The Hacker News

Syndikovat obsah
The Hacker News has been internationally recognized as a leading news source dedicated to promoting awareness for security experts and hackersUnknownnoreply@blogger.comBlogger10713125
Aktualizace: 14 min 23 sek zpět

Researchers Say China State-backed Hackers Breached a Digital Certificate Authority

15 Listopad, 2022 - 12:03
A suspected Chinese state-sponsored actor breached a digital certificate authority as well as government and defense agencies located in different countries in Asia as part of an ongoing campaign since at least March 2022. Symantec, by Broadcom Software, linked the attacks to an adversarial group it tracks under the name Billbug, citing the use of tools previously attributed to this actor. The Ravie Lakshmanan
Kategorie: Hacking & Security

Google to Pay $391 Million Privacy Fine for Secretly Tracking Users' Location

15 Listopad, 2022 - 07:11
Internet giant Google has agreed to pay a record $391.5 million to settle with 40 states in the U.S. over charges the company misled users about the collection of personal location data. "Google misled its users into thinking they had turned off location tracking in their account settings, when, in fact, Google continued to collect their location information," Oregon Attorney General Ellen Ravie Lakshmanan
Kategorie: Hacking & Security

New "Earth Longzhi" APT Targets Ukraine and Asian Countries with Custom Cobalt Strike Loaders

14 Listopad, 2022 - 14:03
Entities located in East and Southeast Asia as well as Ukraine have been targeted at least since 2020 by a previously undocumented subgroup of APT41, a prolific Chinese advanced persistent threat (APT). Cybersecurity firm Trend Micro, which christened the espionage crew Earth Longzhi, said the actor's long-running campaign can be split into two based on the toolset deployed to attack its victimsRavie Lakshmanan
Kategorie: Hacking & Security

Over 15,000 WordPress Sites Compromised in Malicious SEO Campaign

14 Listopad, 2022 - 11:45
A new malicious campaign has compromised over 15,000 WordPress websites in an attempt to redirect visitors to bogus Q&A portals. "These malicious redirects appear to be designed to increase the authority of the attacker's sites for search engines," Sucuri researcher Ben Martin said in a report published last week, calling it a "clever black hat SEO trick." The search engine poisoning technique Ravie Lakshmanan
Kategorie: Hacking & Security

What is an External Penetration Test?

14 Listopad, 2022 - 11:30
A penetration test (also known as a pentest) is a security assessment that simulates the activities of real-world attackers to identify security holes in your IT systems or applications.  The aim of the test is to understand what vulnerabilities you have, how they could be exploited, and what the impact would be if an attacker was successful. Usually performed first, an external pentest (also The Hacker News
Kategorie: Hacking & Security

New KmsdBot Malware Hijacking Systems for Mining Crypto and Launch DDoS Attacks

14 Listopad, 2022 - 08:14
A newly discovered evasive malware leverages the Secure Shell (SSH) cryptographic protocol to gain entry into targeted systems with the goal of mining cryptocurrency and carrying out distributed denial-of-service (DDoS) attacks. Dubbed KmsdBot by the Akamai Security Intelligence Response Team (SIRT), the Golang-based malware has been found targeting a variety of companies ranging from gaming to Ravie Lakshmanan
Kategorie: Hacking & Security

Worok Hackers Abuse Dropbox API to Exfiltrate Data via Backdoor Hidden in Images

14 Listopad, 2022 - 07:05
A recently discovered cyber espionage group dubbed Worok has been found hiding malware in seemingly innocuous image files, corroborating a crucial link in the threat actor's infection chain. Czech cybersecurity firm Avast said the purpose of the PNG files is to conceal a payload that's used to facilitate information theft. "What is noteworthy is data collection from victims' machines using Ravie Lakshmanan
Kategorie: Hacking & Security

Experts Uncover Two Long-Running Android Spyware Campaigns Targeting Uyghurs

11 Listopad, 2022 - 15:26
Two long-running surveillance campaigns have been found targeting the Uyghur community in China and elsewhere with Android spyware tools designed to harvest sensitive information and track their whereabouts. This encompasses a previously undocumented malware strain called BadBazaar and updated variants of an espionage artifact dubbed MOONSHINE by researchers from the University of Toronto's Ravie Lakshmanan
Kategorie: Hacking & Security

Malicious Google Play Store App Spotted Distributing Xenomorph Banking Trojan

11 Listopad, 2022 - 13:33
Google has removed two new malicious dropper apps that have been detected on the Play Store for Android, one of which posed as a lifestyle app and was caught distributing the Xenomorph banking malware. "Xenomorph is a trojan that steals credentials from banking applications on users' devices," Zscaler ThreatLabz researchers Himanshu Sharma and Viral Gandhi said in an analysis published Thursday.Ravie Lakshmanan
Kategorie: Hacking & Security

VPN vs. DNS Security

11 Listopad, 2022 - 13:30
When you are trying to get another layer of cyber protection that would not require a lot of resources, you are most likely choosing between a VPN service & a DNS Security solution. Let's discuss both.  VPN Explained VPN stands for Virtual Private Networks and basically hides your IP and provides an encrypted server by redirecting your traffic via a server run by a VPN host. It establishes a The Hacker News
Kategorie: Hacking & Security

