The Hacker News

Syndikovat obsah The Hacker News
The Hacker News has been internationally recognized as a leading news source dedicated to promoting awareness for security experts and hackers
Aktualizace: 1 min 49 sek zpět

Alleged Russian Hacker Pleads Not Guilty After Extradition to United States

2 hodiny 20 min zpět
A Russian hacker indicted by a United States court for his involvement in online ad fraud schemes that defrauded multiple American companies out of tens of millions of dollars pleaded not guilty on Friday in a courtroom in Brooklyn, New York. Aleksandr Zhukov, 38, was arrested in November last year by Bulgarian authorities after the U.S. issued an international warrant against him, and was
Kategorie: Hacking & Security

New Android Malware Apps Use Motion Sensor to Evade Detection

18 Leden, 2019 - 12:37
Even after so many efforts by Google for preventing its Play Store from malware, shady apps somehow managed to fool its anti-malware protections and get into its service to infect Android users with malware. Two such Android apps have recently been spotted on the Google Play Store by security researchers with the Trend Micro malware research team, infecting thousands of Android users who have
Kategorie: Hacking & Security

A Twitter Bug Left Android Users' Private Tweets Exposed For 4 Years

18 Leden, 2019 - 07:49
Twitter just admitted that the social network accidentally revealed some Android users' protected tweets to the public for more than 4 years — a kind of privacy blunder that you'd typically expect from Facebook. When you sign up for Twitter, all your Tweets are public by default, allowing anyone to view and interact with your Tweets. Fortunately, Twitter also gives you control of your
Kategorie: Hacking & Security

Ukrainian Police Arrest 6 Hackers Linked to DDoS and Financial Attacks

17 Leden, 2019 - 10:37
Ukrainian Police have this week busted out two separate groups of hackers involved in carrying out DDoS attacks against news agencies and stealing money from Ukrainian citizens, respectively. According to the authorities, the four suspected hackers they arrested last week, all aged from 26 to 30 years, stole more than 5 million Hryvnia (around 178,380 USD) from the bank accounts of Ukrainian
Kategorie: Hacking & Security

Unprotected Government Server Exposes Years of FBI Investigations

17 Leden, 2019 - 08:45
A massive government data belonging to the Oklahoma Department of Securities (ODS) was left unsecured on a storage server for at least a week, exposing a whopping 3 terabytes of data containing millions of sensitive files. The unsecured storage server, discovered by Greg Pollock, a researcher with cybersecurity firm UpGuard, also contained decades worth of confidential case files from the
Kategorie: Hacking & Security

Hackers infect e-commerce sites by compromising their advertising partner

16 Leden, 2019 - 19:04
Magecart strikes again, one of the most notorious hacking groups specializes in stealing credit card details from poorly-secured e-commerce websites. According to security researchers from RiskIQ and Trend Micro, cybercriminals of a new subgroup of Magecart, labeled as "Magecart Group 12," recently successfully compromised nearly 277 e-commerce websites by using supply-chain attacks. Magecart
Kategorie: Hacking & Security

Fortnite Flaws Allowed Hackers to Takeover Gamers' Accounts

16 Leden, 2019 - 17:35
Check Point researchers have discovered multiple security vulnerabilities in Fortnite, a massively popular online battle game, one of which could have allowed remote attackers to completely takeover player accounts just by tricking users into clicking an unsuspectable link. The reported Fortnite flaws include a SQL injection, cross-site scripting (XSS) bug, a web application firewall bypass
Kategorie: Hacking & Security

Flight Booking System Flaw Affected Customers of 141 Airlines Worldwide

16 Leden, 2019 - 13:56
Almost half of the fight travelers around the world were found exposed to a critical security vulnerability discovered in online flight ticket booking system that allowed remote hackers to access and modify their travel details and even claim their frequent flyer miles. Israeli network security researcher Noam Rotem discovered the vulnerability when he booked a flight on the Israeli airline
Kategorie: Hacking & Security

Unprotected VOIP Server Exposed Millions of SMS Messages, Call Logs

16 Leden, 2019 - 10:21
A California-based Voice-Over-IP (VoIP) services provider VOIPO has accidentally left tens of gigabytes of its customer data, containing millions of call logs, SMS/MMS messages, and plaintext internal system credentials, publicly accessible to anyone without authentication. VOIPo is one of a leading providers of Voice-Over-IP (VoIP) services in the United States offering reseller VoIP, Cloud
Kategorie: Hacking & Security

5 Popular Web Hosting Services Found Vulnerable to Multiple Flaws

16 Leden, 2019 - 08:15
A security researcher has discovered multiple one-click client-side vulnerabilities in the some of the world's most popular and widely-used web hosting companies that could have put millions of their customers as well as billions of their sites' visitors at risk of hacking. Independent researcher and bug-hunter Paulos Yibelo, who shared his new research with The Hacker News, discovered roughly
Kategorie: Hacking & Security

