Lucene search
K

20784 matches found

The Hacker News
The Hacker News
added 2021/05/26 3:30 p.m.282 views

Data Wiper Malware Disguised As Ransomware Targets Israeli Entities

Researchers on Tuesday disclosed a new espionage campaign that resorts to destructive data-wiping attacks targeting Israeli entities at least since December 2020 that camouflage the malicious activity as ransomware extortions. Cybersecurity firm SentinelOne attributed the attacks to a nation-stat...

9.8CVSS1.5AI score0.99999EPSS
Exploits22
The Hacker News
The Hacker News
added 2021/05/26 8:56 a.m.40 views

WhatsApp Sues Indian Government Over New Internet Regulations

WhatsApp on Wednesday fired a legal salvo against the Indian government to block new regulations that would require messaging apps to trace the "first originator" of messages shared on the platform, thus effectively breaking encryption protections. "Requiring messaging apps to 'trace' chats is th...

6.5AI score
Exploits0
The Hacker News
The Hacker News
added 2021/05/26 6:58 a.m.57 views

Google Researchers Discover A New Variant of Rowhammer Attack

A team of security researchers from Google has demonstrated yet another variant of the Rowhammer vulnerability that targets increasingly smaller DRAM chips to bypass all current mitigations, making it a persistent threat to chip security. Dubbed "Half-Double," the new hammering technique hinges o...

1.3AI score
Exploits0
The Hacker News
The Hacker News
added 2021/05/26 5:54 a.m.61 views

Russian Hydra DarkNet Market Made Over $1.3 Billion in 2020

Russian-language dark web marketplace Hydra has emerged as a hotspot for illicit activities, pulling in a whopping $1.37 billion worth of cryptocurrencies in 2020, up from $9.4 million in 2016, marking a staggering 624% year-over-year jump over a three-year period from 2018 to 2020. "Further...

0.7AI score
Exploits0
The Hacker News
The Hacker News
added 2021/05/26 4:57 a.m.154 views

Critical RCE Vulnerability Found in VMware vCenter Server — Patch Now!

VMware has rolled out patches to address a critical security vulnerability in vCenter Server that could be leveraged by an adversary to execute arbitrary code on the server. Tracked as CVE-2021-21985 CVSS score 9.8, the issue stems from a lack of input validation in the Virtual SAN vSAN Health...

10CVSS1AI score0.99999EPSS
Exploits58
The Hacker News
The Hacker News
added 2021/05/25 12:29 p.m.254 views

Download Ultimate 'Security for Management' Presentation Template

There is a person in every organization that is the direct owner of breach protection. His or her task is to oversee and govern the process of design, build, maintain, and continuously enhance the security level of the organization. Title-wise, this person is most often either the CIO, CISO, or...

0.6AI score
Exploits0
The Hacker News
The Hacker News
added 2021/05/25 7:37 a.m.516 views

New High-Severity Vulnerability Reported in Pulse Connect Secure VPN

Ivanti, the company behind Pulse Secure VPN appliances, has published a security advisory for a high severity vulnerability that may allow an authenticated remote attacker to execute arbitrary code with elevated privileges. "Buffer Overflow in Windows File Resource Profiles in 9.X allows a remote...

10CVSS0.9AI score0.69377EPSS
Exploits9
The Hacker News
The Hacker News
added 2021/05/25 5:17 a.m.193 views

New Bluetooth Flaws Let Attackers Impersonate Legitimate Devices

Adversaries could exploit newly discovered security weaknesses in Bluetooth Core and Mesh Profile Specifications to masquerade as legitimate devices and carry out man-in-the-middle MitM attacks. "Devices supporting the Bluetooth Core and Mesh Specifications are vulnerable to impersonation attacks...

8.8CVSS1.2AI score0.00907EPSS
Exploits1
The Hacker News
The Hacker News
added 2021/05/25 4:52 a.m.134 views

Apple‌ Issues Patches to Combat Ongoing 0-Day Attacks on macOS, tvOS

Apple on Monday rolled out security updates for iOS, macOS, tvOS, watchOS, and Safari web browser to fix multiple vulnerabilities, including an actively exploited zero-day flaw in macOS Big Sur and expand patches for two previously disclosed zero-day flaws. Tracked as CVE-2021-30713, the zero-day...

