Lucene search
K

20781 matches found

The Hacker News
The Hacker News
added 2021/09/03 6:20 a.m.72 views

Cisco Issues Patch for Critical Enterprise NFVIS Flaw — PoC Exploit Available

Cisco has patched a critical security vulnerability impacting its Enterprise Network Function Virtualization Infrastructure Software NFVIS that could be exploited by an attacker to take control of an affected system. Tracked as CVE-2021-34746, the weakness has been rated 9.8 out of a maximum of 1...

9.8CVSS2.5AI score0.19958EPSS
Exploits3
The Hacker News
The Hacker News
added 2021/09/02 3:48 p.m.44 views

What is AS-REP Roasting attack, really?

Microsoft's Active Directory is said to be used by 95% of Fortune 500. As a result, it is a prime target for attackers as they look to gain access to credentials in the organization, as compromised credentials provide one of the easiest ways for hackers to access your data. A key authentication...

1.3AI score
Exploits0
The Hacker News
The Hacker News
added 2021/09/02 12:29 p.m.42 views

New BrakTooth Flaws Leave Millions of Bluetooth-enabled Devices Vulnerable

A set of new security vulnerabilities has been disclosed in commercial Bluetooth stacks that could enable an adversary to execute arbitrary code and, worse, crash the devices via denial-of-service DoS attacks. Collectively dubbed "BrakTooth" referring to the Norwegian word "Brak" which translates...

8.8CVSS1.2AI score0.01292EPSS
Exploits0
The Hacker News
The Hacker News
added 2021/09/02 10:7 a.m.22 views

WhatsApp Photo Filter Bug Could Have Exposed Your Data to Remote Attackers

A now-patched high-severity security vulnerability in WhatApp's image filter feature could have been abused to send a malicious image over the messaging app to read sensitive information from the app's memory. Tracked as CVE-2020-1910 CVSS score: 7.8, the flaw concerns an out-of-bounds read/write...

7.8CVSS0.6AI score0.05118EPSS
Exploits0
The Hacker News
The Hacker News
added 2021/09/02 9:20 a.m.19 views

Is Traffic Mirroring for NDR Worth the Trouble? We Argue It Isn't

Network Detection & Response NDR is an emerging technology developed to close the blind security spots left by conventional security solutions, which hackers exploited to gain a foothold in target networks. Nowadays, enterprises are using a plethora of security solutions to protect their network...

0.1AI score
Exploits0
The Hacker News
The Hacker News
added 2021/09/02 9:7 a.m.24 views

Chinese Authorities Arrest Hackers Behind Mozi IoT Botnet Attacks

The operators of the Mozi IoT botnet have been taken into custody by Chinese law enforcement authorities, nearly two years after the malware emerged on the threat landscape in September 2019. News of the arrest, which originally happened in June, was disclosed by researchers from Netlab, the...

0.3AI score
Exploits0
The Hacker News
The Hacker News
added 2021/09/02 5:58 a.m.28 views

FTC Bans Stalkerware App SpyFone; Orders Company to Erase Secretly Stolen Data

The U.S. Federal Trade Commission on Wednesday banned a stalkerware app company called SpyFone from the surveillance business over concerns that it stealthily harvested and shared data on people's physical movements, phone use, and online activities that were then used by stalkers and domestic...

0.4AI score
Exploits0
The Hacker News
The Hacker News
added 2021/09/01 3:50 p.m.125 views

Cybercriminals Abusing Internet-Sharing Services to Monetize Malware Campaigns

Threat actors are capitalizing on the growing popularity of proxyware platforms like Honeygain and Nanowire to monetize their own malware campaigns, once again illustrating how attackers are quick to repurpose and weaponize legitimate platforms to their advantage. "Malware is currently leveraging...

1.1AI score
Exploits0
The Hacker News
The Hacker News
added 2021/09/01 3:19 p.m.61 views

Linphone SIP Stack Bug Could Let Attackers Remotely Crash Client Devices

Cybersecurity researchers on Tuesday disclosed details about a zero-click security vulnerability in the Linphone Session Initiation Protocol SIP stack that could be remotely exploited without any action from a victim to crash the SIP client and cause a denial-of-service DoS condition. Tracked as...

7.5CVSS0.9AI score0.01294EPSS
Exploits0
The Hacker News
The Hacker News
added 2021/09/01 12:50 p.m.36 views

[LIVE WEBINAR] How Lean Security Teams Can Improve Their Time to Response

Cybersecurity could be described as a marathon for security teams that spend most of their time building sustained defenses that prevent threats day after day. However, they must be ready to hit a sprint whenever an attack succeeds since attack duration, and the resulting damages are directly...

