Lucene search
K
ThnMost viewed

20806 matches found

The Hacker News
The Hacker News
added 2021/10/08 1:41 p.m.65 views

Ransomware Group FIN12 Aggressively Going After Healthcare Targets

An "aggressive" financially motivated threat actor has been identified as linked to a string of RYUK ransomware attacks since October 2018, while maintaining close partnerships with TrickBot-affiliated threat actors and using a publicly available arsenal of tools such as Cobalt Strike Beacon...

6.7AI score
Exploits0
The Hacker News
The Hacker News
added 2021/09/04 7:50 a.m.65 views

Microsoft Says Chinese Hackers Were Behind SolarWinds Serv-U SSH 0-Day Attack

Microsoft has shared technical details about a now-fixed, actively exploited critical security vulnerability affecting SolarWinds Serv-U managed file transfer service that it has attributed with "high confidence" to a threat actor operating out of China. In mid-July, the Texas-based company...

10CVSS0.5AI score0.9116EPSS
Exploits2
The Hacker News
The Hacker News
added 2021/08/11 11:33 a.m.65 views

MSPs and MSSPs Can Increase Profit Margins With Cynet 360 Platform

As cyber threats keep on increasing in volume and sophistication, more and more organizations acknowledge that outsourcing their security operations to a 3rd-party service provider is a practice that makes the most sense. To address this demand, managed security services providers MSSPs and manag...

Exploits0
The Hacker News
The Hacker News
added 2021/07/30 7:36 a.m.65 views

A New Wiper Malware Was Behind Recent Cyberattack On Iranian Train System

A cyber attack that derailed websites of Iran's transport ministry and its national railway system earlier this month, causing widespread disruptions in train services, was the result of a never-before-seen reusable wiper malware called "Meteor." The campaign — dubbed "MeteorExpress" — has not be...

1.1AI score
Exploits0
The Hacker News
The Hacker News
added 2021/04/20 5:33 a.m.65 views

Lazarus APT Hackers are now using BMP images to hide RAT malware

A spear-phishing attack operated by a North Korean threat actor targeting its southern counterpart has been found to conceal its malicious code within a bitmap .BMP image file to drop a remote access trojan RAT capable of stealing sensitive information. Attributing the attack to the Lazarus Group...

0.1AI score
Exploits0
The Hacker News
The Hacker News
added 2021/03/18 1:3 p.m.65 views

How to Successfully Pursue a Career in Malware Analysis

Are you looking to becoming a malware analyst? Then continue reading to discover how to gain the training you need and start a career in malware analysis career. Did you know that new malware is released every seven seconds? As more and more systems become reliant on the internet, the proliferati...

0.1AI score
Exploits0
The Hacker News
The Hacker News
added 2021/01/20 4:59 a.m.65 views

SolarWinds Hackers Also Breached Malwarebytes Cybersecurity Firm

Malwarebytes on Tuesday said it was breached by the same group who broke into SolarWinds to access some of its internal emails, making it the fourth major cybersecurity vendor to be targeted after FireEye, Microsoft, and CrowdStrike. The company said its intrusion was not the result of a SolarWin...

1AI score
Exploits0
The Hacker News
The Hacker News
added 2020/11/25 6:36 a.m.65 views

China's Baidu Android Apps Caught Collecting Sensitive User Data

Two popular Android apps from Chinese tech giant Baidu were temporarily unavailable on the Google Play Store in October after they were caught collecting sensitive user details. The two apps in question—Baidu Maps and Baidu Search Box—were found to collect device identifiers, such as the...

6.8AI score
Exploits0
The Hacker News
The Hacker News
added 2020/06/10 12:59 p.m.65 views

Intel CPUs Vulnerable to New 'SGAxe' and 'CrossTalk' Side-Channel Attacks

Cybersecurity researchers have discovered two distinct attacks that could be exploited against modern Intel processors to leak sensitive information from the CPU's trusted execution environments TEE. Called SGAxe, the first of the flaws is an evolution of the previously uncovered CacheOut attack...

