The Hacker News

Syndikovat obsah The Hacker News
The Hacker News has been internationally recognized as a leading news source dedicated to promoting awareness for security experts and hackers
Aktualizace: 56 min 42 sek zpět

Why you need to know about Penetration Testing and Compliance Audits?

15 Listopad, 2018 - 17:41
We live in an age where data flows like water, becoming the new life source of our everyday ventures. As such, you can just imagine what all of that entails and the weight that data receive, especially when it comes to a decision making on how to handle this fairly new and arguably invaluable resource. Of course, we are well aware from a very young age that our water needs to be pure, filtered
Kategorie: Hacking & Security

7 New Meltdown and Spectre-type CPU Flaws Affect Intel, AMD, ARM CPUs

15 Listopad, 2018 - 16:31
Disclosed earlier this year, potentially dangerous Meltdown and Spectre vulnerabilities that affected a large family of modern processors proven that speculative execution attacks can be exploited in a trivial way to access highly sensitive information. Since then, several more variants of speculative execution attacks have been discovered, including Spectre-NG, SpectreRSB, Spectre 1.1,
Kategorie: Hacking & Security

Popular AMP Plugin for WordPress Patches Critical Flaw – Update Now

15 Listopad, 2018 - 16:27
A security researcher has disclosed details of a critical vulnerability in one of the popular and widely active plugins for WordPress that could allow a low-privileged attacker to inject malicious code on AMP pages of the targeted website. The vulnerable WordPress plugin in question is "AMP for WP – Accelerated Mobile Pages" that lets websites automatically generate valid accelerated mobile
Kategorie: Hacking & Security

0-Days Found in iPhone X, Samsung Galaxy S9, Xiaomi Mi6 Phones

15 Listopad, 2018 - 12:36
At Pwn2Own 2018 mobile hacking competition held in Tokyo on November 13-14, white hat hackers once again demonstrated that even the fully patched smartphones running the latest version of software from popular smartphone manufacturers can be hacked. Three major flagship smartphones—iPhone X, Samsung Galaxy S9, and Xiaomi Mi6—were among the devices that successfully got hacked at the annual
Kategorie: Hacking & Security

63 New Flaws (Including 0-Days) Windows Users Need to Patch Now

14 Listopad, 2018 - 10:55
It's Patch Tuesday once again…time for another round of security updates for the Windows operating system and other Microsoft products. This month Windows users and system administrators need to immediately take care of a total of 63 security vulnerabilities, of which 12 are rated critical, 49 important and one moderate and one low in severity. <!-- adsense --> Two of the vulnerabilities
Kategorie: Hacking & Security

Another Facebook Bug Could Have Exposed Your Private Information

13 Listopad, 2018 - 19:45
Another security vulnerability has been reported in Facebook that could have allowed attackers to obtain certain personal information about users and their friends, potentially putting the privacy of users of the world's most popular social network at risk. Discovered by cybersecurity researchers from Imperva, the vulnerability resides in the way Facebook search feature displays results for
Kategorie: Hacking & Security

Cynet Review: Simplify Security with a True Security Platform

13 Listopad, 2018 - 13:34
In 1999, Bruce Schneier wrote, "Complexity is the worst enemy of security." That was 19 years ago (!) and since then, cyber security has only become more complex. Today, controls dramatically outnumber staff available to support them. The Bank of America has a $400-million cyber budget to hire security staff and implement a broad array of products. But what if your budget and
Kategorie: Hacking & Security

Top 5 Factors That Increase Cyber Security Salary The Most

12 Listopad, 2018 - 14:12
Our partner Springboard, which provides online courses to help you advance your cybersecurity career with personalized mentorship from industry experts, recently researched current cybersecurity salaries and future earning potential in order to trace a path to how much money you can make. Here's what they found were the most important factors for making sure you earn as much as possible: 1
Kategorie: Hacking & Security

New APIs Suggest WPA3 Wi-Fi Security Support Coming Soon to Windows 10

12 Listopad, 2018 - 13:55
Windows 10 users don't have to wait much longer for the support of latest WPA3 Wi-Fi security standard, a new blog post from Microsoft apparently revealed. The third version of Wi-Fi Protected Access, in-short WPA3, is the next generation of the wireless security protocol that has been designed to make it harder for attackers to hack WiFi password. WPA3 was officially launched earlier this
Kategorie: Hacking & Security

Hacker Who DDoSed Sony, EA and Steam Gaming Servers Pleads Guilty

9 Listopad, 2018 - 09:22
A 23-year-old hacker from Utah pleaded guilty this week to launching a series of denial-of-service (DoS) attacks against multiple online services, websites, and online gaming companies between 2013 and 2014. According to a Justice Department (DoJ) press release, Austin Thompson, a.k.a. "DerpTroll," took down servers of several major gaming platforms including Electronic Arts' Origin service,
Kategorie: Hacking & Security

