Lucene search
K

20777 matches found

The Hacker News
The Hacker News
added 2021/10/05 1:12 p.m.14 views

New Study Links Seemingly Disparate Malware Attacks to Chinese Hackers

Chinese cyber espionage group APT41 has been linked to seemingly disparate malware campaigns, according to fresh research that has mapped together additional parts of the group's network infrastructure to hit upon a state-sponsored campaign that takes advantage of COVID-themed phishing lures to...

7.8AI score
Exploits0
The Hacker News
The Hacker News
added 2021/10/05 7:36 a.m.36 views

Ransomware Hackers Who Attacked Over 100 Companies Arrested in Ukraine

Law enforcement agencies have announced the arrest of two "prolific ransomware operators" in Ukraine who allegedly conducted a string of targeted attacks against large industrial entities in Europe and North America since at least April 2020, marking the latest step in combating ransomware...

6.7AI score
Exploits0
The Hacker News
The Hacker News
added 2021/10/04 2:29 p.m.58 views

Creating Wireless Signals with Ethernet Cable to Steal Data from Air-Gapped Systems

A newly discovered data exfiltration mechanism employs Ethernet cables as a "transmitting antenna" to stealthily siphon highly-sensitive data from air-gapped systems, according to the latest research. "It's interesting that the wires that came to protect the air-gap become the vulnerability of th...

Exploits0
The Hacker News
The Hacker News
added 2021/10/04 2:0 p.m.36 views

Poorly Configured Apache Airflow Instances Leak Credentials for Popular Services

Cybersecurity researchers on Monday discovered misconfigurations across older versions of Apache Airflow instances belonging to a number of high-profile companies across various sectors, resulting in the exposure of sensitive credentials for popular platforms and services such as Amazon Web...

0.6AI score
Exploits0
The Hacker News
The Hacker News
added 2021/10/04 12:48 p.m.47 views

The Shortfalls of Mean Time Metrics in Cybersecurity

Security teams at mid-sized organizations are constantly faced with the question of "what does success look like?". At ActZero, their continued data-driven approach to cybersecurity invites them to grapple daily with measuring, evaluating, and validating the work they do on behalf of their...

6.9AI score
Exploits0
The Hacker News
The Hacker News
added 2021/10/04 12:48 p.m.311 views

A New APT Hacking Group Targeting Fuel, Energy, and Aviation Industries

A previously undocumented threat actor has been identified as behind a string of attacks targeting fuel, energy, and aviation production industries in Russia, the U.S., India, Nepal, Taiwan, and Japan with the goal of stealing data from compromised networks. Cybersecurity company Positive...

10CVSS2.1AI score0.99999EPSS
Exploits32
The Hacker News
The Hacker News
added 2021/10/01 2:15 p.m.41 views

Apple Pay Can be Abused to Make Contactless Payments From Locked iPhones

Cybersecurity researchers have disclosed an unpatched flaw in Apple Pay that attackers could abuse to make an unauthorized Visa payment with a locked iPhone by taking advantage of the Express Travel mode set up in the device's wallet. "An attacker only needs a stolen, powered on iPhone. The...

0.6AI score
Exploits0
The Hacker News
The Hacker News
added 2021/10/01 12:18 p.m.175 views

Chinese Hackers Used a New Rootkit to Spy on Targeted Windows 10 Users

A formerly unknown Chinese-speaking threat actor has been linked to a long-standing evasive operation aimed at South East Asian targets as far back as July 2020 to deploy a kernel-mode rootkit on compromised Windows systems. Attacks mounted by the hacking group, dubbed GhostEmperor by Kaspersky,...

1.7AI score
Exploits0
The Hacker News
The Hacker News
added 2021/10/01 7:21 a.m.33 views

Beware of Fake Amnesty International Antivirus for Pegasus that Hacks PCs with Malware

In yet another indicator of how hacking groups are quick to capitalize on world events and improvise their attack campaigns for maximum impact, threat actors have been discovered impersonating Amnesty International to distribute malware that purports to be security software designed to safeguard...

1.5AI score
Exploits0
The Hacker News
The Hacker News
added 2021/10/01 3:30 a.m.115 views

Update Google Chrome ASAP to Patch 2 New Actively Exploited Zero-Day Flaws

Google on Thursday pushed urgent security fixes for its Chrome browser, including a pair of new security weaknesses that the company said are being exploited in the wild, making them the fourth and fifth actively zero-days plugged this month alone. The issues, designated as CVE-2021-37975 and...