5.5CVSS1.2AI score0.00587EPSS
Exploits0
The Hacker News
The Hacker News
added 2020/05/30 7:56 a.m.65 views

Exclusive – Any Mitron (Viral TikTok Clone) Profile Can Be Hacked in Seconds

Mitron means "friends" in Hindi, you have been fooled again! Mitron is not really a 'Made in India' product, and the viral app contains a highly critical, unpatched vulnerability that could allow anyone to hack into any user account without requiring interaction from the targeted users or their...

6.8AI score
Exploits0
The Hacker News
The Hacker News
added 2020/05/28 9:52 a.m.65 views

Researchers Uncover Brazilian Hacktivist's Identity Who Defaced Over 4800 Sites

It's one thing for hackers to target websites and proudly announce it on social media platforms for all to see. It's, however, an entirely different thing to leave a digital trail that leads cybersecurity researchers right to their doorsteps. That's exactly what happened in the case of a hacktivi...

1.5AI score
Exploits0
The Hacker News
The Hacker News
added 2019/11/23 6:52 a.m.65 views

OnePlus Suffers New Data Breach Impacting Its Online Store Customers

Chinese smartphone maker OnePlus has suffered a new data breach exposing personal and order information of an undisclosed number of its customers, likely, as a result of a vulnerability in its online store website. The breach came to light after OnePlus started informing affected customers via...

7AI score
Exploits0
The Hacker News
The Hacker News
added 2019/08/08 10:27 a.m.65 views

Facebook Sues Two Android App Developers for Click Injection Fraud

Facebook has filed a lawsuit against two shady Android app developers accused of making illegal money by hijacking users' smartphones to fraudulently click on Facebook ads. According to Facebook, Hong Kong-based 'LionMobi' and Singapore-based 'JediMobi' app developers were distributing malicious...

0.1AI score
Exploits0
The Hacker News
The Hacker News
added 2019/05/08 9:49 a.m.65 views

Google Chrome to Introduce Improved Cookie Controls Against Online Tracking

At the company's I/O 2019 developer conference, Google has announced its plan to introduce two new privacy and security-oriented features in the upcoming versions of its Chrome web browser. In an attempt to allow users to block online tracking, Google has announced two new features—Improved...

Exploits0
The Hacker News
The Hacker News
added 2019/04/16 7:14 a.m.65 views

Scranos: New Rapidly Evolving Rootkit-Enabled Spyware Discovered

A new powerful rootkit-enabled spyware operation has been discovered wherein hackers are distributing multifunctional malware disguised as cracked software or trojanized app posing as legitimate software like video players, drivers and even anti-virus products. While the rootkit malware—dubbed...

1.1AI score
Exploits0
The Hacker News
The Hacker News
added 2019/04/11 3:50 p.m.65 views

Popular Video Editing Software Website Hacked to Spread Banking Trojan

If you have downloaded the VSDC multimedia editing software between late February to late March this year, there are high chances that your computer has been infected with a banking trojan and an information stealer. The official website of the VSDC software — one of the most popular, free video...

1AI score
Exploits0
The Hacker News
The Hacker News
added 2018/06/30 9:29 a.m.65 views

Researchers Uncover New Attacks Against LTE Network Protocol

If your mobile carrier offers LTE, also known as the 4G network, you need to beware as your network communication can be hijacked remotely. A team of researchers has discovered some critical weaknesses in the ubiquitous LTE mobile device standard that could allow sophisticated hackers to spy on...

6.7AI score
Exploits0
The Hacker News
The Hacker News
added 2018/06/11 2:9 p.m.65 views

U.S. Builds World's Fastest Supercomputer – Summit

China no longer owns the fastest supercomputer in the world; It is the United States now. Though China still has more supercomputers on the Top 500 list, the USA takes the crown of "world's fastest supercomputer" from China after IBM and the U.S. Department of Energy's Oak Ridge National Laborato...

