There are new articles available, click to refresh the page.
Today β€” 3 December 2021The Hacker News

Researchers Detail How Pakistani Hackers Targeting Indian and Afghan Governments

3 December 2021 at 13:54
A Pakistani threat actor successfully socially engineered a number of ministries in Afghanistan and a shared government computer in India to steal sensitive Google, Twitter, and Facebook credentials from its targets and stealthily obtain access to government portals. Malwarebytes' latest findings go into detail about the new tactics and tools adopted by the APT group known asΒ SideCopy, which is

New Malvertising Campaigns Spreading Backdoors, Malicious Chrome Extensions

3 December 2021 at 10:59
A series of malicious campaigns have been leveraging fake installers of popular apps and games such as Viber, WeChat, NoxPlayer, and Battlefield as a lure to trick users into downloading a new backdoor and an undocumented malicious Google Chrome extension with the goal of stealing credentials and data stored in the compromised systems as well as maintaining persistent remote access. Cisco Talos

New Payment Data Stealing Malware Hides in Nginx Process on Linux Servers

3 December 2021 at 08:06
E-commerce platforms in the U.S., Germany, and France have come under attack from a new form of malware that targets Nginx servers in an attempt to masquerade its presence and slip past detection by security solutions. "This novel code injects itself into a host Nginx application and is nearly invisible," Sansec Threat Research teamΒ saidΒ in a new report. "The parasite is used to steal data from

CISA Warns of Actively Exploited Critical Zoho ManageEngine ServiceDesk Vulnerability

3 December 2021 at 05:24
The U.S. Federal Bureau of Investigation (FBI) and the Cybersecurity and Infrastructure Security Agency (CISA) are warning of active exploitation of a newly patched flaw in Zoho's ManageEngine ServiceDesk Plus product to deploy web shells and carry out an array of malicious activities. Tracked asΒ CVE-2021-44077Β (CVSS score: 9.8), the issue relates to an unauthenticated, remote code execution
Yesterday β€” 2 December 2021The Hacker News

Meta Expands Facebook Protect Program to Activists, Journalists, Government Officials

2 December 2021 at 14:06
Meta, the company formerly known as Facebook, on Thursday announced an expansion of its Facebook Protect security program to include human rights defenders, activists, journalists, and government officials who are more likely to be targeted by bad actors across its social media platforms. "These people are at the center of critical communities for public debate," said Nathaniel Gleicher, head of

Researches Detail 17 Malicious Frameworks Used to Attack Air-Gapped Networks

2 December 2021 at 11:36
Four different malicious frameworks designed to attack air-gapped networks were detected in the first half of 2020 alone, bringing the total number of such toolkits to 17 and offering adversaries a pathway to cyber espionage and exfiltrate classified information. "All frameworks are designed to perform some form of espionage, [and] all the frameworks used USB drives as the physical transmission

Researchers Warn Iranian Users of Widespread SMS Phishing Campaigns

2 December 2021 at 07:55
Socially engineered SMS messages are being used to install malware on Android devices as part of a widespread phishing campaign that impersonates the Iranian government and social security services to make away with credit card details and steal funds from victims' bank accounts. Unlike other variants ofΒ banking malwareΒ that bank of overlay attacks to capture sensitive data without the knowledge

Russian Man Gets 60 Months Jail for Providing Bulletproof Hosting to Cyber Criminals

2 December 2021 at 05:34
A Russian national charged with providing bulletproof hosting services for cybercriminals, who used the platform to spread malware and attack U.S. organizations and financial institutions between 2009 to 2015, has received a 60-month prison sentence. 34-year-old Aleksandr Grichishkin, along with Andrei Skvortsov, founded the bulletproof hosting service and rented its infrastructure to other

Critical Bug in Mozilla’s NSS Crypto Library Potentially Affects Several Other Software

2 December 2021 at 05:10
Mozilla has rolled out fixes to address a critical security weakness in its cross-platform Network Security Services (NSS) cryptographic library that could be potentially exploited by an adversary to crash a vulnerable application and even execute arbitrary code. Tracked as CVE-2021-43527, the flaw affects NSS versions prior to 3.73 or 3.68.1 ESR, and concerns aΒ heap overflowΒ vulnerability when
Before yesterdayThe Hacker News

