Hotel reservation platform leaked user data from top online booking sites

By Waqas The list of online booking sites affected by the breach includes some of the top industry giants including Booking.com. This is a post from HackRead.com Read the original post: Hotel reservation platform leaked user data from top online booking sites...

Google reveals details on active vulnerability affecting Windows 10, 7

By Waqas Google Project Zero has disclosed a Windows 0day vulnerability that lets attackers to escape Chrome sandboxes and run malware on Windows. This is a post from HackRead.com Read the original post: Google reveals details on active vulnerability affecting Windows 10, 7...

Hackers exploit VPN, Windows flaws to influence US elections

By Sudais Asif According to CISA, these Windows flaws are centered around Fortinet FortiOS Secure Socket Layer SSL VPN and MobileIron platform. This is a post from HackRead.com Read the original post: Hackers exploit VPN, Windows flaws to influence US elections...

Brave Browser enters dark web with its own Tor Onion service

By Deeba Ahmed Now Brave browser pages will be accessible on the Dark Web via the Tor gateway. This is a post from HackRead.com Read the original post: Brave Browser enters dark web with its own Tor Onion service...

Shopify Sufferd Data Breach Because of “Rogue” Employees

By Deeba Ahmed Shopify has blamed 2 of its support team members for stealing customer data from 200 merchants This is a post from HackRead.com Read the original post: Shopify Sufferd Data Breach Because of "Rogue" Employees...

Critical vulnerability allowed hackers to hijack Firefox Android browser

By Waqas Mozilla fixed a bug that could have let attackers hijack any Firefox Android browser sharing the same Wi-Fi network. This is a post from HackRead.com Read the original post: Critical vulnerability allowed hackers to hijack Firefox Android browser...

Database mess up leaks 882 GB of ecommerce & dating sites data

By Sudais Asif A misconfigured Elasticsearch server is responsible for exposing data amounting to more than 370 million records. This is a post from HackRead.com Read the original post: Database mess up leaks 882 GB of ecommerce & dating sites data...

Hackers breach e-commerce websites operated by Warner Music Group

By Zara Khan WMG hasn’t disclosed the number of websites compromised or how the hackers accessed such critical information. This is a post from HackRead.com Read the original post: Hackers breach e-commerce websites operated by Warner Music Group...

Google vulnerability allowed sending spoofed emails with Gmail ID

By Sudais Asif Google fixed the vulnerability after the security researcher ended up disclosing its technical details online. This is a post from HackRead.com Read the original post: Google vulnerability allowed sending spoofed emails with Gmail ID...

AI firm exposes 2.5 million sensitive medical records online

By Zara Khan The data also includes records belonging to victims of auto-related incidents. This is a post from HackRead.com Read the original post: AI firm exposes 2.5 million sensitive medical records online...

YouTube deletes 2 million channels and 51 million videos over scams

By Sudais Asif Previously YouTube was accused of not taking any action again growing malware and cryptocurrency-related scams. This is a post from HackRead.com Read the original post: YouTube deletes 2 million channels and 51 million videos over scams...

EncroChat encrypted communication provider quits after malware attack

By Waqas Encrypted communication network EncroChat has announced to shut down its services for good. This is a post from HackRead.com Read the original post: EncroChat encrypted communication provider quits after malware attack...

8Belts exposes personal data of 100,000 e-learners globally

By Deeba Ahmed 8Belts database was hosted on a misconfigured Amazon Web Services AWS S3 bucket. This is a post from HackRead.com Read the original post: 8Belts exposes personal data of 100,000 e-learners globally...

Alleged data of 47.5 million Truecaller Indian users sold online

By Sudais Asif Truecaller has something to say about the breach. This is a post from HackRead.com Read the original post: Alleged data of 47.5 million Truecaller Indian users sold online...

New nasty Android EventBot malware infects devices by evading 2FA

By Sudais Asif Another day, another Android malware but this one evades detection by bypassing 2FA. Here's how... This is a post from HackRead.com Read the original post: New nasty Android EventBot malware infects devices by evading 2FA...

Critical vulnerabilities found in popular Password Managers

By Sudais Asif In a study conducted by researchers from the University of York, 5 password managers were analyzed out of a total sample size of 19 in order to find vulnerabilities. This is a post from HackRead.com Read the original post: Critical vulnerabilities found in popular Password Managers...

Watch as virtual reality helps mom meet her deceased daughter

By Waqas The team used photogrammetry, virtual reality, and motion capture to create the daughter who passed away in 2016. This is a post from HackRead.com Read the original post: Watch as virtual reality helps mom meet her deceased daughter...