0.1AI score
Exploits0
The Hacker News
The Hacker News
added 2018/05/14 9:37 p.m.65 views

Hackers Reveal How Code Injection Attack Works in Signal Messaging App

After the revelation of the eFail attack details, it's time to reveal how the recently reported code injection vulnerability in the popular end-to-end encrypted Signal messaging app works. As we reported last weekend, Signal has patched its messaging app for Windows and Linux that suffered a code...

0.9AI score
Exploits0
The Hacker News
The Hacker News
added 2018/04/06 11:41 a.m.65 views

Microsoft Office 365 Gets Built-in Ransomware Protection and Enhanced Security Features

Ransomware has been around for a few years, but it has become an albatross around everyone's neck, targeting big businesses, hospitals, financial institutions and individuals worldwide and extorting millions of dollars. Last year, we saw some major ransomware outbreaks, including WannaCry and...

0.2AI score
Exploits0
The Hacker News
The Hacker News
added 2017/11/26 10:54 p.m.65 views

Exim Internet Mailer Found Vulnerable to RCE And DoS Bugs; Patch Now

A security researcher has discovered and publicly disclosed two critical vulnerabilities in the popular Internet mail message transfer agent Exim, one of which could allow a remote attacker to execute malicious code on the targeted server. Exim is an open source mail transfer agent MTA developed...

7.5CVSS9.8AI score0.6332EPSS
Exploits9
The Hacker News
The Hacker News
added 2017/05/10 1:27 a.m.65 views

Cisco Finally Patches 0-Day Exploit Disclosed In Wikileaks-CIA Leak

Cisco Systems has finally released an update for its IOS and IOS XE software to address a critical vulnerability, disclosed nearly two months back in the CIA Vault 7 leak, that affects more than 300 of its switch models. The company identified the vulnerability in its product while analyzing "Vau...

10CVSS9.4AI score0.98975EPSS
Exploits12
The Hacker News
The Hacker News
added 2016/07/01 5:25 a.m.65 views

How to Crack Android Full Disk Encryption on Qualcomm Devices

The heated battle between Apple and the FBI provoked a lot of talk about Encryption – the technology that has been used to keep all your bits and bytes as safe as possible. We can not say a lot about Apple's users, but Android users are at severe risk when it comes to encryption of their personal...

9.3CVSS8.3AI score0.06906EPSS
Exploits3
The Hacker News
The Hacker News
added 2015/02/10 11:29 p.m.65 views

15-Year-Old JasBug Vulnerability Affects All Versions of Microsoft Windows

Microsoft just issued a critical patch to fix a 15-year-old vulnerability that could be exploited by hackers to remotely hijack users’ PCs running all supported versions of Windows operating system. The critical vulnerability — named "JASBUG" by the researcher who reported the flaw — is due to a...

8.3CVSS6.2AI score0.2858EPSS
Exploits4
The Hacker News
The Hacker News
added 2014/04/13 8:19 a.m.65 views

Billions of Smartphone Users affected by Heartbleed Vulnerability

Heartbleed has left a worst impression worldwide affecting millions of websites and is also supposed to put millions of Smartphones and tablets users at a great risk. Heartbleed is a critical bug CVE-2014-0160 in the popular OpenSSL cryptographic software library, that actually resides in the...

5CVSS7.5AI score0.99999EPSS
Exploits87
The Hacker News
The Hacker News
added 2025/04/04 3:38 a.m.64 views

Critical Flaw in Apache Parquet Allows Remote Attackers to Execute Arbitrary Code

A maximum severity security vulnerability has been disclosed in Apache Parquet's Java Library that, if successfully exploited, could allow a remote attacker to execute arbitrary code on susceptible instances. Apache Parquet is a free and open-source columnar data file format that's designed for...