Two Hackers Charged with Hacking SEC System in Stock-Trading Scheme

15 Leden, 2019 - 20:34
The U.S. authorities have charged two Ukrainian hackers for hacking into the Securities and Exchange Commission's EDGAR filing system and stealing sensitive market-moving reports of companies before their public release. EDGAR, or Electronic Data Gathering, Analysis, and Retrieval, is an online filing system wherein companies submit their financial filings. The system processes around 1.7
Kategorie: Hacking & Security

Reminder: Microsoft to end support for Windows 7 in 1-year from today

15 Leden, 2019 - 16:29
A new reminder for those who are still holding on to the Windows 7 operating system—you have one year left until Microsoft ends support for its 9-year-old operating system. So it's time for you to upgrade your OS and say goodbye to Windows 7, as its five years of extended support will end on January 14, 2020—that's precisely one year from today. After that date, the tech giant will no longer
Kategorie: Hacking & Security

36-Year-Old SCP Clients' Implementation Flaws Discovered

15 Leden, 2019 - 13:32
A set of 36-year-old vulnerabilities has been uncovered in the Secure Copy Protocol (SCP) implementation of many client applications that can be exploited by malicious servers to overwrite arbitrary files in the SCP client target directory unauthorizedly. Session Control Protocol (SCP), also known as secure copy, is a network protocol that allows users to securely transfer files between a
Kategorie: Hacking & Security

How to Secure Your Mid-Size Organization From the Next Cyber Attack

15 Leden, 2019 - 12:51
If you are responsible for the cybersecurity of a medium-sized company, you may assume your organization is too small to be targeted. Well, think again. While the major headlines tend to focus on large enterprises getting breached – such as Sony, Equifax, or Target the actual reality is that small and mid-sized companies are experiencing similar threats. According to Verizon’s 2018 Data
Kategorie: Hacking & Security

Unpatched vCard Flaw Could Let Attackers Hack Your Windows PCs

15 Leden, 2019 - 11:08
A zero-day vulnerability has been discovered and reported in the Microsoft's Windows operating system that, under a certain scenario, could allow a remote attacker to execute arbitrary code on Windows machine. Discovered by security researcher John Page (@hyp3rlinx), the vulnerability was reported to the Microsoft security team through Trend Micro's Zero Day Initiative (ZDI) Program over 6
Kategorie: Hacking & Security

Does WhatsApp Have A Privacy Bug That Could Expose Your Messages?

15 Leden, 2019 - 10:00
In-short conclusion—Whatsapp service or its 45-days deletion policy doesn't seem to have a bug. For detailed logical explanation, please read below. An Amazon employee earlier today tweeted details about an incident that many suggest could be a sign of a huge privacy bug in the most popular end-to-end encrypted Whatsapp messaging app that could expose some of your secret messages under
Kategorie: Hacking & Security

Police Can't Force You To Unlock Your Phone Using Face or Fingerprint Scan

15 Leden, 2019 - 09:17
Can feds force you to unlock your iPhone or Android phone? ..."NO" A Northern California judge has ruled that federal authorities can't force you to unlock your smartphone using your fingerprints or other biometric features such as facial recognition—even with a warrant. The ruling came in the case of two unspecified suspects allegedly using Facebook Messenger to threaten a man with the
Kategorie: Hacking & Security

DDoSing Hospital Networks Landed This Hacktivist in Jail for Over 10 Years

11 Leden, 2019 - 12:54
A simple DDoS attack could land you in jail for 10 years or even more. A Massachusetts man has been sentenced to over 10 years in prison for launching DDoS attacks against the computer network of two healthcare organizations in 2014 to protest the treatment of a teenager at the centers. Beyond serving 121 months in prison, Martin Gottesfeld, 34, was also ordered by U.S. District Judge
Kategorie: Hacking & Security

PyLocky Ransomware Decryption Tool Released — Unlock Files For Free

11 Leden, 2019 - 08:11
If your computer has been infected with PyLocky Ransomware and you are searching for a free ransomware decryption tool to unlock or decrypt your files—your search might end here. Security researcher Mike Bautista at Cisco's Talos cyber intelligence unit have released a free decryption tool that makes it possible for victims infected with the PyLocky ransomware to unlock their encrypted files
Kategorie: Hacking & Security

Over 202 Million Chinese Job Seekers' Details Exposed On the Internet

10 Leden, 2019 - 16:31
Cybersecurity researcher has discovered online a massive database containing records of more than 202 million Chinese citizens that remained accessible to anyone on the Internet without authentication until last week. The unprotected 854.8 gigabytes of the database was stored in an instance of MongoDB, a NoSQL high performance and cross-platform document-oriented database, hosted by an
Kategorie: Hacking & Security