The Hacker News

Syndikovat obsah The Hacker News
The Hacker News has been internationally recognized as a leading news source dedicated to promoting awareness for security experts and hackers
Aktualizace: 3 min 12 sek zpět

Experts Sound Alarm On New Android Malware Sold On Hacking Forums

13 Leden, 2021 - 06:24
Cybersecurity researchers have exposed the operations of an Android malware vendor who teamed up with a second threat actor to market and sell a remote access Trojan (RAT) capable of device takeover and exfiltration of photos, locations, contacts, and messages from popular apps such as Facebook, Instagram, WhatsApp, Skype, Telegram, Kik, Line, and Google Messages. The vendor, who goes by the
Kategorie: Hacking & Security

Microsoft Issues Patches for Defender Zero-Day and 82 Other Windows Flaws

13 Leden, 2021 - 06:01
For the first patch Tuesday of 2021, Microsoft released security updates addressing a total of 83 flaws spanning as many as 11 products and services, including an actively exploited zero-day vulnerability. The latest security patches cover Microsoft Windows, Edge browser, ChakraCore, Office and Microsoft Office Services, and Web Apps, Visual Studio, Microsoft Malware Protection Engine, .NET Core
Kategorie: Hacking & Security

Warning — 5 New Trojanized Android Apps Spying On Users In Pakistan

12 Leden, 2021 - 15:10
Cybersecurity researchers took the wraps off a new spyware operation targeting users in Pakistan that leverages trojanized versions of legitimate Android apps to carry out covert surveillance and espionage. Designed to masquerade apps such as the Pakistan Citizen Portal, a Muslim prayer-clock app called Pakistan Salat Time, Mobile Packages Pakistan, Registered SIMs Checker, and TPL Insurance,
Kategorie: Hacking & Security

Unveiled: SUNSPOT Malware Was Used to Inject SolarWinds Backdoor

12 Leden, 2021 - 07:29
As the investigation into the SolarWinds supply-chain attack continues, cybersecurity researchers have disclosed a third malware strain that was deployed into the build environment to inject the backdoor into the company's Orion network monitoring platform. Called "Sunspot," the malignant tool adds to a growing list of previously disclosed malicious software such as Sunburst and Teardrop. "This
Kategorie: Hacking & Security

Researchers Find Links Between Sunburst and Russian Kazuar Malware

12 Leden, 2021 - 05:36
Cybersecurity researchers, for the first time, may have found a potential connection between the backdoor used in the SolarWinds hack to a previously known malware strain. In new research published by Kaspersky researchers today, the cybersecurity firm said it discovered several features that overlap with another backdoor known as Kazuar, a .NET-based malware first documented by Palo Alto
Kategorie: Hacking & Security

Russian Hacker Gets 12-Years Prison for Massive JP Morgan Chase Hack

11 Leden, 2021 - 08:11
A U.S. court on Thursday sentenced a 37-year-old Russian to 12 years in prison for perpetrating an international hacking campaign that resulted in the heist of a trove of personal information from several financial institutions, brokerage firms, financial news publishers, and other American companies. Andrei Tyurin was charged with computer intrusion, wire fraud, bank fraud, and illegal online
Kategorie: Hacking & Security

ALERT: North Korean hackers targeting South Korea with RokRat Trojan

8 Leden, 2021 - 21:00
A North Korean hacking group has been found deploying the RokRat Trojan in a new spear-phishing campaign targeting the South Korean government. Attributing the attack to APT37 (aka Starcruft, Ricochet Chollima, or Reaper), Malwarebytes said it identified a malicious document last December that, when opened, executes a macro in memory to install the aforementioned remote access tool (RAT). "The
Kategorie: Hacking & Security

New Attack Could Let Hackers Clone Your Google Titan 2FA Security Keys

8 Leden, 2021 - 20:59
Hardware security keys—such as those from Google and Yubico—are considered the most secure means to protect accounts from phishing and takeover attacks. But a new research published on Thursday demonstrates how an adversary in possession of such a two-factor authentication (2FA) device can clone it by exploiting an electromagnetic side-channel in the chip embedded in it. The vulnerability (
Kategorie: Hacking & Security

WhatsApp Will Disable Your Account If You Don't Agree Sharing Data With Facebook

8 Leden, 2021 - 16:27
"Respect for your privacy is coded into our DNA," opens WhatsApp's privacy policy. "Since we started WhatsApp, we've aspired to build our Services with a set of strong privacy principles in mind." But come February 8, 2021, this opening statement will no longer find a place in the policy. The Facebook-owned messaging service is alerting users in India of an update to its terms of service and 
Kategorie: Hacking & Security

How Does Your AD Password Policy Compare to NIST's Password Recommendations?