10CVSS8.2AI score0.99945EPSS
Exploits55
The Hacker News
The Hacker News
added 2024/10/28 3:44 p.m.64 views

THN Cybersecurity Recap: Top Threats, Tools and News (Oct 21 - Oct 27)

Cybersecurity news can sometimes feel like a never-ending horror movie, can't it? Just when you think the villains are locked up, a new threat emerges from the shadows. This week is no exception, with tales of exploited flaws, international espionage, and AI shenanigans that could make your head...

9.9CVSS7.9AI score0.94761EPSS
Exploits11
The Hacker News
The Hacker News
added 2024/08/21 4:35 a.m.64 views

GiveWP WordPress Plugin Vulnerability Puts 100,000+ Websites at Risk

A maximum-severity security flaw has been disclosed in the WordPress GiveWP donation and fundraising plugin that exposes more than 100,000 websites to remote code execution attacks. The flaw, tracked as CVE-2024-5932 CVSS score: 10.0, impacts all versions of the plugin prior to version 3.14.2,...

10CVSS8.6AI score0.74427EPSS
Exploits11
The Hacker News
The Hacker News
added 2024/07/30 7:32 a.m.64 views

New SideWinder Cyber Attacks Target Maritime Facilities in Multiple Countries

The nation-state threat actor known as SideWinder has been attributed to a new cyber espionage campaign targeting ports and maritime facilities in the Indian Ocean and Mediterranean Sea. The BlackBerry Research and Intelligence Team, which discovered the activity, said targets of the spear-phishi...

9.3CVSS7.8AI score0.99945EPSS
Exploits62
The Hacker News
The Hacker News
added 2024/06/24 7:49 a.m.64 views

RedJuliett Cyber Espionage Campaign Hits 75 Taiwanese Organizations

A likely China-linked state-sponsored threat actor has been linked to a cyber espionage campaign targeting government, academic, technology, and diplomatic organizations in Taiwan between November 2023 and April 2024. Recorded Future's Insikt Group is tracking the activity under the name...

7.2CVSS8.6AI score0.83524EPSS
Exploits81
The Hacker News
The Hacker News
added 2024/04/22 11:5 a.m.64 views

MITRE Corporation Breached by Nation-State Hackers Exploiting Ivanti Flaws

The MITRE Corporation revealed that it was the target of a nation-state cyber attack that exploited two zero-day flaws in Ivanti Connect Secure appliances starting in January 2024. The intrusion led to the compromise of its Networked Experimentation, Research, and Virtualization Environment NERVE...

9.1CVSS9.7AI score0.99999EPSS
Exploits23
The Hacker News
The Hacker News
added 2024/04/09 5:46 a.m.64 views

Critical Flaws Leave 92,000 D-Link NAS Devices Vulnerable to Malware Attacks

Threat actors are actively scanning and exploiting a pair of security flaws that are said to affect as many as 92,000 internet-exposed D-Link network-attached storage NAS devices. Tracked as CVE-2024-3272 CVSS score: 9.8 and CVE-2024-3273 CVSS score: 7.3, the vulnerabilities impact legacy D-Link...

10CVSS7.9AI score0.99997EPSS
Exploits10
The Hacker News
The Hacker News
added 2024/03/02 6:23 a.m.64 views

U.S. Court Orders NSO Group to Hand Over Pegasus Spyware Code to WhatsApp

A U.S. judge has ordered NSO Group to hand over its source code for Pegasus and other remote access trojans to Meta as part of the social media giant's ongoing litigation against the Israeli spyware vendor. The decision marks a major legal victory for Meta, which filed the lawsuit in October 2019...

9.8CVSS9.7AI score0.39166EPSS
Exploits0
The Hacker News
The Hacker News
added 2024/02/20 10:38 a.m.64 views

Critical Flaws Found in ConnectWise ScreenConnect Software - Patch Now

ConnectWise has released software updates to address two security flaws in its ScreenConnect remote desktop and access software, including a critical bug that could enable remote code execution on affected systems. The vulnerabilities are listed below - CVE-2024-1708 CVSS score: 8.4 - Improper...

