The Hacker News

Syndikovat obsah
The Hacker News has been internationally recognized as a leading news source dedicated to promoting awareness for security experts and [email protected]
Aktualizace: 56 min 38 sek zpět

Researchers Uncover UEFI Vulnerability Affecting Multiple Intel CPUs

20 Červen, 2024 - 16:22
Cybersecurity researchers have disclosed details of a now-patched security flaw in Phoenix SecureCore UEFI firmware that affects multiple families of Intel Core desktop and mobile processors. Tracked as CVE-2024-0762 (CVSS score: 7.5), the "UEFIcanhazbufferoverflow" vulnerability has been described as a case of a buffer overflow stemming from the use of an unsafe variable in the Trusted PlatformNewsroomhttp://www.blogger.com/profile/[email protected]
Kategorie: Hacking & Security

French Diplomatic Entities Targeted in Russian-Linked Cyber Attacks

20 Červen, 2024 - 16:00
State-sponsored actors with ties to Russia have been linked to targeted cyber attacks aimed at French diplomatic entities, the country's information security agency ANSSI said in an advisory. The attacks have been attributed to a cluster tracked by Microsoft under the name Midnight Blizzard (formerly Nobelium), which overlaps with activity tracked as APT29, BlueBravo, Cloaked Ursa, Cozy Bear,
Kategorie: Hacking & Security

French Diplomatic Entities Targeted in Russian-Linked Cyber Attacks

20 Červen, 2024 - 16:00
State-sponsored actors with ties to Russia have been linked to targeted cyber attacks aimed at French diplomatic entities, the country's information security agency ANSSI said in an advisory. The attacks have been attributed to a cluster tracked by Microsoft under the name Midnight Blizzard (formerly Nobelium), which overlaps with activity tracked as APT29, BlueBravo, Cloaked Ursa, Cozy Bear, Newsroomhttp://www.blogger.com/profile/[email protected]
Kategorie: Hacking & Security

Tool Overload: Why MSPs Are Still Drowning with Countless Cybersecurity Tools in 2024

20 Červen, 2024 - 12:49
Highlights Complex Tool Landscape: Explore the wide array of cybersecurity tools used by MSPs, highlighting the common challenge of managing multiple systems that may overlap in functionality but lack integration.Top Cybersecurity Challenges: Discuss the main challenges MSPs face, including integration issues, limited visibility across systems, and the high cost and complexity of maintaining
Kategorie: Hacking & Security

Tool Overload: Why MSPs Are Still Drowning with Countless Cybersecurity Tools in 2024

20 Červen, 2024 - 12:49
Highlights Complex Tool Landscape: Explore the wide array of cybersecurity tools used by MSPs, highlighting the common challenge of managing multiple systems that may overlap in functionality but lack integration.Top Cybersecurity Challenges: Discuss the main challenges MSPs face, including integration issues, limited visibility across systems, and the high cost and complexity of maintaining The Hacker Newshttp://www.blogger.com/profile/[email protected]
Kategorie: Hacking & Security

Chinese Cyber Espionage Targets Telecom Operators in Asia Since 2021

20 Červen, 2024 - 12:22
Cyber espionage groups associated with China have been linked to a long-running campaign that has infiltrated several telecom operators located in a single Asian country at least since 2021. "The attackers placed backdoors on the networks of targeted companies and also attempted to steal credentials," the Symantec Threat Hunter Team, part of Broadcom, said in a report shared with The Hacker News
Kategorie: Hacking & Security

Chinese Cyber Espionage Targets Telecom Operators in Asia Since 2021

20 Červen, 2024 - 12:22
Cyber espionage groups associated with China have been linked to a long-running campaign that has infiltrated several telecom operators located in a single Asian country at least since 2021. "The attackers placed backdoors on the networks of targeted companies and also attempted to steal credentials," the Symantec Threat Hunter Team, part of Broadcom, said in a report shared with The Hacker NewsNewsroomhttp://www.blogger.com/profile/[email protected]
Kategorie: Hacking & Security

New Rust-based Fickle Malware Uses PowerShell for UAC Bypass and Data Exfiltration

20 Červen, 2024 - 10:09
A new Rust-based information stealer malware called Fickle Stealer has been observed being delivered via multiple attack chains with the goal of harvesting sensitive information from compromised hosts. Fortinet FortiGuard Labs said it's aware of four different distribution methods -- namely VBA dropper, VBA downloader, link downloader, and executable downloader -- with some of them using a
Kategorie: Hacking & Security

New Rust-based Fickle Malware Uses PowerShell for UAC Bypass and Data Exfiltration

20 Červen, 2024 - 10:09
A new Rust-based information stealer malware called Fickle Stealer has been observed being delivered via multiple attack chains with the goal of harvesting sensitive information from compromised hosts. Fortinet FortiGuard Labs said it's aware of four different distribution methods -- namely VBA dropper, VBA downloader, link downloader, and executable downloader -- with some of them using a Newsroomhttp://www.blogger.com/profile/[email protected]
Kategorie: Hacking & Security

Experts Uncover New Evasive SquidLoader Malware Targeting Chinese Organizations

20 Červen, 2024 - 08:34
Cybersecurity researchers have uncovered a new evasive malware loader named SquidLoader that spreads via phishing campaigns targeting Chinese organizations. AT&T LevelBlue Labs, which first observed the malware in late April 2024, said it incorporates features that are designed to thwart static and dynamic analysis and ultimately evade detection. Attack chains leverage phishing emails that
Kategorie: Hacking & Security

