Lucene search
K

20780 matches found

The Hacker News
The Hacker News
added 2021/08/17 11:55 a.m.42 views

Malicious Ads Target Cryptocurrency Users With Cinobi Banking Trojan

A new social engineering-based malvertising campaign targeting Japan has been found to deliver a malicious application that deploys a banking trojan on compromised Windows machines to steal credentials associated with cryptocurrency accounts. The application masquerades as an animated porn game, ...

0.6AI score
Exploits0
The Hacker News
The Hacker News
added 2021/08/17 11:24 a.m.142 views

Solution Providers Can Now Add Incident Response to Their Services Portfolio For Free

The Incident Response IR services market is in accelerated growth due to the rise in cyberattacks that result in breaches. More and more organizations, across all sizes and verticals, choose to outsource IR to 3rd party service providers over handling security incidents in-house. Cynet is now...

0.2AI score
Exploits0
The Hacker News
The Hacker News
added 2021/08/17 6:19 a.m.120 views

Multiple Flaws Affecting Realtek Wi-Fi SDKs Impact Nearly a Million IoT Devices

Taiwanese chip designer Realtek is warning of four security vulnerabilities in three software development kits SDKs accompanying its WiFi modules, which are used in almost 200 IoT devices made by at least 65 vendors. The flaws, which affect Realtek SDK v2.x, Realtek "Jungle" SDK...

10CVSS0.99857EPSS
Exploits4
The Hacker News
The Hacker News
added 2021/08/16 3:18 p.m.128 views

Attackers Can Weaponize Firewalls and Middleboxes for Amplified DDoS Attacks

Weaknesses in the implementation of TCP protocol in middleboxes and censorship infrastructure could be weaponized as a vector to stage reflected denial of service DoS amplification attacks against any target, surpassing many of the existing UDP-based amplification factors to date. Detailed by a...

0.4AI score
Exploits0
The Hacker News
The Hacker News
added 2021/08/16 11:36 a.m.87 views

Dozens of STARTTLS Related Flaws Found Affecting Popular Email Clients

Security researchers have disclosed as many as 40 different vulnerabilities associated with an opportunistic encryption mechanism in mail clients and servers that could open the door to targeted man-in-the-middle MitM attacks, permitting an intruder to forge mailbox content and steal credentials...

1.1AI score
Exploits0
The Hacker News
The Hacker News
added 2021/08/16 7:29 a.m.178 views

New AdLoad Variant Bypasses Apple's Security Defenses to Target macOS Systems

A new wave of attacks involving a notorious macOS adware family has evolved to leverage around 150 unique samples in the wild in 2021 alone, some of which have slipped past Apple's on-device malware scanner and even signed by its own notarization service, highlighting the malicious software ongoi...

5.5CVSS5.8AI score0.68531EPSS
Exploits5
The Hacker News
The Hacker News
added 2021/08/14 12:34 p.m.141 views

New Glowworm Attack Recovers Device's Sound from Its LED Power Indicator

A novel technique leverages optical emanations from a device's power indicator LED to recover sounds from connected peripherals and spy on electronic conversations from a distance of as much as 35 meters. Dubbed the "Glowworm attack," the findings were published by a group of academics from the...

6.6AI score
Exploits0
The Hacker News
The Hacker News
added 2021/08/14 10:35 a.m.93 views

Learn Ethical Hacking From Scratch — 18 Online Courses for Just $43

If you're reading this post, there is a pretty good chance you're interested in hacking. Ever thought about turning it into a career? The cybersecurity industry is booming right now, and ethical hacking is one of the most lucrative and challenging niches. It's open to anyone with the right skills...

7AI score
Exploits0
The Hacker News
The Hacker News
added 2021/08/14 10:20 a.m.85 views

Facebook Adds End-to-End Encryption for Audio and Video Calls in Messenger

Facebook on Friday said it's extending end-to-end encryption E2EE for voice and video calls in Messenger, along with testing a new opt-in setting that will turn on end-to-end encryption for Instagram DMs. "The content of your messages and calls in an end-to-end encrypted conversation is protected...

6.9AI score
Exploits0
The Hacker News
The Hacker News
added 2021/08/13 1:15 p.m.36 views

Hackers Spotted Using Morse Code in Phishing Attacks to Evade Detection

Microsoft has disclosed details of an evasive year-long social engineering campaign wherein the operators kept changing their obfuscation and encryption mechanisms every 37 days on average, including relying on Morse code, in an attempt to cover their tracks and surreptitiously harvest user...

