The Hacker News

Syndikovat obsah
The Hacker News is the most popular, independent and trusted source for the latest news headlines on cybersecurity, hacking, computer security, cybercrime, privacy, vulnerabilities and technology for all businesses, information security professionals and hackers worldwide.Unknownnoreply@blogger.comBlogger7935125
Aktualizace: 55 min 52 sek zpět

The Rise of the Open Bug Bounty Project

6 Únor, 2020 - 09:05
Can you imagine launching a global bug bounty platform with almost 500,000 submissions and 13,000 researchers without consuming a cent from venture capitalists? If not, this success story is for you. The once skyrocketing bug bounty industry seems to be not in the best shape today. While prominent security researchers are talking about a growing multitude of hurdles they experience with the The Hacker News
Kategorie: Hacking & Security

5 High Impact Flaws Affect Cisco Routers, Switches, IP Phones and Cameras

5 Únor, 2020 - 21:46
Several Cisco-manufactured network equipments have been found vulnerable to five new security vulnerabilities that could allow hackers to take complete control over them, and subsequently, over the enterprise networks they power. Four of the five high-severity bugs are remote code execution issues affecting Cisco routers, switches, and IP cameras, whereas the fifth vulnerability is a Swati Khandelwal
Kategorie: Hacking & Security

Exfiltrating Data from Air-Gapped Computers Using Screen Brightness

5 Únor, 2020 - 16:42
It may sound creepy and unreal, but hackers can also exfiltrate sensitive data from your computer by simply changing the brightness of the screen, new cybersecurity research shared with The Hacker News revealed. In recent years, several cybersecurity researchers demonstrated innovative ways to covertly exfiltrate data from a physically isolated air-gapped computer that can't connect
Kategorie: Hacking & Security

Prepare for Cisco, CompTIA, and More IT Certifications with this Bundle

5 Únor, 2020 - 13:55
Exams are pretty important in professional IT. You can have all the practical knowledge in the world, but technical recruiters want to see certificates. If you want to improve your resume, the Complete 2020 IT Certification Exam Prep Mega Bundle will help you ace nine of the most important exams. You can pick up the training now for only $39 via THN Deals. Over the next few years, the areas The Hacker News
Kategorie: Hacking & Security

Flaw in Philips Smart Light Bulbs Exposes Your WiFi Network to Hackers

5 Únor, 2020 - 12:16
There are over a hundred potential ways hackers can ruin your life by having access to your WiFi network that's also connected to your computers, smartphones, and other smart devices. Whether it's about exploiting operating system and software vulnerabilities or manipulating network traffic, every attack relies on the reachability between an attacker and the targeted devices. In recent years,
Kategorie: Hacking & Security

This WhatsApp Bug Could Have Let Attackers Access Files On Your PCs

4 Únor, 2020 - 21:22
A cybersecurity researcher today disclosed technical details of multiple high severity vulnerabilities he discovered in WhatsApp, which, if exploited, could have allowed remote attackers to compromise the security of billions of users in different ways. When combined together, the reported issues could have even enabled hackers to remotely steal files from the Windows or Mac computer of a
Kategorie: Hacking & Security

Google Accidentally Shared Private Videos of Some Users With Others

4 Únor, 2020 - 16:59
Google might have mistakenly shared your private videos saved on the company's servers with other users, the tech giant admitted yesterday in a security notification sent quietly to an undisclosed number of affected users. The latest privacy mishap is the result of a "technical issue" in Google's Takeout, a service that backs up all your Google account data into a single file and then lets Wang Wei
Kategorie: Hacking & Security

Hackers Exploited Twitter Bug to Find Linked Phone Numbers of Users

4 Únor, 2020 - 11:43
Twitter today issued a warning revealing that attackers abused a legitimate functionality on its platform to unauthorizedly determine phone numbers associated with millions of its users' accounts. According to Twitter, the vulnerability resided in one of the APIs that has been designed to make it easier for users to find people they may already know on Twitter by matching phone numbers saved
Kategorie: Hacking & Security