9.6CVSS0.2AI score0.70435EPSS
Exploits13
The Hacker News
The Hacker News
added 2021/09/30 1:49 p.m.48 views

New Azure AD Bug Lets Hackers Brute-Force Passwords Without Getting Caught

Cybersecurity researchers have disclosed an unpatched security vulnerability in the protocol used by Microsoft Azure Active Directory that potential adversaries could abuse to stage undetected brute-force attacks. "This flaw allows threat actors to perform single-factor brute-force attacks agains...

1.1AI score
Exploits0
The Hacker News
The Hacker News
added 2021/09/30 1:32 p.m.24 views

Incentivizing Developers is the Key to Better Security Practices

Professional developers want to embrace DevSecOps and write secure code, but their organizations need to support this seachange if they want that effort to grow. The cyber threat landscape is becoming more complex by the day. Attackers are constantly scanning networks for vulnerable applications,...

7.3AI score
Exploits0
The Hacker News
The Hacker News
added 2021/09/30 9:9 a.m.32 views

Here's a New Free Tool to Discover Unprotected Cloud Storage Instances

The IDC cloud security survey 2021 states that as many as 98% of companies were victims of a cloud data breach within the past 18 months. Fostered by the pandemic, small and large organizations from all over the world are migrating their data and infrastructure into a public cloud, while often...

0.7AI score
Exploits0
The Hacker News
The Hacker News
added 2021/09/30 7:40 a.m.36 views

New Tomiris Backdoor Found Linked to Hackers Behind SolarWinds Cyberattack

Cybersecurity researchers on Wednesday disclosed a previously undocumented backdoor likely designed and developed by the Nobelium advanced persistent threat APT behind last year's SolarWinds supply chain attack, joining the threat actor's ever-expanding arsenal of hacking tools...

7.7AI score
Exploits0
The Hacker News
The Hacker News
added 2021/09/30 7:0 a.m.34 views

Cybersecurity Firm Group-IB's CEO Arrested Over Treason Charges in Russia

Russian authorities on Wednesday arrested and detained Ilya Sachkov, the founder of cybersecurity firm Group-IB, for two months in Moscow on charges of state treason following a search of its office on September 28. The Russian company, which is headquartered in Singapore, confirmed the developme...

1.8AI score
Exploits0
The Hacker News
The Hacker News
added 2021/09/29 5:59 p.m.37 views

Facebook Releases New Tool That Finds Security and Privacy Bugs in Android Apps

Facebook on Wednesday announced it's open-sourcing Mariana Trench, an Android-focused static analysis platform the company uses to detect and prevent security and privacy bugs in applications created for the mobile operating system at scale. "Mariana Trench is designed to be able to scan large...

0.8AI score
Exploits0
The Hacker News
The Hacker News
added 2021/09/29 1:1 p.m.25 views

Beware! This Android Trojan Stole Millions of Dollars from Over 10 Million Users

A newly discovered "aggressive" mobile campaign has infected north of 10 million users from over 70 countries via seemingly innocuous Android apps that subscribe the individuals to premium services costing €36 $42 per month without their knowledge. Zimperium zLabs dubbed the malicious trojan...

1.7AI score
Exploits0
The Hacker News
The Hacker News
added 2021/09/29 12:17 p.m.25 views

[eBook] Your First 90 Days as CISO — 9 Steps to Success

Chief Information Security Officers CISOs are an essential pillar of an organization’s defense, and they must account for a lot. Especially for new CISOs, this can be a daunting task. The first 90 days for a new CISO are crucial in setting up their security team, so there is little time to waste,...

7.5AI score
Exploits0
The Hacker News
The Hacker News
added 2021/09/29 10:20 a.m.26 views

Hackers Targeting Brazil's PIX Payment System to Drain Users' Bank Accounts

Two newly discovered malicious Android applications on Google Play Store have been used to target users of Brazil's instant payment ecosystem in a likely attempt to lure victims into fraudulently transferring their entire account balances into another bank account under cybercriminals' control...

0.5AI score
Exploits0
The Hacker News
The Hacker News
added 2021/09/29 9:6 a.m.21 views

New FinSpy Malware Variant Infects Windows Systems With UEFI Bootkit

Commercially developed FinFisher surveillanceware has been upgraded to infect Windows devices using a UEFI Unified Extensible Firmware Interface bootkit that leverages a trojanized Windows Boot Manager, marking a shift in infection vectors that allow it to elude discovery and analysis. Detected i...

