Cyber Security
DEAD#VAX Malware Campaign Deploys AsyncRAT via IPFS-Hosted VHD Phishing Files
Threat hunters have disclosed details of a new, stealthy malware campaign dubbed DEAD#…
Showing posts with the label The Hacker News - Most Trusted Cyber Security and Computer Security AnalysisShow all
The Hacker News - Most Trusted Cyber Security and Computer Security Analysis
Experts Find Similarities Between New LockBit 3.0 and BlackMatter Ransomware
Cybersecurity researchers have reiterated similarities between the latest iteration of the LockBit ransomware and BlackMatter, a rebranded variant of the DarkSide ransomware strain that closed shop i…
The Hacker News - Most Trusted Cyber Security and Computer Security Analysis
4 Steps Financial Industry Can Take to Cope With Their Growing Attack Surface
The financial services industry has always been at the forefront of technology adoption, but the 2020 pandemic accelerated the widespread of mobile banking apps, chat-based customer service, and othe…
The Hacker News - Most Trusted Cyber Security and Computer Security Analysis
Hackers Increasingly Using WebAssembly Coded Cryptominers to Evade Detection
As many as 207 websites have been infected with malicious code designed to launch a cryptocurrency miner by leveraging WebAssembly (Wasm) on the browser. Web security company Sucuri, which published …
The Hacker News - Most Trusted Cyber Security and Computer Security Analysis
Critical FileWave MDM Flaws Open Organization-Managed Devices to Remote Hackers
FileWave's mobile device management (MDM) system has been found vulnerable to two critical security flaws that could be leveraged to carry out remote attacks and seize control of a fleet of devic…
The Hacker News - Most Trusted Cyber Security and Computer Security Analysis
SmokeLoader Infecting Targeted Systems with Amadey Info-Stealing Malware
An information-stealing malware called Amadey is being distributed by means of another backdoor called SmokeLoader. The attacks hinge on tricking users into downloading SmokeLoader that masquerades a…
The Hacker News - Most Trusted Cyber Security and Computer Security Analysis
Hackers Exploit PrestaShop Zero-Day to Steal Payment Data from Online Stores
Malicious actors are exploiting a previously unknown security flaw in the open source PrestaShop e-commerce platform to inject malicious skimmer code designed to swipe sensitive information. "At…
The Hacker News - Most Trusted Cyber Security and Computer Security Analysis
Microsoft Adds Default Protection Against RDP Brute-Force Attacks in Windows 11
Microsoft is now taking steps to prevent Remote Desktop Protocol (RDP) brute-force attacks as part of the latest builds for the Windows 11 operating system in an attempt to raise the security baselin…
The Hacker News - Most Trusted Cyber Security and Computer Security Analysis
Experts Uncover New 'CosmicStrand' UEFI Firmware Rootkit Used by Chinese Hackers
An unknown Chinese-speaking threat actor has been attributed to a new kind of sophisticated UEFI firmware rootkit called CosmicStrand. "The rootkit is located in the firmware images of Gigabyte …
The Hacker News - Most Trusted Cyber Security and Computer Security Analysis
Magecart Hacks Food Ordering Systems to Steal Payment Data from Over 300 Restaurants
Three restaurant ordering platforms MenuDrive, Harbortouch, and InTouchPOS were the target of two Magecart skimming campaigns that resulted in the compromise of at least 311 restaurants. The trio of …
The Hacker News - Most Trusted Cyber Security and Computer Security Analysis
Racoon Stealer is Back — How to Protect Your Organization
The Racoon Stealer malware as a service platform gained notoriety several years ago for its ability to extract data that is stored within a Web browser. This data initially included passwords and coo…
The Hacker News - Most Trusted Cyber Security and Computer Security Analysis
Roaming Mantis Financial Hackers Targeting Android and iPhone Users in France
The mobile threat campaign tracked as Roaming Mantis has been linked to a new wave of compromises directed against French mobile phone users, months after it expanded its targeting to include Europea…
The Hacker News - Most Trusted Cyber Security and Computer Security Analysis
Microsoft Resumes Blocking Office VBA Macros by Default After 'Temporary Pause'
Microsoft has officially resumed blocking Visual Basic for Applications (VBA) macros by default across Office apps, weeks after temporarily announcing plans to roll back the change. "Based on ou…
The Hacker News - Most Trusted Cyber Security and Computer Security Analysis
Google Bringing the Android App Permissions Section Back to the Play Store
Google on Thursday said it's backtracking on a recent change that removed the app permissions list from the Google Play Store for Android across both the mobile app and the web. "Privacy and…
The Hacker News - Most Trusted Cyber Security and Computer Security Analysis
An Easier Way to Keep Old Python Code Healthy and Secure
Python has its pros and cons, but it's nonetheless used extensively. For example, Python is frequently used in data crunching tasks even when there are more appropriate languages to choose from. …
The Hacker News - Most Trusted Cyber Security and Computer Security Analysis
Ukrainian Radio Stations Hacked to Broadcast Fake News About Zelenskyy's Health
Ukrainian radio operator TAVR Media on Thursday became the latest victim of a cyberattack, resulting in the broadcast of a fake message that President Volodymyr Zelenskyy was seriously ill. "Cyb…
The Hacker News - Most Trusted Cyber Security and Computer Security Analysis
Candiru Spyware Caught Exploiting Google Chrome Zero-Day to Target Journalists
The actively exploited but now-fixed Google Chrome zero-day flaw that came to light earlier this month was weaponized by an Israeli spyware company and used in attacks targeting journalists in the Mi…
The Hacker News - Most Trusted Cyber Security and Computer Security Analysis
The New Weak Link in SaaS Security: Devices
Typically, when threat actors look to infiltrate an organization's SaaS apps, they look to SaaS app misconfigurations as a means of entry. However, employees now use their personal devices, wheth…
The Hacker News - Most Trusted Cyber Security and Computer Security Analysis
Atlassian Rolls Out Security Patch for Critical Confluence Vulnerability
Atlassian has rolled out fixes to remediate a critical security vulnerability pertaining to the use of hard-coded credentials affecting the Questions For Confluence app for Confluence Server and Conf…
The Hacker News - Most Trusted Cyber Security and Computer Security Analysis
FBI Seizes $500,000 Ransomware Payments and Crypto from North Korean Hackers
The U.S. Department of Justice (DoJ) has announced the seizure of $500,000 worth of Bitcoin from North Korean hackers who extorted digital payments from several organizations by using a new ransomwar…
The Hacker News - Most Trusted Cyber Security and Computer Security Analysis
Cynomi Automated Virtual CISO (vCISO) Platform for Service Providers
Growing cyber threats, tightening regulatory demands and strict cyber insurance requirements are driving small to medium-sized enterprises demand for strategic cybersecurity and compliance guidance a…
Cyber Security
Share