Sudo Bug Lets Non-Privileged Linux and macOS Users Run Commands as Root

3 Únor, 2020 - 19:10
Joe Vennix of Apple security has found another significant vulnerability in sudo utility that under a specific configuration could allow low privileged users or malicious programs to execute arbitrary commands with administrative ('root') privileges on Linux or macOS systems. Sudo is one of the most important, powerful, and commonly used utilities that comes as a core command pre-installed on
Kategorie: Hacking & Security

Wawa Breach: Hackers Put 30 Million Stolen Payment Card Details for Sale

30 Leden, 2020 - 16:38
Remember the recent payment card breach at Wawa convenience stores? If you're among those millions of customers who shopped at any of 850 Wawa stores last year but haven't yet hotlisted your cards, it's high time to take immediate action. That's because hackers have finally put up payment card details of more than 30 million Wawa breach victims on sale at Joker's Stash, one of the largest
Kategorie: Hacking & Security

Microsoft Azure Flaws Could Have Let Hackers Take Over Cloud Servers

30 Leden, 2020 - 13:37
Cybersecurity researchers at Check Point today disclosed details of two recently patched potentially dangerous vulnerabilities in Microsoft Azure services that, if exploited, could have allowed hackers to target several businesses that run their web and mobile apps on Azure. Azure App Service is a fully-managed integrated service that enables users to create web and mobile apps for any
Kategorie: Hacking & Security

Critical OpenSMTPD Bug Opens Linux and OpenBSD Mail Servers to Hackers

30 Leden, 2020 - 10:07
Cybersecurity researchers have discovered a new critical vulnerability (CVE-2020-7247) in the OpenSMTPD email server that could allow remote attackers to take complete control over BSD and many Linux based servers. OpenSMTPD is an open-source implementation of the server-side SMTP protocol that was initially developed as part of the OpenBSD project but now comes pre-installed on many
Kategorie: Hacking & Security

How to Clear Data Facebook Collects About You from Other Sites and Apps

29 Leden, 2020 - 19:37
Facebook is one of the world's biggest advertising platforms, and that's because it knows a lot about you, me, and everyone. Facebook uses many tools to track people across the Internet, whether they have an account with the social networking site or not, and most of them rely on the online activity data other apps and websites share with Facebook. Everything we do online generates an
Kategorie: Hacking & Security

Cynet Empowers IT Resellers and Service Providers to Become Fully Qualified MSSPs

29 Leden, 2020 - 13:50
As cyber incidents increase in scope and impact, more and more organizations come to realize that outsourcing their defenses is the best practice—significantly increasing the Managed Security Service Provider (MSSP) market opportunities. Until recently, IT integrators, VARs, and MSPs haven't participated in the growing and profitable MSSP market as it entailed massive investments in
Kategorie: Hacking & Security

New 'CacheOut' Attack Leaks Data from Intel CPUs, VMs and SGX Enclave

28 Leden, 2020 - 17:36
Another month, another speculative execution vulnerability found in Intel processors. If your computer is running any modern Intel CPU built before October 2018, it's likely vulnerable to a newly discovered hardware issue that could allow attackers to leak sensitive data from the OS kernel, co-resident virtual machines, and even from Intel's secured SGX enclave. Dubbed CacheOut a.k.a. L1 Data
Kategorie: Hacking & Security

Zoom Bug Could Have Let Uninvited People Join Private Meetings

28 Leden, 2020 - 17:08
If you use Zoom to host your remote online meetings, you need to read this piece carefully. The massively popular video conferencing software has patched a security loophole that could have allowed anyone to remotely eavesdrop on unprotected active meetings, potentially exposing private audio, video, and documents shared throughout the session. Besides hosting password-protected virtual
Kategorie: Hacking & Security

Interpol Arrests 3 Indonesian Credit Card Hackers for Magecart Attacks

27 Leden, 2020 - 12:48
The Indonesian National Police in a joint press conference with Interpol and cybersecurity firm Group-IB earlier today announced the arrest of three Magecart-style Indonesian hackers who had compromised hundreds of international e-commerce websites and stolen payment card details of their online shoppers. Dubbed 'Operation Night Fury,' the investigation was led by Interpol's ASEAN Cyber
Kategorie: Hacking & Security