Flaws in Popular Self-Encrypting SSDs Let Attackers Decrypt Data

8 Listopad, 2018 - 20:09
We all have something to hide, something to protect. But if you are also relying on self-encrypting drives for that, then you should read this news carefully. Security researchers have discovered multiple critical vulnerabilities in some of the popular self-encrypting solid state drives (SSD) that could allow an attacker to decrypt disk encryption and recover protected data without knowing
Kategorie: Hacking & Security

Here's How Hackers Could Have Spied On Your DJI Drone Account

8 Listopad, 2018 - 20:08
Cybersecurity researchers at Check Point today revealed details of a potential dangerous vulnerability in DJI Drone web app that could have allowed attackers access user accounts and synced sensitive information within it, including flight records, location, live video camera feed, and photos taken during a flight. Thought the vulnerability was discovered and responsibly reported by the
Kategorie: Hacking & Security

New Android API Lets Developers Push Updates Within their Apps

8 Listopad, 2018 - 16:21
You might have read somewhere online today that Google is granting Android app developers powers to forcefully install app updates…but it is not true. Instead, the tech giant is providing a new feature that will help users to have up-to-date Android apps all the time and yes, it's optional. Along with the launch of a number of new tools and features at its Android Dev Summit 2018, Google has
Kategorie: Hacking & Security

StatCounter Analytics Code Hijacked to Steal Bitcoins from Cryptocurrency Users

8 Listopad, 2018 - 12:13
Late last week an unknown hacker or a group of hackers successfully targeted a cryptocurrency exchange with an aim to steal Bitcoins by compromising the web analytics service it was using. ESET malware researcher Matthieu Faou this weekend spotted malicious JavaScript code on up to 700,000 websites that were bundled with the traffic tracking code from the leading web analytics platform
Kategorie: Hacking & Security

Unpatched VirtualBox Zero-Day Vulnerability and Exploit Released Online

8 Listopad, 2018 - 10:25
An independent exploit developer and vulnerability researcher has publicly disclosed a zero-day vulnerability in VirtualBox—a popular open source virtualization software developed by Oracle—that could allow a malicious program to escape virtual machine (guest OS) and execute code on the operating system of the host machine. The vulnerability occurs due to memory corruption issues and affects
Kategorie: Hacking & Security

Popular WooCommerce WordPress Plugin Patches Critical Vulnerability

7 Listopad, 2018 - 10:01
If you own an eCommerce website built on WordPress and powered by WooCommerce plugin, then beware of a new vulnerability that could compromise your online store. Simon Scannell, a researcher at RIPS Technologies GmbH, discovered an arbitrary file deletion vulnerability in the popular WooCommerce plugin that could allow a malicious or compromised privileged user to gain full control over the
Kategorie: Hacking & Security

The Pirate Bay Like 9 Best Torrent Sites (Updated Nov 2018)

6 Listopad, 2018 - 19:35
The Pirate Bay torrent search engine is one of the world's most famous and best torrent sites. But it has been caught second time mining digital currencies using visitors' computers. Like many popular torrent sites, the pirate bay also uses mining to make money without informing its users. But this time a tiny message on its homepage clarifies some terms of service but gives no option to
Kategorie: Hacking & Security

Apple's New MacBook Disconnects Microphone "Physically" When Lid is Closed

4 Listopad, 2018 - 18:51
Apple introduces a new privacy feature for all new MacBooks that "at some extent" will prevent hackers and malicious applications from eavesdropping on your conversations. Apple's custom T2 security chip in the latest MacBooks includes a new hardware feature that physically disconnects the MacBook's built-in microphone whenever the user closes the lid, the company revealed yesterday at its event
Kategorie: Hacking & Security

New Intel CPU Flaw Exploits Hyper-Threading to Steal Encrypted Data

4 Listopad, 2018 - 10:24
A team of security researchers has discovered another serious side-channel vulnerability in Intel CPUs that could allow an attacker to sniff out sensitive protected data, like passwords and cryptographic keys, from other processes running in the same CPU core with simultaneous multi-threading feature enabled. The vulnerability, codenamed PortSmash (CVE-2018-5407), has joined the list of other
Kategorie: Hacking & Security

Accused CIA Leaker Faces New Charges of Leaking Information From Prison

2 Listopad, 2018 - 10:16
Joshua Adam Schulte, a 30-year-old former CIA computer programmer who was indicted over four months ago for masterminding the largest leak of classified information in the agency's history, has now been issued three new charges. The news comes just hours after Schulte wrote a letter to the federal judge presiding over his case, accusing officials at Manhattan Metropolitan Correctional Center of
Kategorie: Hacking & Security