0.5AI score
Exploits0
The Hacker News
The Hacker News
added 2021/08/13 12:54 p.m.44 views

Why Is There A Surge In Ransomware Attacks?

The U.S. is presently combating two pandemics--coronavirus and ransomware attacks. Both have partially shut down parts of the economy. However, in the case of cybersecurity, lax security measures allow hackers to have an easy way to rake in millions. It's pretty simple for hackers to gain...

7.6AI score
Exploits0
The Hacker News
The Hacker News
added 2021/08/13 9:46 a.m.12818 views

Hackers Actively Searching for Unpatched Microsoft Exchange Servers

Threat actors are actively carrying out opportunistic scanning and exploitation of Exchange servers using a new exploit chain leveraging a trio of flaws affecting on-premises installations, making them the latest set of bugs after ProxyLogon vulnerabilities were exploited en masse at the start of...

10CVSS0.1AI score0.99999EPSS
Exploits83
The Hacker News
The Hacker News
added 2021/08/13 8:29 a.m.520 views

Ransomware Gangs Exploiting Windows Print Spooler Vulnerabilities

Ransomware operators such as Magniber and Vice Society are actively exploiting vulnerabilities in Windows Print Spooler to compromise victims and spread laterally across a victim's network to deploy file-encrypting payloads on targeted systems. "Multiple, distinct threat actors view this...

9.8CVSS2.3AI score0.99759EPSS
Exploits76
The Hacker News
The Hacker News
added 2021/08/12 3:10 p.m.46 views

Experts Shed Light On New Russian Malware-as-a-Service Written in Rust

A nascent information-stealing malware sold and distributed on underground Russian underground forums has been written in Rust, signalling a new trend where threat actors are increasingly adopting exotic programming languages to bypass security protections, evade analysis, and hamper reverse...

1.2AI score
Exploits0
The Hacker News
The Hacker News
added 2021/08/12 1:2 p.m.60 views

How Companies Can Protect Themselves from Password Spraying Attacks

Attackers are using many types of attacks to compromise business-critical data. These can include zero-day attacks, supply chain attacks, and others. However, one of the most common ways that hackers get into your environment is by compromising passwords. The password spraying attack is a special...

7AI score
Exploits0
The Hacker News
The Hacker News
added 2021/08/12 7:6 a.m.61 views

IT Giant Accenture Hit by LockBit Ransomware; Hackers Threaten to Leak Data

Global IT consultancy giant Accenture has become the latest company to be hit by the LockBit ransomware gang, according to a post made by the operators on their dark web portal, likely filling a void left in the wake of DarkSide and REvil shutdown. "These people are beyond privacy and security. I...

0.4AI score
Exploits0
The Hacker News
The Hacker News
added 2021/08/12 5:23 a.m.178 views

Microsoft Warns of Another Unpatched Windows Print Spooler RCE Vulnerability

A day after releasing Patch Tuesday updates, Microsoft acknowledged yet another remote code execution vulnerability in the Windows Print Spooler component, adding that it's working to remediate the issue in an upcoming security update. Tracked as CVE-2021-36958 CVSS score: 7.3, the unpatched flaw...

9.8CVSS8.8AI score0.45423EPSS
Exploits1
The Hacker News
The Hacker News
added 2021/08/11 11:57 a.m.66 views

Bugs in Managed DNS Services Cloud Let Attackers Spy On DNS Traffic

Cybersecurity researchers have disclosed a new class of vulnerabilities impacting major DNS-as-a-Service DNSaaS providers that could allow attackers to exfiltrate sensitive information from corporate networks. "We found a simple loophole that allowed us to intercept a portion of worldwide dynamic...

6.9AI score
Exploits0
The Hacker News
The Hacker News
added 2021/08/11 11:33 a.m.65 views

MSPs and MSSPs Can Increase Profit Margins With Cynet 360 Platform

As cyber threats keep on increasing in volume and sophistication, more and more organizations acknowledge that outsourcing their security operations to a 3rd-party service provider is a practice that makes the most sense. To address this demand, managed security services providers MSSPs and manag...

Exploits0
The Hacker News
The Hacker News
added 2021/08/11 8:29 a.m.55 views

Hackers Steal Over $600 Million Worth of Cryptocurrencies from Poly Network

Hackers have siphoned $611 million worth of cryptocurrencies from a blockchain-based financial network in what's believed to be one of the largest heists targeting the digital asset industry, putting it ahead of breaches targeting exchanges Coincheck and Mt. Gox in recent years. Poly Network, a...