1AI score
Exploits0
The Hacker News
The Hacker News
added 2021/09/28 3:31 p.m.190 views

Atlassian Confluence RCE Flaw Abused in Multiple Cyberattack Campaigns

Opportunistic threat actors have been found actively exploiting a recently disclosed critical security flaw in Atlassian Confluence deployments across Windows and Linux to deploy web shells that result in the execution of crypto miners on compromised systems. Tracked as CVE-2021-26084 CVSS score:...

9.8CVSS0.3AI score0.99999EPSS
Exploits45
The Hacker News
The Hacker News
added 2021/09/28 8:32 a.m.24 views

New BloodyStealer Trojan Steals Gamers' Epic Games and Steam Accounts

A new advanced trojan sold on Russian-speaking underground forums comes with capabilities to steal users' accounts on popular online video game distribution services, including Steam, Epic Games Store, and EA Origin, underscoring a growing threat to the lucrative gaming market. Cybersecurity firm...

7AI score
Exploits0
The Hacker News
The Hacker News
added 2021/09/28 6:15 a.m.32 views

Microsoft Warns of FoggyWeb Malware Targeting Active Directory FS Servers

Microsoft on Monday revealed new malware deployed by the hacking group behind the SolarWinds supply chain attack last December to deliver additional payloads and steal sensitive information from Active Directory Federation Services AD FS servers. The tech giant's Threat Intelligence Center MSTIC...

7.2AI score
Exploits0
The Hacker News
The Hacker News
added 2021/09/27 1:35 p.m.33 views

Russian Turla APT Group Deploying New Backdoor on Targeted Systems

State-sponsored hackers affiliated with Russia are behind a new series of intrusions using a previously undocumented implant to compromise systems in the U.S., Germany, and Afghanistan. Cisco Talos attributed the attacks to the Turla advanced persistent threat APT group, coining the malware...

1.7AI score
Exploits0
The Hacker News
The Hacker News
added 2021/09/27 11:47 a.m.20 views

New Android Malware Steals Financial Data from 378 Banking and Wallet Apps

The operators behind the BlackRock mobile malware have surfaced back with a new Android banking trojan called ERMAC that targets Poland and has its roots in the infamous Cerberus malware, according to the latest research. "The new trojan already has active distribution campaigns and is targeting...

0.7AI score
Exploits0
The Hacker News
The Hacker News
added 2021/09/27 11:21 a.m.33 views

How Does DMARC Prevent Phishing?

DMARC is a global standard for email authentication. It allows senders to verify that the email really comes from whom it claims to come from. This helps curb spam and phishing attacks, which are among the most prevalent cybercrimes of today. Gmail, Yahoo, and many other large email providers hav...

Exploits0
The Hacker News
The Hacker News
added 2021/09/27 6:26 a.m.31 views

A New Jupyter Malware Version is Being Distributed via MSI Installers

Cybersecurity researchers have charted the evolution of Jupyter, a .NET infostealer known for singling out healthcare and education sectors, which make it exceptional at defeating most endpoint security scanning solutions. The new delivery chain, spotted by Morphisec on September 8, underscores...

1.2AI score
Exploits0
The Hacker News
The Hacker News
added 2021/09/25 6:39 a.m.231 views

Urgent Chrome Update Released to Patch Actively Exploited Zero-Day Vulnerability

Google on Friday rolled out an emergency security patch to its Chrome web browser to address a security flaw that's known to have an exploit in the wild. Tracked as CVE-2021-37973, the vulnerability has been described as use after free in Portals API, a web page navigation system that enables a...

9.6CVSS0.2AI score0.70435EPSS
Exploits12
The Hacker News
The Hacker News
added 2021/09/25 5:39 a.m.37 views

SonicWall Issues Patches for a New Critical Flaw in SMA 100 Series Devices

Network security company SonicWall has addressed a critical security vulnerability affecting its Secure Mobile Access SMA 100 series appliances that can permit remote, unauthenticated attackers to gain administrator access on targeted devices remotely. Tracked as CVE-2021-20034, the arbitrary fil...

9.1CVSS3.1AI score0.80701EPSS
Exploits4
The Hacker News
The Hacker News
added 2021/09/25 5:13 a.m.35 views

A New APT Hacker Group Spying On Hotels and Governments Worldwide

A new advanced persistent threat APT has been behind a string of attacks against hotels across the world, along with governments, international organizations, engineering companies, and law firms. Slovak cybersecurity firm ESET codenamed the cyber espionage group FamousSparrow, which it said has...