Hackers can steal data from air-gapped PC using screen brightness

By Sudais Asif Air-gapped computers represent one of the highest security measures one can take to secure a particular system but... This is a post from HackRead.com Read the original post: Hackers can steal data from air-gapped PC using screen brightness...

Hackers now use web skimmers to steal credit card data

By Sudais Remember, in the usual scenario, cybercriminals use skimmers to steam card data from ATM and gas stations. This is a post from HackRead.com Read the original post: Hackers now use web skimmers to steal credit card data...

Researchers exploit Vein-based authentication system using a wax hand

By Waqas Biometric authentication is currently a widely used option for maintaining the security of devices and systems. With the emergence of vein-based authentication, biometric verification has moved beyond facial recognition and fingerprints. Vein-based authentication involves scanning of the...

Amazon sent 1,700 audio recordings of Alexa user to a stranger

By Waqas An Amazon customer in Germany under the European Union data protection law called GDPR General Data Protection Regulation requested the company to send all the data it stored on him but little did he know he was about to get his hands on a trove of 1,700 audio recordings of a stranger...

DuckDuckGo study claims Google Incognito searches are not private

By Waqas Google offers customized search results even in Incognito Mode, study. DuckDuckGo claims that Google’s search results aren’t just based on your location data and previous searches normally but also when you are logged out or browsing in incognito mode. It’s a fact that offering...

Hackers conducting botnet attacks through 20k hacked WordPress sites

By Uzair Amir A newly published research from Defiant, a WordPress security firm, reveals that there is a botnet hunting for WordPress sites using over 20,000 already compromised WordPress sites. As the new sites are infected, these automatically become part of the bot army and start acting on th...

Shocking: Hackers using Googlebots in cryptomining malware attacks

By Waqas Hackers are abusing Googlebot servers to deliver malicious payloads. Last year, HackRead exclusively reported on how hackers were using Google Adwords and Google Sites to spread malware. Then came another shocking research from Cisco Talos exposing how hackers exploited Google Search...

Hackers behind Mirai botnet to avoid jail for working with the FBI

By Waqas Mirai has been known as one of the most powerful botnets comprised of millions of hacked Internet of Things IoT devices including routers, digital video recorders DVRs and security cameras. Mirai was also used by hackers to carry out one of the largest DDoS attacks on the servers of DynD...

Canadian town forced to pay Bitcoin after nasty ransomware attack

By Uzair Amir The town of Midland, Ontario, Canada, has decided to pay cybercriminals after its servers were targeted and infected with a nasty ransomware on Saturday, September 1, at approximately 2 a.m. The total amount of ransom payment has not been disclosed but the demand from cybercriminals...

Google and MasterCard will track your retail spending under a secret deal

By Waqas Google and MasterCard have jointly cut an ad deal to track your retail transactions. So far, we only knew that Google can track out online shopping preferences as we clicked on ads. However, this is quite surprising that it can now keep track of our retail transactions history from...

Faxploit: Hackers can use Fax machines to inject malware into a targeted network

By Waqas Think twice before sharing your fax number with someone. Many corporations provide their fax number in the contact information page on the websites. After all, it is considered completely harmless to share fax number with other information like the email address or phone number. However,...

Security Trends to Watch Out for in 2018

By Uzair Amir There are many threats in the world, meaning business owners, This is a post from HackRead.com Read the original post: Security Trends to Watch Out for in 2018...

You are not alone Facebook and Instagram are down for many

By Carolina You are not alone, Facebook and Instagram are down for This is a post from HackRead.com Read the original post: You are not alone Facebook and Instagram are down for many...

Attackers Exploit Oracle WebLogic Flaw to Mine $266K in Monero

By Waqas Another day, another Monero cryptomining campaign and this time attackers exploited This is a post from HackRead.com Read the original post: Attackers Exploit Oracle WebLogic Flaw to Mine $266K in Monero...

Chrome Extension with 105,000 installs is a Cryptocurrency Miner

By Waqas Archive Poster extension for Chrome browser is being currently used by 105,000 This is a post from HackRead.com Read the original post: Chrome Extension with 105,000 installs is a Cryptocurrency Miner...

Spoofed Emails from Supposedly Corporate Printer Vendors Install Backdoor

By Waqas Corporate printers and scanners related emails are quite common in This is a post from HackRead.com Read the original post: Spoofed Emails from Supposedly Corporate Printer Vendors Install Backdoor...

