πŸ”’
There are new articles available, click to refresh the page.
βœ‡ The Hacker News

Researchers Detail How Pakistani Hackers Targeting Indian and Afghan Governments

By: Ravie Lakshmanan β€”
A Pakistani threat actor successfully socially engineered a number of ministries in Afghanistan and a shared government computer in India to steal sensitive Google, Twitter, and Facebook credentials from its targets and stealthily obtain access to government portals. Malwarebytes' latest findings go into detail about the new tactics and tools adopted by the APT group known asΒ SideCopy, which is
βœ‡ The Hacker News

New Malvertising Campaigns Spreading Backdoors, Malicious Chrome Extensions

By: Ravie Lakshmanan β€”
A series of malicious campaigns have been leveraging fake installers of popular apps and games such as Viber, WeChat, NoxPlayer, and Battlefield as a lure to trick users into downloading a new backdoor and an undocumented malicious Google Chrome extension with the goal of stealing credentials and data stored in the compromised systems as well as maintaining persistent remote access. Cisco Talos
βœ‡ The Hacker News

Why Everyone Needs to Take the Latest CISA Directive Seriously

By: The Hacker News β€”
Government agencies publish notices and directives all the time. Usually, these are only relevant to government departments, which means that nobody else really pays attention. It's easy to see why you would assume that a directive from CISA just doesn't relate to your organization. But, in the instance of the latest CISA directive, that would be making a mistake. In this article, we explain why
βœ‡ The Hacker News

New Payment Data Stealing Malware Hides in Nginx Process on Linux Servers

By: Ravie Lakshmanan β€”
E-commerce platforms in the U.S., Germany, and France have come under attack from a new form of malware that targets Nginx servers in an attempt to masquerade its presence and slip past detection by security solutions. "This novel code injects itself into a host Nginx application and is nearly invisible," Sansec Threat Research teamΒ saidΒ in a new report. "The parasite is used to steal data from
βœ‡ The Hacker News

CISA Warns of Actively Exploited Critical Zoho ManageEngine ServiceDesk Vulnerability

By: Ravie Lakshmanan β€”
The U.S. Federal Bureau of Investigation (FBI) and the Cybersecurity and Infrastructure Security Agency (CISA) are warning of active exploitation of a newly patched flaw in Zoho's ManageEngine ServiceDesk Plus product to deploy web shells and carry out an array of malicious activities. Tracked asΒ CVE-2021-44077Β (CVSS score: 9.8), the issue relates to an unauthenticated, remote code execution
βœ‡ The Hacker News

Meta Expands Facebook Protect Program to Activists, Journalists, Government Officials

By: Ravie Lakshmanan β€”
Meta, the company formerly known as Facebook, on Thursday announced an expansion of its Facebook Protect security program to include human rights defenders, activists, journalists, and government officials who are more likely to be targeted by bad actors across its social media platforms. "These people are at the center of critical communities for public debate," said Nathaniel Gleicher, head of
βœ‡ The Hacker News

Researches Detail 17 Malicious Frameworks Used to Attack Air-Gapped Networks

By: Ravie Lakshmanan β€”
Four different malicious frameworks designed to attack air-gapped networks were detected in the first half of 2020 alone, bringing the total number of such toolkits to 17 and offering adversaries a pathway to cyber espionage and exfiltrate classified information. "All frameworks are designed to perform some form of espionage, [and] all the frameworks used USB drives as the physical transmission
βœ‡ The Hacker News

Let there be light: Ensuring visibility across the entire API lifecycle

By: The Hacker News β€”
The following article is based on aΒ webinar series on enterprise API security by Imvision, featuring expert speakers from IBM, Deloitte, Maersk, and Imvision discussing the importance of centralizing an organization's visibility of its APIs as a way to accelerate remediation efforts and improve the overall security posture. Centralizing security is challenging in today's open ecosystem When
βœ‡ The Hacker News

Researchers Warn Iranian Users of Widespread SMS Phishing Campaigns

By: Ravie Lakshmanan β€”
Socially engineered SMS messages are being used to install malware on Android devices as part of a widespread phishing campaign that impersonates the Iranian government and social security services to make away with credit card details and steal funds from victims' bank accounts. Unlike other variants ofΒ banking malwareΒ that bank of overlay attacks to capture sensitive data without the knowledge
βœ‡ The Hacker News

Russian Man Gets 60 Months Jail for Providing Bulletproof Hosting to Cyber Criminals