8.8CVSS0.4AI score0.0658EPSS
Exploits0
The Hacker News
The Hacker News
added 2021/05/24 5:22 p.m.41 views

Researchers Link CryptoCore Attacks On Cryptocurrency Exchanges to North Korea

State-sponsored hackers affiliated with North Korea have been behind a slew of attacks on cryptocurrency exchanges over the past three years, new evidence has revealed. Attributing the attack with "medium-high" likelihood to the Lazarus Group aka APT38 or Hidden Cobra, researchers from Israeli...

Exploits0
The Hacker News
The Hacker News
added 2021/05/24 12:54 p.m.130 views

What To Do When Your Business Is Hacked

As businesses move to a remote workforce, hackers have increased their activity to capitalize on new security holes. Cybercriminals often use unsophisticated methods that continue to be extremely successful. These include phishing emails to harvest credentials and gain easy access to...

0.9AI score
Exploits0
The Hacker News
The Hacker News
added 2021/05/24 7:39 a.m.100 views

Details Disclosed On Critical Flaws Affecting Nagios IT Monitoring Software

Cybersecurity researchers disclosed details about 13 vulnerabilities in the Nagios network monitoring application that could be abused by an adversary to hijack the infrastructure without any operator intervention. "In a telco setting, where a telco is monitoring thousands of sites, if a customer...

10CVSS9.3AI score0.26206EPSS
Exploits12
The Hacker News
The Hacker News
added 2021/05/22 8:35 a.m.121 views

FBI Analyst Charged With Stealing Counterterrorism and Cyber Threat Info

The U.S. Department of Justice DoJ indicted an employee of the Federal Bureau of Investigation FBI for illegally removing numerous national security documents and willfully retaining them at her personal residence during a 13-year period from June 2004 to December 2017. The federal indictment...

0.3AI score
Exploits0
The Hacker News
The Hacker News
added 2021/05/22 7:0 a.m.148 views

FBI Warns Conti Ransomware Hit 16 U.S. Health and Emergency Services

The adversary behind Conti ransomware targeted no fewer than 16 healthcare and first responder networks in the U.S. within the past year, totally victimizing over 400 organizations worldwide, 290 of which are situated in the country. That's according to a new flash alert issued by the U.S. Federa...

7.2AI score
Exploits0
The Hacker News
The Hacker News
added 2021/05/22 4:57 a.m.94 views

Air India Hack Exposes Credit Card and Passport Info of 4.5 Million Passengers

India's flag carrier airline, Air India, has disclosed a data breach affecting 4.5 million of its customers over a period stretching nearly 10 years after its Passenger Service System PSS provider SITA fell victim to a cyber attack earlier this year. The breach involves personal data registered...

1.6AI score
Exploits0
The Hacker News
The Hacker News
added 2021/05/21 3:16 p.m.34 views

Insurance Firm CNA Financial Reportedly Paid Hackers $40 Million in Ransom

U.S. insurance company CNA Financial reportedly paid $40 million to a ransomware group to regain access to its systems after a cyberattack in March, marking one of the largest known ransom payments to date. The payment was first reported by Bloomberg, which cited people familiar with the incident...

6.5AI score
Exploits0
The Hacker News
The Hacker News
added 2021/05/21 8:46 a.m.32 views

Microsoft Warns of Data Stealing Malware That Pretends to Be Ransomware

Microsoft on Thursday warned of a "massive email campaign" that's pushing a Java-based STRRAT malware to steal confidential data from infected systems while disguising itself as a ransomware infection. "This RAT is infamous for its ransomware-like behavior of appending the file name extension...

1.4AI score
Exploits0
The Hacker News
The Hacker News
added 2021/05/20 10:42 a.m.189 views

23 Android Apps Expose Over 100,000,000 Users' Personal Data

Misconfigurations in multiple Android apps leaked sensitive data of more than 100 million users, potentially making them a lucrative target for malicious actors. "By not following best-practices when configuring and integrating third-party cloud-services into applications, millions of users'...

7.1AI score
Exploits0
The Hacker News
The Hacker News
added 2021/05/20 10:20 a.m.52 views

Is Single Sign-On Enough to Secure Your SaaS Applications?

If there's one thing all great SaaS platforms share in common, it's their focus on simplifying the lives of their end-users. Removing friction for users in a safe way is the mission of single sign-on SSO providers. With SSO at the helm, users don't have to remember separate passwords for each app...

Exploits0
The Hacker News
The Hacker News
added 2021/05/20 9:34 a.m.106 views

Watering Hole Attack Was Used to Target Florida Water Utilities

An investigation undertaken in the aftermath of the Oldsmar water plant hack earlier this year has revealed that an infrastructure contractor in the U.S. state of Florida hosted malicious code on its website in what's known as a watering hole attack. "This malicious code seemingly targeted water...