0.4AI score
Exploits0
The Hacker News
The Hacker News
added 2021/09/01 7:11 a.m.79 views

QNAP Working on Patches for OpenSSL Flaws Affecting its NAS Devices

Network-attached storage NAS appliance maker QNAP said it's currently investigating two recently patched security flaws in OpenSSL to determine their potential impact, adding it will release security updates should its products turn out to be vulnerable. Tracked as CVE-2021-3711 CVSS score: 7.5 a...

9.8CVSS8.9AI score0.87816EPSS
Exploits1
The Hacker News
The Hacker News
added 2021/08/31 1:0 p.m.34 views

Researchers Propose Machine Learning-based Bluetooth Authentication Scheme

A group of academics has proposed a machine learning approach that uses authentic interactions between devices in Bluetooth networks as a foundation to handle device-to-device authentication reliably. Called "Verification of Interaction Authenticity" aka VIA, the recurring authentication scheme...

2AI score
Exploits0
The Hacker News
The Hacker News
added 2021/08/31 1:0 p.m.52 views

Attackers Can Remotely Disable Fortress Wi-Fi Home Security Alarms

New vulnerabilities have been discovered in Fortress S03 Wi-Fi Home Security System that could be potentially abused by a malicious party to gain unauthorized access with an aim to alter system behavior, including disarming the devices without the victim's knowledge. The two unpatched issues,...

7.8CVSS8.3AI score0.01589EPSS
Exploits1
The Hacker News
The Hacker News
added 2021/08/31 5:33 a.m.31 views

CISA Adds Single-Factor Authentication to the List of Bad Practices

The U.S. Cybersecurity and Infrastructure Security Agency CISA on Monday added single-factor authentication to the short list of "exceptionally risky" cybersecurity practices that could expose critical infrastructure as well as government and the private sector entities to devastating cyberattack...

0.4AI score
Exploits0
The Hacker News
The Hacker News
added 2021/08/31 3:27 a.m.55 views

New Microsoft Exchange 'ProxyToken' Flaw Lets Attackers Reconfigure Mailboxes

Details have emerged about a now-patched security vulnerability impacting Microsoft Exchange Server that could be weaponized by an unauthenticated attacker to modify server configurations, thus leading to the disclosure of Personally Identifiable Information PII. The issue, tracked as...

7.5CVSS0.9AI score0.97502EPSS
Exploits2
The Hacker News
The Hacker News
added 2021/08/30 11:54 a.m.23 views

How Does MTA-STS Improve Your Email Security?

Simple Mail Transfer Protocol or SMTP has easily exploitable security loopholes. Email routing protocols were designed in a time when cryptographic technology was at a nascent stage e.g., the de-facto protocol for email transfer, SMTP, is nearly 40 years old now, and therefore security was not an...

Exploits0
The Hacker News
The Hacker News
added 2021/08/29 7:32 a.m.42 views

Get Lifetime Access to 24 Professional Cybersecurity Certification Prep Courses

Not all heroes wear capes. Cybersecurity professionals are digital warriors who use their knowledge and skill to battle malicious hackers. Sounds like an exciting career, right? If the comic-book comparisons aren't working for you, perhaps some figures will. According to ZipRecruiter, the average...

0.1AI score
Exploits0
The Hacker News
The Hacker News
added 2021/08/28 4:37 p.m.20 views

LockFile Ransomware Bypasses Protection Using Intermittent File Encryption

A new ransomware family that emerged last month comes with its own bag of tricks to bypass ransomware protection by leveraging a novel technique called "intermittent encryption." Called LockFile, the operators of the ransomware have been found exploiting recently disclosed flaws such as ProxyShel...

6.9AI score
Exploits0
The Hacker News
The Hacker News
added 2021/08/28 4:21 p.m.24 views

Microsoft Warns of Widespread Phishing Attacks Using Open Redirects

Microsoft is warning of a widespread credential phishing campaign that leverages open redirector links in email communications as a vector to trick users into visiting malicious websites while effectively bypassing security software. "Attackers combine these links with social engineering baits th...

1.3AI score
Exploits0
The Hacker News
The Hacker News
added 2021/08/27 10:6 a.m.113 views

Microsoft, Google to Invest $30 Billion in Cybersecurity Over Next 5 Years

Google and Microsoft said they are pledging to invest a total of $30 billion in cybersecurity advancements over the next five years, as the U.S. government partners with private sector companies to address threats facing the country in the wake of a string of sophisticated malicious cyber activit...

