The Hacker News

Syndikovat obsah The Hacker News
The Hacker News has been internationally recognized as a leading news source dedicated to promoting awareness for security experts and hackers
Aktualizace: 58 min 35 sek zpět

The Rise of Super-Stealthy Digitally Signed Malware—Thanks to the Dark Web

6 Listopad, 2017 - 10:09
Guess what's more expensive than counterfeit United States passports, stolen credit cards and even guns on the dark web? It's digital code signing certificates. A recent study conducted by the Cyber Security Research Institute (CSRI) this week revealed that stolen digital code-signing certificates are readily available for anyone to purchase on the dark web for up to $1,200. As you may know
Kategorie: Hacking & Security

Warning: Critical Tor Browser Vulnerability Leaks Users’ Real IP Address—Update Now

4 Listopad, 2017 - 09:16
If you follow us on Twitter, you must be aware that since yesterday we have been warning Mac and Linux users of the Tor anonymity browser about a critical vulnerability that could leak their real IP addresses to potential attackers when they visit certain types of web pages. Discovered by Italian security researcher Filippo Cavallarin, the vulnerability resides in FireFox that eventually also
Kategorie: Hacking & Security

Fake WhatsApp On Google Play Store Downloaded By Over 1 Million Android Users

4 Listopad, 2017 - 07:48
Cybercriminals are known to take advantage of everything that's popular among people in order to spread malware, and Google's official Play Store has always proved no less than an excellent place for hackers to get their job done. Yesterday some users spotted a fake version of the most popular WhatsApp messaging app for Android on the official Google Play Store that has already tricked more
Kategorie: Hacking & Security

The Tor Project to Beef Up Privacy with Next-Generation of Onion Services

3 Listopad, 2017 - 18:21
The Tor Project has made some significant changes to its infrastructure by improving the way the 'onion' network protects its users' privacy and security. Since the beginning, the largest free online anonymity network has been helping users browse the web anonymously, and its onion service provides a network within which encrypted websites can be run anonymously. However, the infrastructure
Kategorie: Hacking & Security

US Identifies 6 Russian Government Officials Involved In DNC Hack

3 Listopad, 2017 - 10:38
The United States Department of Justice has reportedly gathered enough evidence to charge at least six Russian government officials for allegedly playing a role in hacking DNC systems and leaking information during the 2016 presidential race. Earlier this year, US intelligence agencies concluded that the Russian government was behind the hack and expose of the Democratic National Committee (
Kategorie: Hacking & Security

'LeakTheAnalyst' Hacker Who Claimed to Have Hacked FireEye Arrested

2 Listopad, 2017 - 17:48
Remember the hacker who claimed to have breached FireEye late July this year? That alleged hacker has been arrested and taken into custody Thursday by international law enforcement, FireEye CEO Kevin Mandia informed the media. Late July, the hacker, whose name has not yet been disclosed, managed to hack the personal online accounts of a ‎Senior Threat Intelligence Analyst at Mandiant—a
Kategorie: Hacking & Security

The Hacker News Celebrates 7th Anniversary — Big Thanks

1 Listopad, 2017 - 16:54
The Hacker News (THN), the widely-read cybersecurity news source for hackers and technologists, is celebrating its 7th Anniversary today. This is a huge milestone for THN and our team, but this day really belongs to you—our readers. Without you, we would not be here, and we appreciate you for reading, commenting, and sharing our content every day. 7-years ago today we started this website
Kategorie: Hacking & Security

D-Link MEA Site Caught Running Cryptocurrency Mining Script—Or Was It Hacked?

1 Listopad, 2017 - 14:31
Last month the popular torrent website The Pirate Bay caused some uproar by adding a Javascript-based cryptocurrency miner to its site with no opt-out option, utilizing visitors' CPU power to mine Monero coins in an attempt to gain an extra source of revenue. Now D-Link has been caught doing the same, although there's high chance that its website has been hacked. D-Link's official website
Kategorie: Hacking & Security

Microsoft Engineer Installs Google Chrome Mid-Presentation After Edge Kept Crashing

1 Listopad, 2017 - 09:44
Ever since the launch of Windows 10, Microsoft has been heavily pushing its Edge browser, claiming it to be the best web browser over its competitors like Mozilla Firefox, Opera and Google Chrome in terms of speed and battery performance. However, Microsoft must admit that most users make use of Edge or Internet Explorer only to download Chrome, which is by far the world's most popular
Kategorie: Hacking & Security

Firefox 58 to Block Canvas Browser Fingerprinting By Default to Stop Online Tracking

31 Říjen, 2017 - 11:36
Do you know? Thousands of websites use HTML5 Canvas—a method supported by all major browsers that allow websites to dynamically draw graphics on web pages—to track and potentially identify users across the websites by secretly fingerprinting their web browsers. Over three years ago, the concern surrounding browser fingerprinting was highlighted by computer security experts from Princeton
Kategorie: Hacking & Security