10CVSS10AI score0.99959EPSS
Exploits9
The Hacker News
The Hacker News
added 2023/12/14 6:30 a.m.64 views

New Hacker Group 'GambleForce' Tageting APAC Firms Using SQL Injection Attacks

A previously unknown hacker outfit called GambleForce has been attributed to a series of SQL injection attacks against companies primarily in the Asia-Pacific APAC region since at least September 2023. "GambleForce uses a set of basic yet very effective techniques, including SQL injections and th...

5.3CVSS6AI score0.99827EPSS
Exploits43
The Hacker News
The Hacker News
added 2023/11/23 2:46 p.m.64 views

Konni Group Using Russian-Language Malicious Word Docs in Latest Attacks

A new phishing attack has been observed leveraging a Russian-language Microsoft Word document to deliver malware capable of harvesting sensitive information from compromised Windows hosts. The activity has been attributed to a threat actor called Konni, which is assessed to share overlaps with a...

7.8CVSS7.2AI score0.97798EPSS
Exploits49
The Hacker News
The Hacker News
added 2023/10/26 4:49 p.m.64 views

iLeakage: New Safari Exploit Impacts Apple iPhones and Macs with A- and M-Series CPUs

A group of academics has devised a novel side-channel attack dubbed iLeakage that exploits a weakness in the A- and M-series CPUs running on Apple iOS, iPadOS, and macOS devices, enabling the extraction of sensitive information from the Safari web browser. "An attacker can induce Safari to render...

6.5CVSS6.7AI score0.0616EPSS
Exploits2
The Hacker News
The Hacker News
added 2023/09/08 11:26 a.m.64 views

Cisco Issues Urgent Fix for Authentication Bypass Bug Affecting BroadWorks Platform

Cisco has released security fixes to address multiple security flaws, including a critical bug, that could be exploited by a threat actor to take control of an affected system or cause a denial-of service DoS condition. The most severe of the issues is CVE-2023-20238, which has the maximum CVSS...

10CVSS7.4AI score0.21583EPSS
Exploits2
The Hacker News
The Hacker News
added 2023/07/18 12:58 p.m.64 views

Pakistani Entities Targeted in Sophisticated Attack Deploying ShadowPad Malware

An unidentified threat actor compromised an application used by multiple entities in Pakistan to deliver ShadowPad, a successor to the PlugX backdoor that's commonly associated with Chinese hacking crews. Targets included a Pakistan government entity, a public sector bank, and a telecommunication...

6.7AI score
Exploits0
The Hacker News
The Hacker News
added 2023/06/19 9:33 a.m.64 views

State-Backed Hackers Employ Advanced Methods to Target Middle Eastern and African Governments

Governmental entities in the Middle East and Africa have been at the receiving end of sustained cyber-espionage attacks that leverage never-before-seen and rare credential theft and Exchange email exfiltration techniques. "The main goal of the attacks was to obtain highly confidential and sensiti...

8.4AI score
Exploits0
The Hacker News
The Hacker News
added 2023/05/09 4:57 p.m.64 views

U.S. Authorities Seize 13 Domains Offering Criminal DDoS-for-Hire Services

U.S. authorities have announced the seizure of 13 internet domains that offered DDoS-for-hire services to other criminal actors. The takedown is part of an ongoing international initiative dubbed Operation PowerOFF that's aimed at dismantling criminal DDoS-for-hire infrastructures worldwide. The...

6.6AI score
Exploits0
The Hacker News
The Hacker News
added 2023/04/26 9:29 a.m.64 views

Apache Superset Vulnerability: Insecure Default Configuration Exposes Servers to RCE Attacks

The maintainers of the Apache Superset open source data visualization software have released fixes to plug an insecure default configuration that could lead to remote code execution. The vulnerability, tracked as CVE-2023-27524 CVSS score: 8.9, impacts versions up to and including 2.0.1 and relat...