0.6AI score
Exploits0
The Hacker News
The Hacker News
added 2021/05/20 5:13 a.m.189 views

Android Issues Patches for 4 New Zero-Day Bugs Exploited in the Wild

Google on Wednesday updated its May 2021 Android Security Bulletin to disclose that four of the security vulnerabilities that were patched earlier this month by Arm and Qualcomm may have been exploited in the wild as zero-days. "There are indications that CVE-2021-1905, CVE-2021-1906,...

9CVSS0.8AI score0.72105EPSS
Exploits29
The Hacker News
The Hacker News
added 2021/05/19 2:20 p.m.45 views

DarkSide Ransomware Gang Extorted $90 Million from Several Victims in 9 Months

DarkSide, the hacker group behind the Colonial Pipeline ransomware attack earlier this month, received $90 million in bitcoin payments following a nine-month ransomware spree, making it one of the most profitable cybercrime groups. "In total, just over $90 million in bitcoin ransom payments were...

6.9AI score
Exploits0
The Hacker News
The Hacker News
added 2021/05/19 12:51 p.m.32 views

Mozilla Begins Rolling Out 'Site Isolation' Security Feature to Firefox Browser

Mozilla has begun rolling out a new security feature for its Firefox browser in nightly and beta channels that aims to protect users against a new class of side-channel attacks from malicious sites. Called "Site Isolation," the implementation loads each website separately in its own operating...

6.7AI score
Exploits0
The Hacker News
The Hacker News
added 2021/05/19 10:24 a.m.36 views

A Simple 1-Click Compromised Password Reset Feature Coming to Chrome Browser

Google on Tuesday announced a new feature to its password manager that could be used to change a stolen password automatically with a single tap. Automated password changes build on the tool's ability to check the safety of saved passwords. Thus when Chrome finds a password that may have been...

Exploits0
The Hacker News
The Hacker News
added 2021/05/18 2:7 p.m.62 views

How Apple Gave Chinese Government Access to iCloud Data and Censored Apps

In July 2018, when Guizhou-Cloud Big Data GCBD agreed to a deal with state-owned telco China Telecom to move iCloud data belonging to Apple's China-based users to the latter's servers, the shift raised concerns that it could make user data vulnerable to state surveillance. Now, according to a...

6.5AI score
Exploits0
The Hacker News
The Hacker News
added 2021/05/18 11:46 a.m.37 views

Free "vCISO Clinic" offers Resource-Constrained InfoSec Leaders a Helping Hand

Leaders in the InfoSec field face a strange dilemma. On the one hand, there are hundreds of thousands of resources available to find online to read or watch if they have questions – that's a benefit of a digital-first field. On the other hand, most leaders face challenges that – while not entirel...

6.9AI score
Exploits0
The Hacker News
The Hacker News
added 2021/05/18 10:37 a.m.30 views

Experts Reveal Over 150 Ways to Steal Control of 58 Android Stalkerware Apps

A total of 158 privacy and security issues have been identified in 58 Android stalkware apps from various vendors that could enable a malicious actor to take control of a victim's device, hijack a stalker's account, intercept data, achieve remote code execution, and even frame the victim by...

0.1AI score
Exploits0
The Hacker News
The Hacker News
added 2021/05/18 10:4 a.m.39 views

70 European and South American Banks Under Attack By Bizarro Banking Malware

A financially motivated cybercrime gang has unleashed a previously undocumented banking trojan, which can steal credentials from customers of 70 banks located in various European and South American countries. Dubbed "Bizarro" by Kaspersky researchers, the Windows malware is "using affiliates or...

2.1AI score
Exploits0
The Hacker News
The Hacker News
added 2021/05/17 2:12 p.m.37 views

Apple's Find My Network Can be Abused to Exfiltrate Data From Nearby Devices

Latest research has demonstrated a new exploit that enables arbitrary data to be uploaded from devices that are not connected to the Internet by simply sending "Find My" Bluetooth broadcasts to nearby Apple devices. "It's possible to upload arbitrary data from non-internet-connected devices by...

6.5AI score
Exploits0
The Hacker News
The Hacker News
added 2021/05/17 11:35 a.m.42 views

Why Password Hygiene Needs a Reboot

In today's digital world, password security is more important than ever. While biometrics, one-time passwords OTP, and other emerging forms of authentication are often touted as replacements to the traditional password, today, this concept is more marketing hype than anything else. But just becau...

