The Hacker News

Syndikovat obsah The Hacker News
The Hacker News has been internationally recognized as a leading news source dedicated to promoting awareness for security experts and hackers
Aktualizace: 3 min 1 sek zpět

Google Researcher Releases iOS Exploit—Could Enable iOS 11 Jailbreak

52 min 11 sek zpět
As promised last week, Google's Project Zero researcher Ian Beer now publicly disclosed an exploit that works on almost all 64-bit Apple devices running iOS 11.1.2 or earlier, which can be used to build an iOS jailbreak, allowing users to run apps from non-Apple sources. On Monday morning, Beer shared the details on the exploit, dubbed "tfp0," which leveraged double-free memory corruption
Kategorie: Hacking & Security

Newly Uncovered 'MoneyTaker' Hacker Group Stole Millions from U.S. & Russian Banks

11 Prosinec, 2017 - 19:24
Security researchers have uncovered a previously undetected group of Russian-speaking hackers that has silently been targeting Banks, financial institutions, and legal firms, primarily in the United States, UK, and Russia. Moscow-based security firm Group-IB published a 36-page report on Monday, providing details about the newly-disclosed hacking group, dubbed MoneyTaker, which has been
Kategorie: Hacking & Security

Get the Ultimate 2018 Hacker Bundle – Pay What You Want

11 Prosinec, 2017 - 13:37
Due to the growing number of threats in the computer world, ethical hackers have become the most important player for not only governments but also private companies and IT firms in order to safeguard their systems and networks from hackers trying to infiltrate them. By 2020, employment in all information technology occupations is expected to increase by 22 percent, where demand for ethical
Kategorie: Hacking & Security

THN Weekly Roundup — Top 10 Stories You Should Not Miss

11 Prosinec, 2017 - 10:45
Here we are with our weekly roundup, briefing this week's top cybersecurity threats, incidents, and challenges, just in case you missed any of them. Last week has been very short with big news from the theft of over 4,700 Bitcoins from the largest cryptocurrency mining marketplace to the discovery of a new malware evasion technique that works on all versions of Microsoft's Windows operating
Kategorie: Hacking & Security

Microsoft Issues Emergency Windows Security Update For A Critical Vulnerability

10 Prosinec, 2017 - 16:48
Microsoft has just released an emergency security patch to address a critical remote code execution (RCE) vulnerability in its Malware Protection Engine (MPE) that could allow an attacker to take full control of a victim's PC. Enabled by default, Microsoft Malware Protection Engine offers the core cybersecurity capabilities, like scanning, detection, and cleaning, for the company's
Kategorie: Hacking & Security

Pre-Installed Keylogger Found On Over 460 HP Laptop Models

9 Prosinec, 2017 - 11:57
HP has an awful history of 'accidentally' leaving keyloggers onto its customers' laptops. At least two times this year, HP laptops were caught with pre-installed keylogger or spyware applications. I was following a tweet made by a security researcher claiming to have found a built-in keylogger in several HP laptops, and now he went public with his findings. A security researcher who goes by
Kategorie: Hacking & Security

Android Flaw Lets Hackers Inject Malware Into Apps Without Altering Signatures

9 Prosinec, 2017 - 10:30
Millions of Android devices are at serious risk of a newly disclosed critical vulnerability that allows attackers to secretly overwrite legitimate applications installed on your smartphone with their malicious versions. Dubbed Janus, the vulnerability allows attackers to modify the code of Android apps without affecting their signature verification certificates, eventually allowing them to
Kategorie: Hacking & Security

Security Flaw Left Major Banking Apps Vulnerable to MiTM Attacks Over SSL

7 Prosinec, 2017 - 20:31
A team of security researchers has discovered a critical implementation flaw in major mobile banking applications that left banking credentials of millions of users vulnerable to hackers. The vulnerability was discovered by researchers of the Security and Privacy Group at the University of Birmingham, who tested hundreds of different banking apps—both iOS and Android—and found that several of
Kategorie: Hacking & Security

Process Doppelgänging: New Malware Evasion Technique Works On All Windows Versions

7 Prosinec, 2017 - 17:03
A team of security researchers has discovered a new malware evasion technique that could help malware authors defeat most of the modern antivirus solutions and forensic tools. Dubbed Process Doppelgänging, the new fileless code injection technique takes advantage of a built-in Windows function and an undocumented implementation of Windows process loader. Ensilo security researchers Tal
Kategorie: Hacking & Security

Largest Crypto-Mining Exchange Hacked; Over $70 Million in Bitcoin Stolen

7 Prosinec, 2017 - 10:28
Bitcoin is breaking every record—after gaining 20% jump last week, Bitcoin price just crossed the $14,800 mark in less than 24 hours—and there can be no better reason for hackers to put all of their efforts to steal skyrocketing cryptocurrency. NiceHash, the largest Bitcoin mining marketplace, has been hacked, which resulted in the theft of more than 4,700 Bitcoins worth over $57 million (at
Kategorie: Hacking & Security