Multiple High-Severity Flaws Affect Widely Used OpenLiteSpeed Web Server Software

11 Listopad, 2022 - 11:13
Multiple high-severity flaws have been uncovered in the open source OpenLiteSpeed Web Server as well as its enterprise variant that could be weaponized to achieve remote code execution. "By chaining and exploiting the vulnerabilities, adversaries could compromise the web server and gain fully privileged remote code execution," Palo Alto Networks Unit 42 said in a Thursday report. Ravie Lakshmanan
Kategorie: Hacking & Security

Russian-Canadian National Charged Over Involvement in LockBit Ransomware Attacks

11 Listopad, 2022 - 10:19
The U.S. Department of Justice (DoJ) has announced charges against a dual Russian and Canadian national for his alleged participation in LockBit ransomware attacks across the world. The 33-year-old Ontario resident, Mikhail Vasiliev, has been taken into custody and is awaiting extradition to the U.S., where is likely to be sentenced for a maximum of five years in prison. Vasiliev has been Ravie Lakshmanan
Kategorie: Hacking & Security

New Updates for ESET's Advanced Home Solutions

11 Listopad, 2022 - 10:19
It's no secret that antivirus software is as essential to your computer as a power cord. However, the threats don't stop at your devices. For example, criminals trying to steal your data can attack your Wi-Fi router, and phishing attempts can target your email.  ESET's latest consumer product release takes a comprehensive approach to security to guard against a full range of threats. All are The Hacker News
Kategorie: Hacking & Security

Microsoft Blames Russian Hackers for Prestige Ransomware Attacks on Ukraine and Poland

11 Listopad, 2022 - 07:14
Microsoft on Thursday attributed the recent spate of ransomware incidents targeting transportation and logistics sectors in Ukraine and Poland to a threat cluster that shares overlaps with the Russian state-sponsored Sandworm group. The attacks, which were disclosed by the tech giant last month, involved a strain of previously undocumented malware called Prestige and is said to have taken place Ravie Lakshmanan
Kategorie: Hacking & Security

Warning: New Massive Malicious Campaigns Targeting Top Indian Banks' Customers

10 Listopad, 2022 - 16:50
Cybersecurity researchers are warning of "massive phishing campaigns" that distribute five different malware targeting banking users in India. "The bank customers targeted include account subscribers of seven banks, including some of the most well-known banks located in the country and potentially affecting millions of customers," Trend Micro said in a report published this week. Some of the Ravie Lakshmanan
Kategorie: Hacking & Security

Hacker Rewarded $70,000 for Finding Way to Bypass Google Pixel Phones' Lock Screens

10 Listopad, 2022 - 16:07
Google has resolved a high-severity security issue affecting all Pixel smartphones that could be trivially exploited to unlock the devices. The vulnerability, tracked as CVE-2022-20465 and reported by security researcher David Schütz in June 2022, was remediated as part of the search giant's monthly Android update for November 2022. "The issue allowed an attacker with physical access to bypass Ravie Lakshmanan
Kategorie: Hacking & Security

Researchers Uncover PyPI Package Hiding Malicious Code Behind Image File

10 Listopad, 2022 - 13:44
A malicious package discovered on the Python Package Index (PyPI) has been found employing a steganographic trick to conceal malicious code within image files. The package in question, named "apicolor," was uploaded to the Python third-party repository on October 31, 2022, and described as a "Core lib for REST API," according to Israeli cybersecurity firm Check Point. It has since been taken Ravie Lakshmanan
Kategorie: Hacking & Security

Is Cybersecurity Awareness Month Anything More Than PR?

10 Listopad, 2022 - 13:13
Cybersecurity Awareness Month has been going on since 2004. This year, Cybersecurity Awareness Month urged the public, professionals, and industry partners to "see themselves in cyber" in the following ways:  The public, by taking action to stay safe online. Professionals, by joining the cyber workforce. Cyber industry partners, as part of the cybersecurity solution. CISA outlined four "thingsThe Hacker News
Kategorie: Hacking & Security

Citrix Issues Patches for Critical Flaw Affecting ADC and Gateway Products

10 Listopad, 2022 - 11:26
Citrix has released security updates to address a critical authentication bypass flaw in the application delivery controller (ADC) and Gateway products that could be exploited to take control of affected systems. Successful exploitation of the issues could enable an adversary to gain authorized access, perform remote desktop takeover, and even circumvent defenses against login brute-force Ravie Lakshmanan
Kategorie: Hacking & Security

High-Severity Flaw Reported in Critical System Used by Oil and Gas Companies

10 Listopad, 2022 - 08:49
Cybersecurity researchers have disclosed details of a new vulnerability in a system used across oil and gas organizations that could be exploited by an attacker to inject and execute arbitrary code. The high-severity issue, tracked as CVE-2022-0902 (CVSS score: 8.1), is a path-traversal vulnerability in ABB Totalflow flow computers and remote controllers. "Attackers can exploit this flaw to gain
Kategorie: Hacking & Security