8 Leden, 2021 - 08:02
End-user passwords are one of the weakest components of your overall security protocols. Most users tend to reuse passwords across work and personal accounts. They may also choose relatively weak passwords that satisfy company password policies but can be easily guessed or brute-forced. Your users may also inadvertently use breached passwords for their corporate account password. The National
Kategorie: Hacking & Security

SolarWinds Hackers Also Accessed U.S. Justice Department's Email Server

7 Leden, 2021 - 16:49
The U.S. Department of Justice on Wednesday became the latest government agency in the country to admit its internal network was compromised as part of the SolarWinds supply chain attack. "On December 24, 2020, the Department of Justice's Office of the Chief Information Officer (OCIO) learned of previously unknown malicious activity linked to the global SolarWinds incident that has affected
Kategorie: Hacking & Security

Hackers Using Fake Trump's Scandal Video to Spread QNode Malware

6 Leden, 2021 - 15:00
Cybesecurity researchers today revealed a new malspam campaign that distributes a remote access Trojan (RAT) by purporting to contain a sex scandal video of U.S. President Donald Trump. The emails, which carry with the subject line "GOOD LOAN OFFER!!," come attached with a Java archive (JAR) file called "TRUMP_SEX_SCANDAL_VIDEO.jar," which, when downloaded, installs Qua or Quaverse RAT (QRAT)
Kategorie: Hacking & Security

FBI, CISA, NSA Officially Blame Russia for SolarWinds Cyber Attack

6 Leden, 2021 - 08:17
The U.S. government on Tuesday formally pointed fingers at the Russian government for orchestrating the massive SolarWinds supply chain attack that came to light early last month. "This work indicates that an Advanced Persistent Threat (APT) actor, likely Russian in origin, is responsible for most or all of the recently discovered, ongoing cyber compromises of both government and
Kategorie: Hacking & Security

Google Speech-to-Text API Can Help Attackers Easily Bypass Google reCAPTCHA

6 Leden, 2021 - 06:55
A three-year-old attack technique to bypass Google's audio reCAPTCHA by using its own Speech-to-Text API has been found to still work with 97% accuracy. Researcher Nikolai Tschacher disclosed his findings in a proof-of-concept (PoC) of the attack on January 2. "The idea of the attack is very simple: You grab the MP3 file of the audio reCAPTCHA and you submit it to Google's own speech-to-text API
Kategorie: Hacking & Security

Warning: Cross-Platform ElectroRAT Malware Targeting Cryptocurrency Users

5 Leden, 2021 - 16:08
Cybersecurity researchers today revealed a wide-ranging scam targeting cryptocurrency users that began as early as January last year to distribute trojanized applications to install a previously undetected remote access tool on target systems. Called ElectroRAT by Intezer, the RAT is written from ground-up in Golang and designed to target multiple operating systems such as Windows, Linux, and
Kategorie: Hacking & Security

Healthcare Industry Witnessed 45% Spike in Cyber Attacks Since Nov 20

5 Leden, 2021 - 12:02
Cyberattacks targeting healthcare organizations have spiked by 45% since November 2020 as COVID-19 cases continue to increase globally. According to a new report published by Check Point Research today and shared with The Hacker News, this increase has made the sector the most targeted industry by cybercriminals when compared to an overall 22% increase in cyberattacks across all industry sectors
Kategorie: Hacking & Security

Ticketmaster To Pay $10 Million Fine For Hacking A Rival Company

5 Leden, 2021 - 08:45
Ticketmaster has agreed to pay a $10 million fine after being charged with illegally accessing computer systems of a competitor repeatedly between 2013 and 2015 in an attempt to "cut [the company] off at the knees." A subsidiary of Live Nation, the California-based ticket sales and distribution company used the stolen information to gain an advantage over CrowdSurge — which merged with Songkick
Kategorie: Hacking & Security

Secret Backdoor Account Found in Several Zyxel Firewall, VPN Products

4 Leden, 2021 - 18:12
Zyxel has released a patch to address a critical vulnerability in its firmware concerning a hardcoded, undocumented secret account that could be abused by an attacker to login with administrative privileges and compromise its networking devices. The flaw, tracked as CVE-2020-29583 (CVSS score 7.8), affects version 4.60 present in a wide-range of Zyxel devices, including Unified Security Gateway
Kategorie: Hacking & Security

British Court Rejects U.S. Request to Extradite WikiLeaks' Julian Assange

4 Leden, 2021 - 13:37
A British court has rejected the U.S. government's request to extradite Wikileaks founder Julian Assange to the country on charges pertaining to illegally obtaining and sharing classified material related to national security. In a hearing at Westminster Magistrates' Court today, Judge Vanessa Baraitser denied the extradition on the grounds that Assange is a suicide risk and extradition to the
Kategorie: Hacking & Security

Microsoft Says SolarWinds Hackers Accessed Some of Its Source Code

1 Leden, 2021 - 05:50
Microsoft on Thursday revealed that the threat actors behind the SolarWinds supply chain attack were able to gain access to a small number of internal accounts and escalate access inside its internal network. The "very sophisticated nation-state actor" used the unauthorized access to view, but not modify, the source code present in its repositories, the company said. <!--adsense--> "We detected
Kategorie: Hacking & Security