Edward Snowden’s Haven app turns your laptop into a security system

By Asad Gilani Most sensitive users of technology, especially those in journalism and This is a post from HackRead.com Read the original post: Edward Snowdens Haven app turns your laptop into a security system...

“Eavesdropper” Flaw Exposes Millions of Call, Texts and Recordings

By Uzair Amir Eavesdropper is a dangerous new vulnerability identified by researchers from This is a post from HackRead.com Read the original post: Eavesdropper Flaw Exposes Millions of Call, Texts and Recordings...

Police Seize Dark Web Shop Pygmalion, Access User Data from 7K Orders

German police seized the dark web shop Pygmalion, gaining access to customer data linked to over 7,000 drug…...

Booking.com Phishing Scam Uses Fake CAPTCHA to Install AsyncRAT

Fake Booking.com emails trick hotel staff into running AsyncRAT malware via fake CAPTCHA, targeting systems with remote access…...

Oracle Denies Breach Amid Hacker’s Claim of Access to 6 Million Records

Oracle denies breach claims as hacker alleges access to 6 million cloud records. CloudSEK reports a potential zero-day exploit affecting 140,000 tenants...

Belsen Group Leaks 15,000+ FortiGate Firewall Configurations

FortiGate firewall leak exposes 15,000+ configurations, impacting organizations globally. The actor behind the leak is Belsen Group. Learn…...

Thousands of UEFA Customer Credentials Sold on Dark Web

Cybercriminals targeting Euro 2024 fans & organizers! Phishing scams, illegal content sites, malware-laced apps & ticket fraud threaten the game. Learn how to protect yourself & ensure a safe Euro 2024 experience...

Hackers Leak 221,470 Users’ Data in “Tech in Asia” News Outlet Breach

A data breach at Tech in Asia has exposed the personal information of 221,470 users. Learn more about…...

Windows Apps Vulnerable to Command Injection via “BatBadBut” Flaw

By Deeba Ahmed Critical 'BatBadBut' Flaw in Windows Lets Hackers Inject Commands Patch Now! This is a post from HackRead.com Read the original post: Windows Apps Vulnerable to Command Injection via "BatBadBut" Flaw...

Fake LastPass Password Manager App Lurks on iOS App Store

By Waqas Remember, it is LastPass Password Manager, not LassPass Password Manager! This is a post from HackRead.com Read the original post: Fake LastPass Password Manager App Lurks on iOS App Store...

6 FinOps Principles and Best Practices

By Owais Sultan FinOps holds the idea that businesses can reach their desired peak performances without cloud wastages. Read here to… This is a post from HackRead.com Read the original post: 6 FinOps Principles and Best Practices...

Google Reveals ‘Reptar’ Vulnerability Threatening Intel Processors

By Deeba Ahmed Intel CPU Vulnerability Impacts Multi-Tenant Virtualized Environments. This is a post from HackRead.com Read the original post: Google Reveals Reptar Vulnerability Threatening Intel Processors...

Domain Squatting and Brand Hijacking: A Silent Threat to Digital Enterprises

By Waqas Domain squatting can lead you to malicious websites, and it might be too late to realize what actually happened. This is a post from HackRead.com Read the original post: Domain Squatting and Brand Hijacking: A Silent Threat to Digital Enterprises...

How To Make Drupal Migration Successful: 6 Useful Tips

By Owais Sultan As of 2023, there are over 1.7 million websites using Drupal, underscoring the significance of acquiring Drupal tips… This is a post from HackRead.com Read the original post: How To Make Drupal Migration Successful: 6 Useful Tips...

LEGO Marketplace BrickLink Hacked? Website Down Amid Unusual Activity (Updated)

By Deeba Ahmed BrickLink confirms probing into unusual activity. This is a post from HackRead.com Read the original post: LEGO Marketplace BrickLink Hacked? Website Down Amid Unusual Activity Updated...

Lazarus Group uses KandyKorn macOS malware for crypto theft

By Deeba Ahmed Another day, another malware operation by the infamous Lazarus group targeting blockchain engineers and crypto users. This is a post from HackRead.com Read the original post: Lazarus Group uses KandyKorn macOS malware for crypto theft...

Iran’s MuddyWater Group Targets Israelis with Fake Memo Spear-Phishing

By Deeba Ahmed MuddyWater aka Mango Sandstorm and Static Kitten is a cyberespionage group that's believed to be active since 2017. This is a post from HackRead.com Read the original post: Irans MuddyWater Group Targets Israelis with Fake Memo Spear-Phishing...