Experts Uncover New Evasive SquidLoader Malware Targeting Chinese Organizations

20 Červen, 2024 - 08:34
Cybersecurity researchers have uncovered a new evasive malware loader named SquidLoader that spreads via phishing campaigns targeting Chinese organizations. AT&T LevelBlue Labs, which first observed the malware in late April 2024, said it incorporates features that are designed to thwart static and dynamic analysis and ultimately evade detection. Attack chains leverage phishing emails that Newsroomhttp://www.blogger.com/profile/[email protected]
Kategorie: Hacking & Security

Kraken Crypto Exchange Hit by $3 Million Theft Exploiting Zero-Day Flaw

19 Červen, 2024 - 18:40
Crypto exchange Kraken revealed that an unnamed security researcher exploited an "extremely critical" zero-day flaw in its platform to steal $3 million in digital assets and refused to return them. Details of the incident were shared by Kraken's Chief Security Officer, Nick Percoco, on X (formerly Twitter), stating it received a Bug Bounty program alert from the researcher about a bug that "
Kategorie: Hacking & Security

Kraken Crypto Exchange Hit by $3 Million Theft Exploiting Zero-Day Flaw

19 Červen, 2024 - 18:40
Crypto exchange Kraken revealed that an unnamed security researcher exploited an "extremely critical" zero-day flaw in its platform to steal $3 million in digital assets and refused to return them. Details of the incident were shared by Kraken's Chief Security Officer, Nick Percoco, on X (formerly Twitter), stating it received a Bug Bounty program alert from the researcher about a bug that "Newsroomhttp://www.blogger.com/profile/[email protected]
Kategorie: Hacking & Security

UNC3886 Uses Fortinet, VMware 0-Days and Stealth Tactics in Long-Term Spying

19 Červen, 2024 - 17:09
The China-nexus cyber espionage actor linked to the zero-day exploitation of security flaws in Fortinet, Ivanti, and VMware devices has been observed utilizing multiple persistence mechanisms in order to maintain unfettered access to compromised environments. "Persistence mechanisms encompassed network devices, hypervisors, and virtual machines, ensuring alternative channels remain available
Kategorie: Hacking & Security

UNC3886 Uses Fortinet, VMware 0-Days and Stealth Tactics in Long-Term Spying

19 Červen, 2024 - 17:09
The China-nexus cyber espionage actor linked to the zero-day exploitation of security flaws in Fortinet, Ivanti, and VMware devices has been observed utilizing multiple persistence mechanisms in order to maintain unfettered access to compromised environments. "Persistence mechanisms encompassed network devices, hypervisors, and virtual machines, ensuring alternative channels remain available Newsroomhttp://www.blogger.com/profile/[email protected]
Kategorie: Hacking & Security

New Case Study: Unmanaged GTM Tags Become a Security Nightmare

19 Červen, 2024 - 13:03
Are your tags really safe with Google Tag Manager? If you've been thinking that using GTM means that your tracking tags and pixels are safely managed, then it might be time to think again. In this article we look at how a big-ticket seller that does business on every continent came unstuck when it forgot that you can’t afford to allow tags to go unmanaged or become misconfigured.  Read the
Kategorie: Hacking & Security

New Case Study: Unmanaged GTM Tags Become a Security Nightmare

19 Červen, 2024 - 13:03
Are your tags really safe with Google Tag Manager? If you've been thinking that using GTM means that your tracking tags and pixels are safely managed, then it might be time to think again. In this article we look at how a big-ticket seller that does business on every continent came unstuck when it forgot that you can’t afford to allow tags to go unmanaged or become misconfigured.  Read the The Hacker Newshttp://www.blogger.com/profile/[email protected]
Kategorie: Hacking & Security

New Threat Actor 'Void Arachne' Targets Chinese Users with Malicious VPN Installers

19 Červen, 2024 - 12:23
Chinese-speaking users are the target of a never-before-seen threat activity cluster codenamed Void Arachne that employs malicious Windows Installer (MSI) files for virtual private networks (VPNs) to deliver a command-and-control (C&C) framework called Winos 4.0. "The campaign also promotes compromised MSI files embedded with nudifiers and deepfake pornography-generating software, as well as
Kategorie: Hacking & Security

New Threat Actor 'Void Arachne' Targets Chinese Users with Malicious VPN Installers

19 Červen, 2024 - 12:23
Chinese-speaking users are the target of a never-before-seen threat activity cluster codenamed Void Arachne that employs malicious Windows Installer (MSI) files for virtual private networks (VPNs) to deliver a command-and-control (C&C) framework called Winos 4.0. "The campaign also promotes compromised MSI files embedded with nudifiers and deepfake pornography-generating software, as well asNewsroomhttp://www.blogger.com/profile/[email protected]
Kategorie: Hacking & Security

Warning: Markopolo's Scam Targeting Crypto Users via Fake Meeting Software

19 Červen, 2024 - 12:08
A threat actor who goes by alias markopolo has been identified as behind a large-scale cross-platform scam that targets digital currency users on social media with information stealer malware and carries out cryptocurrency theft. The attack chains involve the use of a purported virtual meeting software named Vortax (and 23 other apps) that are used as a conduit to deliver Rhadamanthys, StealC,
Kategorie: Hacking & Security