7.1AI score
Exploits0
The Hacker News
The Hacker News
added 2021/08/11 6:28 a.m.134 views

Magento Update Released to Fix Critical Flaws Affecting E-Commerce Sites

Adobe on Tuesday shipped security updates to remediate multiple critical vulnerabilities in its Magento e-commerce platform that could be abused by an attacker to execute arbitrary code and take control of a vulnerable system. The issues affect 2.3.7, 2.4.2-p1, 2.4.2, and earlier versions of...

9.8CVSS1.9AI score0.0344EPSS
Exploits0
The Hacker News
The Hacker News
added 2021/08/11 5:31 a.m.1014 views

Microsoft Releases Windows Updates to Patch Actively Exploited Vulnerability

Microsoft on Tuesday rolled out security updates to address a total of 44 security issues affecting its software products and services, one of which it says is an actively exploited zero-day in the wild. The update, which is the smallest release since December 2019, squashes seven Critical and 37...

9.9CVSS0.66023EPSS
Exploits5
The Hacker News
The Hacker News
added 2021/08/10 1:19 p.m.124 views

Experts Believe Chinese Hackers Are Behind Several Attacks Targeting Israel

A Chinese cyber espionage group has been linked to a string of intrusion activities targeting Israeli government institutions, IT providers, and telecommunications companies at least since 2019, with the hackers masquerading themselves as Iranian actors to mislead forensic analysis. FireEye's...

9.8CVSS1.3AI score0.99913EPSS
Exploits29
The Hacker News
The Hacker News
added 2021/08/10 9:27 a.m.689 views

Hackers Exploiting New Auth Bypass Bug Affecting Millions of Arcadyan Routers

Unidentified threat actors are actively exploiting a critical authentication bypass vulnerability to hijack home routers as part of an effort to co-opt them to a Mirai-variant botnet used for carrying out DDoS attacks, merely two days after its public disclosure. Tracked as CVE-2021-20090 CVSS...

10CVSS0.8AI score0.99999EPSS
Exploits17
The Hacker News
The Hacker News
added 2021/08/09 1:43 p.m.46 views

A Critical Random Number Generator Flaw Affects Billions of IoT Devices

A critical vulnerability has been disclosed in hardware random number generators used in billions of Internet of Things IoT devices whereby it fails to properly generate random numbers, thus undermining their security and putting them at risk of attacks. "It turns out that these 'randomly' chosen...

7.1AI score
Exploits0
The Hacker News
The Hacker News
added 2021/08/09 1:28 p.m.108 views

Users Can Be Just As Dangerous As Hackers

Among the problems stemming from our systemic failure with cybersecurity, which ranges from decades-old software-development practices to Chinese and Russian cyber-attacks, one problem gets far less attention than it should—the insider threat. But the reality is that most organizations should be ...

1.2AI score
Exploits0
The Hacker News
The Hacker News
added 2021/08/09 1:0 p.m.41 views

Beware! New Android Malware Hacks Thousands of Facebook Accounts

A new Android trojan has been found to compromise Facebook accounts of over 10,000 users in at least 144 countries since March 2021 via fraudulent apps distributed through Google Play Store and other third-party app marketplaces. Dubbed "FlyTrap," the previously undocumented malware is believed t...

0.2AI score
Exploits0
The Hacker News
The Hacker News
added 2021/08/09 9:0 a.m.508 views

Pulse Secure VPNs Get New Urgent Update for Poorly Patched Critical Flaw

Pulse Secure has shipped a fix for a critical post-authentication remote code execution RCE vulnerability in its Connect Secure virtual private network VPN appliances to address an incomplete patch for an actively exploited flaw it previously resolved in October 2020. "The Pulse Connect Secure...

7.2CVSS0.8AI score0.9648EPSS
Exploits5
The Hacker News
The Hacker News
added 2021/08/06 2:29 p.m.69 views

Apple to Scan Every Device for Child Abuse Content — But Experts Fear for Privacy

Apple on Thursday said it's introducing new child safety features in iOS, iPadOS, watchOS, and macOS as part of its efforts to limit the spread of Child Sexual Abuse Material CSAM in the U.S. To that effect, the iPhone maker said it intends to begin client-side scanning of images shared via every...

6.6AI score
Exploits0
The Hacker News
The Hacker News
added 2021/08/06 10:19 a.m.67 views

New Amazon Kindle Bug Could've Let Attackers Hijack Your eBook Reader

Amazon earlier this April addressed a critical vulnerability in its Kindle e-book reader platform that could have been potentially exploited to take full control over a user's device, resulting in the theft of sensitive information by just deploying a malicious e-book. "By sending Kindle users a...

