates fix several major problems.

Software malfunctions that allow hackers to enter into the Xen Project’s virtual machines has been patched, reassuring users their experience is protected. Xen Project customers include cloud computing providers and private server hosts.

The issues affecting Xen’s technology ranged from foreign OS users to raise their access status to host, effectively enabling themselves to become a host to prohibiting nearly all foreign code executions.

Would-Be USB Thieves Are in for a Shock

New device will fry unknown computers.

This recently announced gadget from USBKill.com will release 200 volts of electricity into an unknown computer attempting to access its content in a matter of seconds. The device was created to ensure information security in a method the company refers to as ‘juice-jacking’; AKA frying a would be information thief or hacker computer if they lack the proper authorization to tap into the files stored on the USB drive.

Remember kids, USBKill.com ensures that their product is safe and reliable, but urges those to always keep in consideration that the USB Kill Stick 2.0 is “a high-voltage device — it is not a toy — and is only intended for responsible adults.”