7.6AI score
Exploits0
The Hacker News
The Hacker News
added 2021/05/17 11:19 a.m.57 views

Experts Warn About Ongoing AutoHotkey-Based Malware Attacks

Cybersecurity researchers have uncovered an ongoing malware campaign that heavily relies on AutoHotkey AHK scripting language to deliver multiple remote access trojans RAT such as Revenge RAT, LimeRAT, AsyncRAT, Houdini, and Vjw0rm on target Windows systems. At least four different versions of th...

0.9AI score
Exploits0
The Hacker News
The Hacker News
added 2021/05/17 7:26 a.m.103 views

U.S. Pipeline Ransomware Attackers Go Dark After Servers and Bitcoin Are Seized

Just as Colonial Pipeline restored all of its systems to operational status in the wake of a crippling ransomware incident a week ago, DarkSide, the cybercrime syndicate behind the attack, claimed it lost control of its infrastructure, citing a law enforcement seizure. All the dark web sites...

6.5AI score
Exploits0
The Hacker News
The Hacker News
added 2021/05/14 4:1 p.m.38 views

Hackers Using Microsoft Build Engine to Deliver Malware Filelessly

Threat actors are abusing Microsoft Build Engine MSBuild to filelessly deliver remote access trojans and password-stealing malware on targeted Windows systems. The actively ongoing campaign is said to have emerged last month, researchers from cybersecurity firm Anomali said on Thursday, adding th...

1.4AI score
Exploits0
The Hacker News
The Hacker News
added 2021/05/14 1:14 p.m.123 views

Report to Your Management with the Definitive 'Incident Response for Management' Presentation Template

Security incidents occur. It's not a matter of 'if' but of 'when.' There are security products and procedures that were implemented to optimize the IR process, so from the 'security-professional' angle, things are taken care of. However, many security pros who are doing an excellent job in handli...

7.1AI score
Exploits0
The Hacker News
The Hacker News
added 2021/05/14 12:4 p.m.34 views

Pakistan-Linked Hackers Added New Windows Malware to Its Arsenal

Cybercriminals with suspected ties to Pakistan continue to rely on social engineering as a crucial component of its operations as part of an evolving espionage campaign against Indian targets, according to new research. The attacks have been linked to a group called Transparent Tribe, also known ...

0.3AI score
Exploits0
The Hacker News
The Hacker News
added 2021/05/14 10:17 a.m.40 views

Magecart Hackers Now hide PHP-Based Backdoor In Website Favicons

Cybercrime groups are distributing malicious PHP web shells disguised as a favicon to maintain remote access to the compromised servers and inject JavaScript skimmers into online shopping platforms with an aim to steal financial information from their users. "These web shells known as Smilodon or...

7AI score
Exploits0
The Hacker News
The Hacker News
added 2021/05/14 9:0 a.m.43 views

Big Cybersecurity Tips For Remote Workers Who Use Their Own Tech

As the total number of people working from home has grown dramatically in the last year or two, so has the number of individuals who use all of their own technology for their jobs. If you're a remote worker who relies on your own PC to get your work done, then you may be at a heightened risk for...

7AI score
Exploits0
The Hacker News
The Hacker News
added 2021/05/14 7:57 a.m.37 views

Colonial Pipeline Paid Nearly $5 Million in Ransom to Cybercriminals

Colonial Pipeline on Thursday restored operations to its entire pipeline system nearly a week following a ransomware infection targeting its IT systems, forcing it to reportedly shell out nearly $5 million to regain control of its computer networks. "Following this restart, it will take several...

0.9AI score
Exploits0
The Hacker News
The Hacker News
added 2021/05/14 7:2 a.m.40 views

Rapid7 Source Code Breached in Codecov Supply-Chain Attack

Cybersecurity company Rapid7 on Thursday revealed that unidentified actors improperly managed to get hold of a small portion of its source code repositories in the aftermath of the software supply chain compromise targeting Codecov earlier this year. "A small subset of our source code repositorie...

7.3AI score
Exploits0
The Hacker News
The Hacker News
added 2021/05/13 11:47 a.m.51 views

Can Data Protection Systems Prevent Data At Rest Leakage?

Protection against insider risks works when the process involves controlling the data transfer channels or examining data sources. One approach involves preventing USB flash drives from being copied or sending them over email. The second one concerns preventing leakage or fraud in which an inside...