0.2AI score
Exploits0
The Hacker News
The Hacker News
added 2021/08/27 9:24 a.m.33 views

Kaseya Issues Patches for Two New 0-Day Flaws Affecting Unitrends Servers

U.S. technology firm Kaseya has released security patches to address two zero-day vulnerabilities affecting its Unitrends enterprise backup and continuity solution that could result in privilege escalation and authenticated remote code execution. The two weaknesses are part of a trio of...

8.5AI score
Exploits0
The Hacker News
The Hacker News
added 2021/08/27 7:50 a.m.29 views

Critical Cosmos Database Flaw Affected Thousands of Microsoft Azure Customers

Cloud infrastructure security company Wiz on Thursday revealed details of a now-fixed Azure Cosmos database vulnerability that could have been potentially exploited to grant any Azure user full admin access to other customers' database instances without any authorization. The flaw, which grants...

1.6AI score
Exploits0
The Hacker News
The Hacker News
added 2021/08/26 12:25 p.m.43 views

The Increased Liability of Local In-home Propagation

Today I discuss an attack vector conducive to cross-organizational spread, in-home local propagation. Though often overlooked, this vector is especially relevant today, as many corporate employees remain working from home. In this post, I contrast in-home local propagation with traditional vector...

0.9AI score
Exploits0
The Hacker News
The Hacker News
added 2021/08/26 11:51 a.m.143 views

F5 Releases Critical Security Patch for BIG-IP and BIG-IQ Devices

Enterprise security and network appliance vendor F5 has released patches for more than two dozen security vulnerabilities affecting multiple versions of BIG-IP and BIG-IQ devices that could potentially allow an attacker to perform a wide range of malicious actions, including accessing arbitrary...

9.9CVSS1.4AI score0.02215EPSS
Exploits0
The Hacker News
The Hacker News
added 2021/08/26 9:47 a.m.43 views

New Passwordless Verification API Uses SIM Security for Zero Trust Remote Access

Forget watercooler conspiracies or boardroom battles. There's a new war in the office. As companies nudge their staff to return to communal workspaces, many workers don't actually want to – more than 50 percent of employees would rather quit, according to research by EY. While HR teams worry over...

7AI score
Exploits0
The Hacker News
The Hacker News
added 2021/08/26 7:40 a.m.51 views

VMware Issues Patches to Fix New Flaws Affecting Multiple Products

VMware on Wednesday shipped security updates to address vulnerabilities in multiple products that could be potentially exploited by an attacker to take control of an affected system. The six security weaknesses from CVE-2021-22022 through CVE-2021-22027, CVSS scores: 4.4 - 8.6 affect VMware...

7.5CVSS6.6AI score0.0116EPSS
Exploits1
The Hacker News
The Hacker News
added 2021/08/26 5:58 a.m.58 views

Critical Flaw Discovered in Cisco APIC for Switches — Patch Released

Cisco Systems on Wednesday issued patches to address a critical security vulnerability affecting the Application Policy Infrastructure Controller APIC interface used in its Nexus 9000 Series Switches that could be potentially abused to read or write arbitrary files on a vulnerable system. Tracked...

9.1CVSS8.9AI score0.01303EPSS
Exploits0
The Hacker News
The Hacker News
added 2021/08/25 1:12 p.m.19 views

Preventing your Cloud 'Secrets' from Public Exposure: An IDE plugin solution

I'm sure you would agree that, in today's digital world, the majority of applications we work on require some type of credentials – to connect to a database with a username/password, to access computer programs via authorized tokens, or API keys to invoke services for authentication. Credentials,...

7.2AI score
Exploits0
The Hacker News
The Hacker News
added 2021/08/25 1:0 p.m.19 views

Researchers Uncover FIN8's New Backdoor Targeting Financial Institutions

A financially motivated threat actor notorious for setting its sights on retail, hospitality, and entertainment industries has been observed deploying a completely new backdoor on infected systems, indicating the operators are continuously retooling their malware arsenal to avoid detection and st...

1.1AI score
Exploits0
The Hacker News
The Hacker News
added 2021/08/25 10:28 a.m.51 views

B. Braun Infusomat Pumps Could Let Attackers Remotely Alter Medication Dosages

Cybersecurity researchers have disclosed five previously unreported security vulnerabilities affecting B. Braun's Infusomat Space Large Volume Pump and SpaceStation that could be abused by malicious parties to tamper with medication doses without any prior authentication. McAfee, which discovered...