9.3CVSS0.6AI score0.07045EPSS
Exploits2
The Hacker News
The Hacker News
added 2021/08/06 8:0 a.m.58 views

India's Koo, a Twitter-like Service, Found Vulnerable to Critical Worm Attacks

Koo, India's homegrown Twitter clone, recently patched a serious security vulnerability that could have been exploited to execute arbitrary JavaScript code against hundreds of thousands of its users, spreading the attack across the platform. The vulnerability involves a stored cross-site scriptin...

1AI score
Exploits0
The Hacker News
The Hacker News
added 2021/08/06 7:12 a.m.73 views

VMware Issues Patches to Fix Critical Bugs Affecting Multiple Products

VMware has released security updates for multiple products to address a critical vulnerability that could be exploited to gain access to confidential information. Tracked as CVE-2021-22002 CVSS score: 8.6 and CVE-2021-22003 CVSS score: 3.7, the flaws affect VMware Workspace One Access Access,...

9.8CVSS0.9AI score0.01207EPSS
Exploits0
The Hacker News
The Hacker News
added 2021/08/05 10:30 a.m.223 views

Salesforce Release Updates — A Cautionary Tale for Security Teams

On the surface, Salesforce seems like a classic Software-as-a-Service SaaS platform. Someone might even argue that Salesforce invented the SaaS market. However, the more people work with the full offering of Salesforce, the more they realize that it goes beyond a traditional SaaS platform's...

7.2AI score
Exploits0
The Hacker News
The Hacker News
added 2021/08/05 10:12 a.m.47 views

A Wide Range of Cyber Attacks Leveraging Prometheus TDS Malware Service

Multiple cybercriminal groups are leveraging a malware-as-a-service MaaS solution to carry out a wide range of malicious software distribution campaigns that result in the deployment of payloads such as Campo Loader, Hancitor, IcedID, QBot, Buer Loader, and SocGholish against individuals in Belgi...

0.2AI score
Exploits0
The Hacker News
The Hacker News
added 2021/08/05 9:33 a.m.109 views

Unpatched Security Flaws Expose Mitsubishi Safety PLCs to Remote Attacks

Multiple unpatched security vulnerabilities have been disclosed in Mitsubishi safety programmable logic controllers PLCs that could be exploited by an adversary to acquire legitimate user names registered in the module via a brute-force attack, unauthorizedly login to the CPU module, and even cau...

9.1CVSS0.2AI score0.0237EPSS
Exploits0
The Hacker News
The Hacker News
added 2021/08/05 6:2 a.m.117 views

Cisco Issues Critical Security Patches to Fix Small Business VPN Router Bugs

Networking equipment major Cisco has rolled out patches to address critical vulnerabilities impacting its Small Business VPN routers that could be abused by a remote attacker to execute arbitrary code and even cause a denial-of-service DoS condition. The issues, tracked as CVE-2021-1609 CVSS scor...

10CVSS2.5AI score0.09691EPSS
Exploits0
The Hacker News
The Hacker News
added 2021/08/04 8:30 p.m.253 views

Several Malware Families Targeting IIS Web Servers With Malicious Modules

A systematic analysis of attacks against Microsoft's Internet Information Services IIS servers has revealed as many as 14 malware families, 10 of them newly documented, indicating that the Windows-based web server software continues to be a hotbed for natively developed malware for close to eight...

0.5AI score
Exploits0
The Hacker News
The Hacker News
added 2021/08/04 12:49 p.m.45 views

Russian Federal Agencies Were Attacked With Chinese Webdav-O Virus

An amalgam of multiple state-sponsored threat groups from China may have been behind a string of targeted attacks against Russian federal executive authorities in 2020. The latest research, published by Singapore-headquartered company Group-IB, delves into a piece of computer virus called...

1.4AI score
Exploits0
The Hacker News
The Hacker News
added 2021/08/04 10:28 a.m.55 views

New Chinese Spyware Being Used in Widespread Cyber Espionage Attacks

A threat actor presumed to be of Chinese origin has been linked to a series of 10 attacks targeting Mongolia, Russia, Belarus, Canada, and the U.S. from January to July 2021 that involve the deployment of a remote access trojan RAT on infected systems, according to new research. The intrusions ha...

1.9AI score
Exploits0
The Hacker News
The Hacker News
added 2021/08/04 6:46 a.m.115 views

Critical Flaws Affect Embedded TCP/IP Stack Widely Used in Industrial Control Devices

Cybersecurity researchers on Wednesday disclosed 14 vulnerabilities affecting a commonly-used TCP/IP stack used in millions of Operational Technology OT devices manufactured by no fewer than 200 vendors and deployed in manufacturing plants, power generation, water treatment, and critical...