6.7AI score0.97405EPSS
Exploits20
The Hacker News
The Hacker News
added 2023/04/14 7:15 a.m.64 views

Severe Android and Novi Survey Vulnerabilities Under Active Exploitation

The U.S. Cybersecurity and Infrastructure Security Agency CISA has added two vulnerabilities to its Known Exploited Vulnerabilities KEV catalog, based on evidence of active exploitation. The two flaws are listed below - CVE-2023-20963 CVSS score: 7.8 - Android Framework Privilege Escalation...

9.8CVSS8.4AI score0.0269EPSS
Exploits0
The Hacker News
The Hacker News
added 2023/03/22 7:19 a.m.64 views

NAPLISTENER: New Malware in REF2924 Group's Arsenal for Bypassing Detection

The threat group tracked as REF2924 has been observed deploying previously unseen malware in its attacks aimed at entities in South and Southeast Asia. The malware, dubbed NAPLISTENER by Elastic Security Labs, is an HTTP listener programmed in C and is designed to evade "network-based forms of...

7.4AI score
Exploits0
The Hacker News
The Hacker News
added 2022/12/10 5:52 a.m.64 views

Cisco Warns of High-Severity Unpatched Flaw Affecting IP Phones Firmware

Cisco has released a new security advisory warning of a high-severity flaw affecting IP Phone 7800 and 8800 Series firmware that could be potentially exploited by an unauthenticated attacker to cause remote code execution or a denial-of-service DoS condition. The networking equipment major said...

1.2AI score0.06355EPSS
Exploits0
The Hacker News
The Hacker News
added 2022/12/06 3:52 p.m.64 views

Iranian State Hackers Targeting Key Figures in Activism, Journalism, and Politics

Hackers with ties to the Iranian government have been linked to an ongoing social engineering and credential phishing campaign directed against human rights activists, journalists, researchers, academics, diplomats, and politicians working in the Middle East. At least 20 individuals are believed ...

0.3AI score
Exploits0
The Hacker News
The Hacker News
added 2022/10/19 10:9 a.m.64 views

Experts Warn of Stealthy PowerShell Backdoor Disguising as Windows Update

Details have emerged about a previously undocumented and fully undetectable FUD PowerShell backdoor that gains its stealth by disguising itself as part of a Windows update process. "The covert self-developed tool and the associated C2 commands seem to be the work of a sophisticated, unknown threa...

2.7AI score
Exploits0
The Hacker News
The Hacker News
added 2022/09/06 9:57 a.m.64 views

TA505 Hackers Using TeslaGun Panel to Manage ServHelper Backdoor Attacks

Cybersecurity researchers have offered insight into a previously undocumented software control panel used by a financially motivated threat group known as TA505. "The group frequently changes its malware attack strategies in response to global cybercrime trends," Swiss cybersecurity firm PRODAFT...

1.4AI score
Exploits0
The Hacker News
The Hacker News
added 2022/08/20 4:33 p.m.64 views

New Grandoreiro Banking Malware Campaign Targeting Spanish Manufacturers

Organizations in the Spanish-speaking nations of Mexico and Spain are in the crosshairs of a new campaign designed to deliver the Grandoreiro banking trojan. "In this campaign, the threat actors impersonate government officials from the Attorney General's Office of Mexico City and from the Public...

1.1AI score
Exploits0
The Hacker News
The Hacker News
added 2022/07/08 5:8 a.m.64 views

TrickBot Gang Shifted its Focus on "Systematically" Targeting Ukraine

In what's being described as an "unprecedented" twist, the operators of the TrickBot malware have resorted to systematically targeting Ukraine since the onset of the war in late February 2022. The group is believed to have orchestrated at least six phishing campaigns aimed at targets that align...

0.4AI score
Exploits0
Total number of security vulnerabilities5000