New EwDoor Botnet Targeting Unpatched AT&T Network Edge Devices

1 December 2021 at 13:52
A newly discovered botnet capable of staging distributed denial-of-service (DDoS) attacks targeted unpatched Ribbon Communications (formerly Edgewater Networks) EdgeMarc appliances belonging to telecom service provider AT&T by exploiting a four-year-old flaw in the network appliances. Chinese tech giant Qihoo 360's Netlab network security division, which detected the botnet first on October 27,

Hackers Increasingly Using RTF Template Injection Technique in Phishing Attacks

1 December 2021 at 10:59
Three different state-sponsored threat actors aligned with China, India, and Russia have been observed adopting a new method calledΒ RTFΒ (aka Rich Text Format) template injection as part of their phishing campaigns to deliver malware to targeted systems. "RTF template injection is a novel technique that is ideal for malicious phishing attachments because it is simple and allows threat actors to

Hacker Jailed for Stealing Millions of Dollars in Cryptocurrencies by SIM Hijacking

1 December 2021 at 08:36
A sixth member associated with an international hacking group known asΒ The CommunityΒ has been sentenced in connection with a multimillion-dollar SIM swapping conspiracy, the U.S. Department of Justice (DoJ) said. Garrett Endicott, 22, from the U.S. state of Missouri, who pleaded guilty to charges of wire fraud and aggravated identity theft following an indictment in 2019, wasΒ sentencedΒ to 10

Twitter Bans Users From Posting β€˜Private Media’ Without a Person's Consent

1 December 2021 at 05:20
Twitter on Tuesday announced an expansion to its private information policy to include private media, effectively prohibiting the sharing of photos and videos without express permission from the individuals depicted in them with an aim to curb doxxing and harassment. "Beginning today, we will not allow the sharing of private media, such as images or videos of private individuals without their

Critical Wormable Security Flaw Found in Several HP Printer Models

30 November 2021 at 13:11
Cybersecurity researchers on Tuesday disclosed eight-year-old security flaws affecting 150 different multifunction printers (MFPs) from HP Inc that could be potentially abused by an adversary to take control of vulnerable devices, pilfer sensitive information, and infiltrate enterprise networks to mount other attacks. The two weaknesses β€” collectively calledΒ Printing ShellzΒ β€” were discovered and

Panasonic Suffers Data Breach After Hackers Hack Into Its Network

30 November 2021 at 09:30
Japanese consumer electronics giant Panasonic has disclosed a security breach wherein an unauthorized third-party broke into its network and potentially accessed data from one of its file servers. "As the result of an internal investigation, it was determined that some data on a file server had been accessed during the intrusion," the companyΒ saidΒ in a short statement published on November 26.

Unpatched Unauthorized File Read Vulnerability Affects Microsoft Windows OS

30 November 2021 at 09:11
Unofficial patches have been issued to remediate an improperly patched Windows security vulnerability that could allow information disclosure and local privilege escalation (LPE) on vulnerable systems. Tracked asΒ CVE-2021-24084Β (CVSS score: 5.5), the flaw concerns an information disclosure vulnerability in the Windows Mobile Device Management component that could enable an attacker to gain

WIRTE Hacker Group Targets Government, Law, Financial Entities in Middle East

30 November 2021 at 08:31
Government, diplomatic entities, military organizations, law firms, and financial institutions primarily located in the Middle East have been targeted as part of a stealthy malware campaign as early as 2019 by making use of malicious Microsoft Excel and Word documents. Russian cybersecurity company Kaspersky attributed the attacks with high confidence to a threat actor named WIRTE, adding the

4 Android Banking Trojan Campaigns Targeted Over 300,000 Devices in 2021

29 November 2021 at 15:05
Four different Android banking trojans were spread via the official Google Play Store between August and November 2021, resulting in more than 300,000 infections through various dropper apps that posed as seemingly harmless utility apps to take full control of the infected devices. Designed to deliver Anatsa (aka TeaBot), Alien, ERMAC, and Hydra, cybersecurity firm ThreatFabricΒ saidΒ the malware

New Chinotto Spyware Targets North Korean Defectors, Human Rights Activists

29 November 2021 at 13:14
North Korean defectors, journalists who cover North Korea-related news, and entities in South Korea are being zeroed in on by a nation-state-sponsored advanced persistent threat (APT) as part of a new wave of highly-targeted surveillance attacks. Russian cybersecurity firm Kaspersky attributed the infiltrations to a North Korean hacker group tracked asΒ ScarCruft, also known asΒ APT37, Reaper