1.8AI score
Exploits0
The Hacker News
The Hacker News
added 2021/09/24 1:15 p.m.29 views

Apple's New iCloud Private Relay Service Leaks Users' Real IP Addresses

A new as-yet unpatched weakness in Apple's iCloud Private Relay feature could be circumvented to leak users' true IP addresses from iOS devices running the latest version of the operating system. Introduced as a beta with iOS 15, which was officially released this week, iCloud Private Relay aims ...

6.3AI score
Exploits0
The Hacker News
The Hacker News
added 2021/09/24 12:49 p.m.27 views

Google Warns of a New Way Hackers Can Make Malware Undetectable on Windows

Cybersecurity researchers have disclosed a novel technique adopted by a threat actor to deliberately evade detection with the help of malformed digital signatures of its malware payloads. "Attackers created malformed code signatures that are treated as valid by Windows but are not able to be...

0.5AI score
Exploits0
The Hacker News
The Hacker News
added 2021/09/24 7:26 a.m.164 views

Cisco Releases Patches 3 New Critical Flaws Affecting IOS XE Software

Networking equipment maker Cisco Systems has rolled out patches to address three critical security vulnerabilities in its IOS XE network operating system that remote attackers could potentially abuse to execute arbitrary code with administrative privileges and trigger a denial-of-service DoS...

10CVSS3.3AI score0.0287EPSS
Exploits0
The Hacker News
The Hacker News
added 2021/09/24 3:39 a.m.76 views

Urgent Apple iOS and macOS Updates Released to Fix Actively Exploited Zero-Days

Apple on Thursday released security updates to fix multiple security vulnerabilities in older versions of iOS and macOS that it says have been detected in exploits in the wild, in addition to expanding patches for a previously plugged security weakness abused by NSO Group's Pegasus surveillance...

9.3CVSS8.7AI score0.75994EPSS
Exploits2
The Hacker News
The Hacker News
added 2021/09/23 5:25 p.m.34 views

Microsoft Exchange Bug Exposes ~100,000 Windows Domain Credentials

An unpatched design flaw in the implementation of Microsoft Exchange's Autodiscover protocol has resulted in the leak of approximately 100,000 login names and passwords for Windows domains worldwide. "This is a severe security issue, since if an attacker can control such domains or has the abilit...

0.2AI score
Exploits0
The Hacker News
The Hacker News
added 2021/09/23 12:0 p.m.68 views

A New Bug in Microsoft Windows Could Let Hackers Easily Install a Rootkit

Security researchers have disclosed an unpatched weakness in Microsoft Windows Platform Binary Table WPBT affecting all Windows-based devices since Windows 8 that could be potentially exploited to install a rootkit and compromise the integrity of devices. "These flaws make every Windows system...

2.1AI score
Exploits0
The Hacker News
The Hacker News
added 2021/09/23 11:16 a.m.61 views

Why You Should Consider QEMU Live Patching

Sysadmins know what the risks are of running unpatched services. Given the choice, and unlimited resources, most hardworking administrators will ensure that all systems and services are patched consistently. But things are rarely that simple. Technical resources are limited, and patching can ofte...

7.7CVSS7.1AI score0.15275EPSS
Exploits1
The Hacker News
The Hacker News
added 2021/09/23 9:55 a.m.35 views

Colombian Real Estate Agency Leak Exposes Records of Over 100,000 Buyers

More than one terabyte of data containing 5.5 million files has been left exposed, leaking personal information of over 100,000 customers of a Colombian real estate firm, according to cybersecurity company WizCase. The breach was discovered by Ata Hakçıl and his team in a database owned by Conins...

1.2AI score
Exploits0
The Hacker News
The Hacker News
added 2021/09/23 9:55 a.m.31 views

New Android Malware Targeting US, Canadian Users with COVID-19 Lures

An "insidious" new SMS smishing malware has been found targeting Android mobile users in the U.S. and Canada as part of an ongoing campaign that uses SMS text message lures related to COVID-19 regulations and vaccine information in an attempt to steal personal and financial data. Proofpoint's...

1.5AI score
Exploits0
The Hacker News
The Hacker News
added 2021/09/22 12:25 p.m.26 views

Microsoft Warns of a Wide-Scale Phishing-as-a-Service Operation

Microsoft has opened the lid on a large-scale phishing-as-a-service PHaaS operation that's involved in selling phishing kits and email templates as well as providing hosting and automated services at a low cost, thus enabling cyber actors to purchase phishing campaigns and deploy them with minima...