Highly Critical Flaw (CVSS Score 10) Lets Hackers Hijack Oracle Identity Manager

31 Říjen, 2017 - 09:01
A highly critical vulnerability has been discovered in Oracle's enterprise identity management system that can be easily exploited by remote, unauthenticated attackers to take full control over the affected systems. The critical vulnerability tracked as CVE-2017-10151, has been assigned the highest CVSS score of 10 and is easy to exploit without any user interaction, Oracle said in its
Kategorie: Hacking & Security

Wait, Do You Really Think That’s A YouTube URL? Spoofing Links On Facebook

30 Říjen, 2017 - 19:00
While scrolling on Facebook how you decide which link/article should be clicked or opened? Facebook timeline and Messenger display title, description, thumbnail image and URL of every shared-link, and this information are enough to decide if the content is of your interest or not. Since Facebook is full of spam, clickbait and fake news articles these days, most users do not click every
Kategorie: Hacking & Security

iPhone Apps With Camera Permissions Can Secretly Take Your Photos Without You Noticing

30 Říjen, 2017 - 10:43
Are you a proud iPhone owner? If yes, this could freak you up. Trust me! Your iPhone has a serious privacy concern that allows iOS app developers to take your photographs and record your live video using both front and back camera—all without any notification or your consent. This alarming privacy concern in Apple's mobile operating system was highlighted by an Austrian developer and Google
Kategorie: Hacking & Security

Bad Rabbit Ransomware Uses Leaked 'EternalRomance' NSA Exploit to Spread

27 Říjen, 2017 - 11:57
A new widespread ransomware worm, known as "Bad Rabbit," that hit over 200 major organisations, primarily in Russia and Ukraine this week leverages a stolen NSA exploit released by the Shadow Brokers this April to spread across victims' networks. Earlier it was reported that this week's crypto-ransomware outbreak did not use any National Security Agency-developed exploits, neither EternalRomance
Kategorie: Hacking & Security

Hackers Could Turn LG Smart Appliances Into Remote-Controlled Spy Robot

27 Říjen, 2017 - 10:29
If your smart devices are smart enough to make your life easier, then their smart behaviour could also be exploited by hackers to invade your privacy or spy on you, if not secured properly. Recent research conducted by security researchers at threat prevention firm Check Point highlights privacy concern surrounding smart home devices manufactured by LG. Check Point researchers discovered a
Kategorie: Hacking & Security

jQuery Official Blog Hacked — Stay Calm, Library is Safe!

26 Říjen, 2017 - 18:05
The official blog of jQuery—most popular JavaScript library used by millions of websites—has been hacked by some unknown hackers, using the pseudonym "str0ng" and "n3tr1x." jQuery's blog website (blog.jquery.com) runs on WordPress—the world's most popular content management system (CMS) used by millions of websites. <!-- adsense --> While there is no evidence yet if the server (
Kategorie: Hacking & Security

Hacker Hijacks CoinHive's DNS to Mine Cryptocurrency Using Thousands of Websites

25 Říjen, 2017 - 08:18
When yesterday I was reporting about the sudden outbreak of another global ransomware attack 'Bad Rabbit,' I thought what could be worse than this? Then late last night I got my answer with a notification that Coinhive has been hacked — a popular browser-based service that offers website owners to embed a JavaScript to utilise their site visitors' CPUs power to mine the Monero cryptocurrency
Kategorie: Hacking & Security

Bad Rabbit: New Ransomware Attack Rapidly Spreading Across Europe

24 Říjen, 2017 - 21:55
A new widespread ransomware attack is spreading like wildfire around Europe and has already affected over 200 major organisations, primarily in Russia, Ukraine, Turkey and Germany, in the past few hours. Dubbed "Bad Rabbit," is reportedly a new Petya-like targeted ransomware attack against corporate networks, demanding 0.05 bitcoin (~ $285) as ransom from victims to unlock their systems.
Kategorie: Hacking & Security

DUHK Attack Lets Hackers Recover Encryption Key Used in VPNs & Web Sessions

24 Říjen, 2017 - 19:08
DUHK — Don't Use Hard-coded Keys — is a new 'non-trivial' cryptographic implementation vulnerability that could allow attackers to recover encryption keys that secure VPN connections and web browsing sessions. DUHK is the third crypto-related vulnerability reported this month after KRACK Wi-Fi attack and ROCA factorization attack. The vulnerability affects products from dozens of vendors,
Kategorie: Hacking & Security

Online IT Security Courses – CISA, CISM, CISSP Certifications

24 Říjen, 2017 - 14:03
Believe it or not, but any computer connected to the Internet is vulnerable to cyber attacks. With more money at risk and data breaches at a rise, more certified cybersecurity experts and professionals are needed by every corporate and organisation to prevent themselves from hackers and cyber thieves. That's why jobs in the cybersecurity field have gone up 80% over the past three years than
Kategorie: Hacking & Security