6.7AI score
Exploits0
The Hacker News
The Hacker News
added 2021/05/13 10:54 a.m.48 views

Dark Web Getting Loaded With Bogus Covid-19 Vaccines and Forged Cards

Bogus COVID-19 test results, fraudulent vaccination cards, and questionable vaccines are emerging a hot commodity on the dark web in what's the latest in a long list of cybercrimes capitalizing on the coronavirus pandemic. "A new and troubling phenomenon is that consumers are buying COVID-19...

Exploits0
The Hacker News
The Hacker News
added 2021/05/12 1:7 p.m.111 views

Nearly All Wi-Fi Devices Are Vulnerable to New FragAttacks

Three design and multiple implementation flaws have been disclosed in IEEE 802.11 technical standard that undergirds Wi-Fi, potentially enabling an adversary to take control over a system and plunder confidential data. Called FragAttacks short for FRgmentation and AGgregation Attacks, the...

6.5CVSS7.5AI score0.07604EPSS
Exploits4
The Hacker News
The Hacker News
added 2021/05/12 9:15 a.m.127 views

Latest Microsoft Windows Updates Patch Dozens of Security Flaws

Microsoft on Tuesday rolled out its scheduled monthly security update with patches for 55 security flaws affecting Windows, Exchange Server, Internet Explorer, Office, Hyper-V, Visual Studio, and Skype for Business. Of these 55 bugs, four are rated as Critical, 50 are rated as Important, and one ...

9.9CVSS9.1AI score0.99782EPSS
Exploits43
The Hacker News
The Hacker News
added 2021/05/12 7:16 a.m.41 views

Ransomware Gang Leaks Metropolitan Police Data After Failed Negotiations

The cybercrime syndicate behind Babuk ransomware has leaked more personal files belonging to the Metropolitan Police Department MPD after negotiations with the DC Police broke down, warning that they intend to publish all data if their ransom demands are not met. "The negotiations reached a dead...

6.8AI score
Exploits0
The Hacker News
The Hacker News
added 2021/05/12 5:41 a.m.169 views

Alert: Hackers Exploit Adobe Reader 0-Day Vulnerability in the Wild

Adobe has released Patch Tuesday updates for the month of May with fixes for multiple vulnerabilities spanning 12 different products, including a zero-day flaw affecting Adobe Reader that's actively exploited in the wild. The list of updated applications includes Adobe Experience Manager, Adobe...

9.6CVSS2.7AI score0.52005EPSS
Exploits0
The Hacker News
The Hacker News
added 2021/05/11 1:24 p.m.60 views

LIVE Webinar — The Rabbit Hole of Automation

The concept of automation has taken on a life of its own in recent years. The idea is nothing new, but the current interest in automation is a mix of both hype and innovation. On the one hand, it's much easier today to automate everything from small processes to massive-scale tasks than it's ever...

0.2AI score
Exploits0
The Hacker News
The Hacker News
added 2021/05/11 12:54 p.m.138 views

U.S. Intelligence Agencies Warn About 5G Network Weaknesses

Inadequate implementation of telecom standards, supply chain threats, and weaknesses in systems architecture could pose major cybersecurity risks to 5G networks, potentially making them a lucrative target for cybercriminals and nation-state adversaries to exploit for valuable intelligence. The...

7.8AI score
Exploits0
The Hacker News
The Hacker News
added 2021/05/11 9:50 a.m.48 views

Experts warn of a new Android banking trojan stealing users' credentials

Cybersecurity researchers on Monday disclosed a new Android trojan that hijacks users' credentials and SMS messages to facilitate fraudulent activities against banks in Spain, Germany, Italy, Belgium, and the Netherlands. Called "TeaBot" or Anatsa, the malware is said to be in its early stages of...

1.2AI score
Exploits0
The Hacker News
The Hacker News
added 2021/05/11 7:35 a.m.70 views

U.S. Declares Emergency in 17 States Over Fuel Pipeline Cyber Attack

The ransomware attack against Colonial Pipeline's networks has prompted the U.S. Federal Motor Carrier Safety Administration FMCSA to issue a regional emergency declaration in 17 states and the District of Columbia D.C.. The declaration provides a temporary exemption to Parts 390 through 399 of t...

1.6AI score
Exploits0
The Hacker News
The Hacker News
added 2021/05/10 12:31 p.m.76 views

Over 25% Of Tor Exit Relays Spied On Users' Dark Web Activities

An unknown threat actor managed to control more than 27% of the entire Tor network exit capacity in early February 2021, a new study on the dark web infrastructure revealed. "The entity attacking Tor users is actively exploiting tor users since over a year and expanded the scale of their attacks ...

6.8AI score
Exploits0
Total number of security vulnerabilities20784