10CVSS0.4AI score0.0558EPSS
Exploits4
The Hacker News
The Hacker News
added 2021/08/25 7:27 a.m.36 views

New SideWalk Backdoor Targets U.S.-based Computer Retail Business

A computer retail company based in the U.S. was the target of a previously undiscovered implant called SideWalk as part of a recent campaign undertaken by a Chinese advanced persistent threat group primarily known for singling out entities in East and Southeast Asia. Slovak cybersecurity firm ESE...

6.8AI score
Exploits0
The Hacker News
The Hacker News
added 2021/08/24 12:28 p.m.51 views

Modified Version of WhatsApp for Android Spotted Installing Triada Trojan

A modified version of the WhatsApp messaging app for Android has been trojanized to intercept text messages, serve malicious payloads, display full-screen ads, and sign up device owners for unwanted premium subscriptions without their knowledge. "The Trojan Triada snuck into one of these modified...

1.5AI score
Exploits0
The Hacker News
The Hacker News
added 2021/08/24 12:8 p.m.45 views

Bahraini Activists Targeted Using a New iPhone Zero-Day Exploit From NSO Group

A previously undisclosed "zero-click" exploit in Apple's iMessage was abused by Israeli surveillance vendor NSO Group to circumvent iOS security protections and target nine Bahraini activists. "The hacked activists included three members of Waad a secular Bahraini political society, three members...

0.2AI score
Exploits0
The Hacker News
The Hacker News
added 2021/08/24 11:6 a.m.36 views

Researchers Warn of 4 Emerging Ransomware Groups That Can Cause Havoc

Cybersecurity researchers on Tuesday took the wraps off four up-and-coming ransomware groups that could pose a serious threat to enterprises and critical infrastructure, as the ripple effect of a recent spurt in ransomware incidents show that attackers are growing more sophisticated and more...

1.3AI score
Exploits0
The Hacker News
The Hacker News
added 2021/08/24 9:58 a.m.40 views

38 Million Records Exposed from Microsoft Power Apps of Dozens of Organisations

More than 38 million records from 47 different entities that rely on Microsoft's Power Apps portals platform were inadvertently left exposed online, bringing into sharp focus a "new vector of data exposure." "The types of data varied between portals, including personal information used for COVID-...

0.1AI score
Exploits0
The Hacker News
The Hacker News
added 2021/08/23 2:9 p.m.20 views

Navigating Vendor Risk Management as IT Professionals

One of the great resources available to businesses today is the large ecosystem of value-added services and solutions. Especially in technology solutions, there is no end to the services of which organizations can avail themselves. In addition, if a business needs a particular solution or service...

0.7AI score
Exploits0
The Hacker News
The Hacker News
added 2021/08/23 1:48 p.m.78 views

Researchers Detail Modus Operandi of ShinyHunters Cyber Crime Group

ShinyHunters, a notorious cybercriminal underground group that's been on a data breach spree since last year, has been observed searching companies' GitHub repository source code for vulnerabilities that can be abused to stage larger scale attacks, an analysis of the hackers' modus operandi has...

0.3AI score
Exploits0
The Hacker News
The Hacker News
added 2021/08/23 1:27 p.m.438 views

Top 15 Vulnerabilities Attackers Exploited Millions of Times to Hack Linux Systems

Close to 14 million Linux-based systems are directly exposed to the Internet, making them a lucrative target for an array of real-world attacks that could result in the deployment of malicious web shells, coin miners, ransomware, and other trojans. That's according to an in-depth look at the Linu...

10CVSS9.4AI score0.99999EPSS
Exploits247
The Hacker News
The Hacker News
added 2021/08/22 9:51 a.m.499 views

WARNING: Microsoft Exchange Under Attack With ProxyShell Flaws

The U.S. Cybersecurity and Infrastructure Security Agency is warning of active exploitation attempts that leverage the latest line of "ProxyShell" Microsoft Exchange vulnerabilities that were patched earlier this May, including deploying LockFile ransomware on compromised systems. Tracked as...

10CVSS1AI score0.99999EPSS
Exploits18
The Hacker News
The Hacker News
added 2021/08/20 4:2 p.m.34 views

Cloudflare mitigated one of the largest DDoS attack involving 17.2 million rps

Web infrastructure and website security company Cloudflare on Thursday disclosed that it mitigated the largest ever volumetric distributed denial of service DDoS attack recorded to date. The attack, launched via a Mirai botnet, is said to have targeted an unnamed customer in the financial industr...