Uber Paid 20-Year-Old Florida Hacker $100,000 to Keep Data Breach Secret

7 Prosinec, 2017 - 08:49
Last year, Uber received an email from an anonymous person demanding money in exchange for the stolen user database. It turns out that a 20-year-old Florida man, with the help of another, breached Uber's system last year and was paid a huge amount by the company to destroy the data and keep the incident secret. Just last week, Uber announced that a massive data breach in October 2016 exposed
Kategorie: Hacking & Security

New TeamViewer Hack Could Allow Clients to Hijack Viewers' Computer

6 Prosinec, 2017 - 17:28
Do you have remote support software TeamViewer installed on your desktop? If yes, then you should pay attention to a critical vulnerability discovered in the software that could allow users sharing a desktop session to gain complete control of the other's PC without permission. TeamViewer is a popular remote-support software that lets you securely share your desktop or take full control of
Kategorie: Hacking & Security

Critical Flaw in Major Android Tools Targets Developers and Reverse Engineers

6 Prosinec, 2017 - 12:54
Finally, here we have a vulnerability that targets Android developers and reverse engineers, instead of app users. Security researchers have discovered an easily-exploitable vulnerability in Android application developer tools, both downloadable and cloud-based, that could allow attackers to steal files and execute malicious code on vulnerable systems remotely. The issue was discovered by
Kategorie: Hacking & Security

Feds Shut Down 'Longest-Running' Andromeda Botnet

5 Prosinec, 2017 - 17:53
In a coordinated International cyber operation, Europol with the help of international law enforcement agencies has taken down what it called "one of the longest-running malware families in existence" known as Andromeda. Andromeda, also known as Win32/Gamarue, is an infamous HTTP-based modular botnet that has been around for several years now, and infecting computers with it's malicious
Kategorie: Hacking & Security

Massive Breach Exposes Keyboard App that Collects Personal Data On Its 31 Million Users

5 Prosinec, 2017 - 17:08
In the digital age, one of the most popular sayings is—if you're not paying, then you're not the customer, you're the product. While downloading apps on their smartphones, most users may not realize how much data they collect on you. Believe me; it’s way more than you can imagine. Nowadays, many app developers are following irresponsible practices that are worth understanding, and we don't
Kategorie: Hacking & Security

MailSploit — Email Spoofing Flaw Affects Over 30 Popular Email Clients

5 Prosinec, 2017 - 13:34
If you receive an email that looks like it's from one of your friends, just beware! It's possible that the email has been sent by someone else in an attempt to compromise your system. A security researcher has discovered a collection of vulnerabilities in more than 30 popular email client applications that could allow anyone to send spoofed emails bypassing anti-spoofing mechanisms. <!--
Kategorie: Hacking & Security

Young Hacker, Who Took Over Jail Network to Get Friend Released Early, Faces Prison

5 Prosinec, 2017 - 09:38
Well, "a friend in need is a friend indeed" goes a long way, but in this case, this phrase hardly makes any sense. A 27-year-old Michigan man who hacked into the government computer system of Washtenaw County Jail to alter inmate records and gain early release for his friend is now himself facing federal charges after getting caught. Konrads Voits from Ann Arbor, Michigan, pleaded guilty in
Kategorie: Hacking & Security

Is Your DJI Drone a Chinese Spy? Leaked DHS Memo Suggests

4 Prosinec, 2017 - 14:05
The United States Department of Homeland Security (DHS) has recently accused Da-Jiang Innovations (DJI), one of the largest drone manufacturers, of sending sensitive information about U.S. infrastructure to China through its commercial drones and software. A copy memo from the Los Angeles office of the Immigration and Customs Enforcement bureau (ICE) has begun circulating online more recently
Kategorie: Hacking & Security

PayPal Subsidiary Data Breach Hits Up to 1.6 Million Customers

4 Prosinec, 2017 - 09:30
Global e-commerce business PayPal has disclosed a data breach that may have compromised personally identifiable information for roughly 1.6 million customers at a payment processing company PayPal acquired earlier this year. PayPal Holdings Inc. said Friday that a review of its recently acquired company TIO Networks showed evidence of unauthorized access to the company's network, including
Kategorie: Hacking & Security

Here's the NSA Employee Who Kept Top Secret Documents at Home

2 Prosinec, 2017 - 11:14
A former employee—who worked for an elite hacking group operated by the U.S. National Security Agency—pleaded guilty on Friday to illegally taking classified documents home, which were later stolen by Russian hackers. In a press release published Friday, the US Justice Department announced that Nghia Hoang Pho, a 67-year-old of Ellicott City, Maryland, took documents that contained top-secret
Kategorie: Hacking & Security