1.5AI score
Exploits0
The Hacker News
The Hacker News
added 2021/09/22 10:38 a.m.23 views

How Cynet's Response Automation Helps Organizations Mitigate Cyber Threats

One of the determining factors of how much damage a cyber-attack cause is how fast organizations can respond to it. Time to response is critical for security teams, and it is a major hurdle for leaner teams. To help improve this metric and enhance organizations' ability to respond to attacks...

0.4AI score
Exploits0
The Hacker News
The Hacker News
added 2021/09/22 10:38 a.m.123 views

New Nagios Software Bugs Could Let Hackers Take Over IT Infrastructures

As many as 11 security vulnerabilities have been disclosed in Nagios network management systems, some of which could be chained to achieve pre-authenticated remote code execution with the highest privileges, as well as lead to credential theft and phishing attacks. Industrial cybersecurity firm...

9.8CVSS0.2AI score0.96772EPSS
Exploits5
The Hacker News
The Hacker News
added 2021/09/22 6:16 a.m.30 views

US Sanctions Cryptocurrency Exchange SUEX for Aiding Ransomware Gangs

The U.S. Treasury Department on Tuesday imposed sanctions on Russian cryptocurrency exchange Suex for helping facilitate and launder transactions from at least eight ransomware variants as part of the government's efforts to crack down on a surge in ransomware incidents and make it difficult for...

0.3AI score
Exploits0
The Hacker News
The Hacker News
added 2021/09/22 4:18 a.m.42 views

The Gap in Your Zero Trust Implementation

Over the last several years, there have been numerous high-profile security breaches. These breaches have underscored the fact that traditional cyber defenses have become woefully inadequate and that stronger defenses are needed. As such, many organizations have transitioned toward a zero trust...

7.5AI score
Exploits0
The Hacker News
The Hacker News
added 2021/09/22 3:34 a.m.47 views

High-Severity RCE Flaw Disclosed in Several Netgear Router Models

Networking equipment company Netgear has released patches to remediate a high-severity remote code execution vulnerability affecting multiple routers that could be exploited by remote attackers to take control of an affected system. Traced as CVE-2021-40847 CVSS score: 8.1, the security weakness...

9.3CVSS0.9AI score0.10051EPSS
Exploits1
The Hacker News
The Hacker News
added 2021/09/22 3:9 a.m.63 views

VMware Warns of Critical File Upload Vulnerability Affecting vCenter Server

VMware on Tuesday published a new bulletin warning of as many as 19 vulnerabilities in vCenter Server and Cloud Foundation appliances that a remote attacker could exploit to take control of an affected system. The most urgent among them is an arbitrary file upload vulnerability in the Analytics...

9.8CVSS0.5AI score0.99999EPSS
Exploits17
The Hacker News
The Hacker News
added 2021/09/21 4:48 p.m.23 views

Unpatched High-Severity Vulnerability Affects Apple macOS Computers

Cybersecurity researchers on Tuesday disclosed details of an unpatched zero-day vulnerability in macOS Finder that could be abused by remote adversaries to trick users into running arbitrary commands on the machines. "A vulnerability in macOS Finder allows files whose extension is inetloc to...

1.5AI score
Exploits0
The Hacker News
The Hacker News
added 2021/09/21 12:27 p.m.81 views

Cring Ransomware Gang Exploits 11-Year-Old ColdFusion Bug

Unidentified threat actors breached a server running an unpatched, 11-year-old version of Adobe's ColdFusion 9 software in minutes to remotely take over control and deploy file-encrypting Cring ransomware on the target's network 79 hours after the hack. The server, which belonged to an unnamed...

9.8CVSS1AI score0.99721EPSS
Exploits25
The Hacker News
The Hacker News
added 2021/09/21 10:8 a.m.188 views

New Capoae Malware Infiltrates WordPress Sites and Installs Backdoored Plugin

A recently discovered wave of malware attacks has been spotted using a variety of tactics to enslave susceptible machines with easy-to-guess administrative credentials to co-opt them into a network with the goal of illegally mining cryptocurrency. "The malware's primary tactic is to spread by...

10CVSS10AI score0.99997EPSS
Exploits51
The Hacker News
The Hacker News
added 2021/09/21 8:30 a.m.26 views

Cybersecurity Priorities in 2021: How Can CISOs Re-Analyze and Shift Focus?

2020 was a year of relentless disruptions. The protective layer of secured enterprise networks and controlled IT environments of the physical premises did not exist. Over the past year, CISOs Chief Information Security Officers have had to grapple with the challenges of bolstering the security...

7.3AI score
Exploits0
Total number of security vulnerabilities20777