1AI score
Exploits0
The Hacker News
The Hacker News
added 2021/08/20 3:44 p.m.30 views

ShadowPad Malware is Becoming a Favorite Choice of Chinese Espionage Groups

ShadowPad, an infamous Windows backdoor that allows attackers to download further malicious modules or steal data, has been put to use by five different Chinese threat clusters since 2017. "The adoption of ShadowPad significantly reduces the costs of development and maintenance for threat actors,...

1.7AI score
Exploits0
The Hacker News
The Hacker News
added 2021/08/20 10:38 a.m.19 views

Cybercrime Group Asking Insiders for Help in Planting Ransomware

A Nigerian threat actor has been observed attempting to recruit employees by offering them to pay $1 million in bitcoins to deploy Black Kingdom ransomware on companies' networks as part of an insider threat scheme. "The sender tells the employee that if they're able to deploy ransomware on a...

6.9AI score
Exploits0
The Hacker News
The Hacker News
added 2021/08/20 8:15 a.m.25 views

Mozi IoT Botnet Now Also Targets Netgear, Huawei, and ZTE Network Gateways

Mozi, a peer-to-peer P2P botnet known to target IoT devices, has gained new capabilities that allow it to achieve persistence on network gateways manufactured by Netgear, Huawei, and ZTE, according to latest findings. "Network gateways are a particularly juicy target for adversaries because they...

0.1AI score
Exploits0
The Hacker News
The Hacker News
added 2021/08/20 6:47 a.m.76 views

Critical Flaw Found in Older Cisco Small Business Routers Won't Be Fixed

A critical vulnerability in Cisco Small Business Routers will not be patched by the networking equipment giant, since the devices reached end-of-life in 2019. Tracked as CVE-2021-34730 CVSS score: 9.8, the issue resides in the routers' Universal Plug-and-Play UPnP service, enabling an...

10CVSS9.7AI score0.13578EPSS
Exploits0
The Hacker News
The Hacker News
added 2021/08/19 10:30 a.m.43 views

Researchers Find New Evidence Linking Diavol Ransomware to TrickBot Gang

Cybersecurity researchers have disclosed details about an early development version of a nascent ransomware strain called Diavol that has been linked to threat actors behind the infamous TrickBot syndicate. The latest findings from IBM X-Force show that the ransomware sample shares similarities t...

0.9AI score
Exploits0
The Hacker News
The Hacker News
added 2021/08/18 3:48 p.m.45 views

Critical ThroughTek SDK Bug Could Let Attackers Spy On Millions of IoT Devices

A security vulnerability has been found affecting several versions of ThroughTek Kalay P2P Software Development Kit SDK, which could be abused by a remote attacker to take control of an affected device and potentially lead to remote code execution. Tracked as CVE-2021-28372 CVSS score: 9.6 and...

9.1CVSS8.6AI score0.02575EPSS
Exploits1
The Hacker News
The Hacker News
added 2021/08/18 3:5 p.m.105 views

BadAlloc Flaw Affects BlackBerry QNX Used in Millions of Cars and Medical Devices

A major vulnerability affecting older versions of BlackBerry's QNX Real-Time Operating System RTOS could allow malicious actors to cripple and gain control of a variety of products, including cars, medical, and industrial equipment. The shortcoming CVE-2021-22156, CVSS score: 9.0 is part of a...

9.8CVSS1.3AI score0.018EPSS
Exploits0
The Hacker News
The Hacker News
added 2021/08/18 10:20 a.m.15 views

Iranian Hackers Target Several Israeli Organizations With Supply-Chain Attacks

IT and communication companies in Israel were at the center of a supply chain attack campaign spearheaded by an Iranian threat actor that involved impersonating the firms and their HR personnel to target victims with fake job offers in an attempt to penetrate their computers and gain access to th...

0.9AI score
Exploits0
The Hacker News
The Hacker News
added 2021/08/18 10:10 a.m.18 views

Does a VPN Protect You from Hackers?

A virtual private network VPN is the perfect solution for a lot of issues you might experience online- accessing blocked sites, hiding your browsing activity, getting rid of internet throttling, finding better deals, and much more. But does a VPN protect you from hackers? Is your private...

0.7AI score
Exploits0
The Hacker News
The Hacker News
added 2021/08/18 8:33 a.m.166 views

NK Hackers Deploy Browser Exploits on South Korean Sites to Spread Malware

A North Korean threat actor has been discovered taking advantage of two exploits in Internet Explorer to infect victims with a custom implant as part of a strategic web compromise SWC targeting a South Korean online newspaper. Cybersecurity firm Volexity attributed the watering hole attacks to a...

8.8CVSS1.1AI score0.81103EPSS
Exploits0
Total number of security vulnerabilities20781