9.8CVSS0.3AI score0.03627EPSS
Exploits0
The Hacker News
The Hacker News
added 2021/08/03 11:27 a.m.51 views

Chinese Hackers Target Major Southeast Asian Telecom Companies

Three distinct clusters of malicious activities operating on behalf of Chinese state interests have staged a series of attacks to target networks belonging to at least five major telecommunications companies located in Southeast Asian countries since 2017. "The goal of the attackers behind these...

0.4AI score
Exploits0
The Hacker News
The Hacker News
added 2021/08/03 10:33 a.m.64 views

Cynet Empowers IT Resellers and Service Providers to Become Fully Qualified MSSPs

As cyber incidents increase in scope and impact, more and more organizations come to realize that outsourcing their defenses is the best practice—significantly increasing the Managed Security Service Provider MSSP market opportunities. Until recently, IT integrators, VARs, and MSPs haven't...

0.5AI score
Exploits0
The Hacker News
The Hacker News
added 2021/08/02 12:3 p.m.170 views

PwnedPiper PTS Security Flaws Threaten 80% of Hospitals in the U.S.

Cybersecurity researchers on Monday disclosed a set of nine vulnerabilities known as "PwnedPiper" that left a widely-used pneumatic tube system PTS vulnerable to critical attacks, including a possibility of complete takeover. The security weaknesses, disclosed by American cybersecurity firm Armis...

10CVSS0.08227EPSS
Exploits0
The Hacker News
The Hacker News
added 2021/08/02 11:11 a.m.436 views

New APT Hacking Group Targets Microsoft IIS Servers with ASP.NET Exploits

A new highly capable and persistent threat actor has been targeting major high-profile public and private entities in the U.S. as part of a series of targeted cyber intrusion attacks by exploiting internet-facing Microsoft Internet Information Services IIS servers to infiltrate their networks...

9.8CVSS0.5AI score0.99737EPSS
Exploits19
The Hacker News
The Hacker News
added 2021/08/02 10:27 a.m.42 views

PyPI Python Package Repository Patches Critical Supply Chain Flaw

The maintainers of Python Package Index PyPI last week issued fixes for three vulnerabilities, one among which could be abused to achieve arbitrary code execution and take full control of the official third-party software repository. The security weaknesses were discovered and reported by Japanes...

0.8AI score
Exploits0
The Hacker News
The Hacker News
added 2021/08/02 10:7 a.m.42 views

Solarmarker InfoStealer Malware Once Again Making its Way Into the Wild

Healthcare and education sectors are the frequent targets of a new surge in credential harvesting activity from what's a "highly modular" .NET-based information stealer and keylogger, charting the course for the threat actor's continued evolution while simultaneously remaining under the radar...

6.8AI score
Exploits0
The Hacker News
The Hacker News
added 2021/07/30 10:0 a.m.69 views

Experts Uncover Several C&C Servers Linked to WellMess Malware

Cybersecurity researchers on Friday unmasked new command-and-control C2 infrastructure belonging to the Russian threat actor tracked as APT29, aka Cozy Bear, that has been spotted actively serving WellMess malware as part of an ongoing attack campaign. More than 30 C2 servers operated by the...

0.4AI score
Exploits0
The Hacker News
The Hacker News
added 2021/07/30 8:18 a.m.103 views

Several Malicious Typosquatted Python Libraries Found On PyPI Repository

As many as eight Python packages that were downloaded more than 30,000 times have been removed from the PyPI portal for containing malicious code, once again highlighting how software package repositories are evolving into a popular target for supply chain attacks. "Lack of moderation and automat...

8.1AI score
Exploits0
The Hacker News
The Hacker News
added 2021/07/30 7:36 a.m.65 views

A New Wiper Malware Was Behind Recent Cyberattack On Iranian Train System

A cyber attack that derailed websites of Iran's transport ministry and its national railway system earlier this month, causing widespread disruptions in train services, was the result of a never-before-seen reusable wiper malware called "Meteor." The campaign — dubbed "MeteorExpress" — has not be...

1.1AI score
Exploits0
The Hacker News
The Hacker News
added 2021/07/30 6:13 a.m.58 views

Phony Call Centers Tricking Users Into Installing Ransomware and Data-Stealers

An ongoing malicious campaign that employs phony call centers has been found to trick victims into downloading malware capable of data exfiltration as well as deploying ransomware on infected systems. The attacks — dubbed "BazaCall" — eschew traditional social engineering techniques that rely on...

0.2AI score
Exploits0
Total number of security vulnerabilities20780