By: Ravie Lakshmanan β€”
A Russian national charged with providing bulletproof hosting services for cybercriminals, who used the platform to spread malware and attack U.S. organizations and financial institutions between 2009 to 2015, has received a 60-month prison sentence. 34-year-old Aleksandr Grichishkin, along with Andrei Skvortsov, founded the bulletproof hosting service and rented its infrastructure to other
βœ‡ The Hacker News

Critical Bug in Mozilla’s NSS Crypto Library Potentially Affects Several Other Software

By: Ravie Lakshmanan β€”
Mozilla has rolled out fixes to address a critical security weakness in its cross-platform Network Security Services (NSS) cryptographic library that could be potentially exploited by an adversary to crash a vulnerable application and even execute arbitrary code. Tracked as CVE-2021-43527, the flaw affects NSS versions prior to 3.73 or 3.68.1 ESR, and concerns aΒ heap overflowΒ vulnerability when
βœ‡ The Hacker News

New EwDoor Botnet Targeting Unpatched AT&T Network Edge Devices

By: Ravie Lakshmanan β€”
A newly discovered botnet capable of staging distributed denial-of-service (DDoS) attacks targeted unpatched Ribbon Communications (formerly Edgewater Networks) EdgeMarc appliances belonging to telecom service provider AT&T by exploiting a four-year-old flaw in the network appliances. Chinese tech giant Qihoo 360's Netlab network security division, which detected the botnet first on October 27,
βœ‡ The Hacker News

Hackers Increasingly Using RTF Template Injection Technique in Phishing Attacks

By: Ravie Lakshmanan β€”
Three different state-sponsored threat actors aligned with China, India, and Russia have been observed adopting a new method calledΒ RTFΒ (aka Rich Text Format) template injection as part of their phishing campaigns to deliver malware to targeted systems. "RTF template injection is a novel technique that is ideal for malicious phishing attachments because it is simple and allows threat actors to
βœ‡ The Hacker News

Hacker Jailed for Stealing Millions of Dollars in Cryptocurrencies by SIM Hijacking

By: Ravie Lakshmanan β€”
A sixth member associated with an international hacking group known asΒ The CommunityΒ has been sentenced in connection with a multimillion-dollar SIM swapping conspiracy, the U.S. Department of Justice (DoJ) said. Garrett Endicott, 22, from the U.S. state of Missouri, who pleaded guilty to charges of wire fraud and aggravated identity theft following an indictment in 2019, wasΒ sentencedΒ to 10
βœ‡ The Hacker News

Twitter Bans Users From Posting β€˜Private Media’ Without a Person's Consent

By: Ravie Lakshmanan β€”
Twitter on Tuesday announced an expansion to its private information policy to include private media, effectively prohibiting the sharing of photos and videos without express permission from the individuals depicted in them with an aim to curb doxxing and harassment. "Beginning today, we will not allow the sharing of private media, such as images or videos of private individuals without their
βœ‡ The Hacker News

New Hub for Lean IT Security Teams

By: The Hacker News β€”
One of the harsh realities of cybersecurity today is that malicious actors and attackers don’t distinguish between organizations that have seemingly endless resources and those operating with lean IT security teams. For these lean teams, meeting the challenges in the current security landscape requires constant attention, and sometimes a little support. XDR provider Cynet has built a new
βœ‡ The Hacker News

Critical Wormable Security Flaw Found in Several HP Printer Models

By: Ravie Lakshmanan β€”
Cybersecurity researchers on Tuesday disclosed eight-year-old security flaws affecting 150 different multifunction printers (MFPs) from HP Inc that could be potentially abused by an adversary to take control of vulnerable devices, pilfer sensitive information, and infiltrate enterprise networks to mount other attacks. The two weaknesses β€” collectively calledΒ Printing ShellzΒ β€” were discovered and
βœ‡ The Hacker News

Panasonic Suffers Data Breach After Hackers Hack Into Its Network

By: Ravie Lakshmanan β€”
Japanese consumer electronics giant Panasonic has disclosed a security breach wherein an unauthorized third-party broke into its network and potentially accessed data from one of its file servers. "As the result of an internal investigation, it was determined that some data on a file server had been accessed during the intrusion," the companyΒ saidΒ in a short statement published on November 26.
βœ‡ The Hacker News

Unpatched Unauthorized File Read Vulnerability Affects Microsoft Windows OS

By: Ravie Lakshmanan β€”
Unofficial patches have been issued to remediate an improperly patched Windows security vulnerability that could allow information disclosure and local privilege escalation (LPE) on vulnerable systems. Tracked asΒ CVE-2021-24084Β (CVSS score: 5.5), the flaw concerns an information disclosure vulnerability in the Windows Mobile Device Management component that could enable an attacker to gain
❌