The Hacker News

Syndikovat obsah The Hacker News
The Hacker News has been internationally recognized as a leading news source dedicated to promoting awareness for security experts and hackers
Aktualizace: 46 min 43 sek zpět

Two Widely Used Ad Blocker Extensions for Chrome Caught in Ad Fraud Scheme

20 Září, 2019 - 18:49
Two widely used Adblocker Google Chrome extensions, posing as the original — AdBlock and uBlock Origin — extensions on Chrome Web Store, have been caught stuffing cookies in the web browser of millions of users to generate affiliate income from referral schemes fraudulently. There's no doubt web extensions add a lot of useful features to web browsers, making your online experience great and
Kategorie: Hacking & Security

Update Google Chrome Browser to Patch New Critical Security Flaws

19 Září, 2019 - 18:48
Google has released an urgent software update for its Chrome web browser and is urging Windows, Mac, and Linux users to upgrade the application to the latest available version immediately. Started rolling out to users worldwide this Wednesday, the Chrome 77.0.3865.90 version contains security patches for 1 critical and 3 high-risk security vulnerabilities, the most severe of which could allow
Kategorie: Hacking & Security

Smominru Botnet Indiscriminately Hacked Over 90,000 Computers Just Last Month

18 Září, 2019 - 19:18
Insecure Internet-connected devices have aided different types of cybercrime for years, most common being DDoS and spam campaigns. But cybercriminals have now shifted toward a profitable scheme where botnets do not just launch DDoS or spam—they mine cryptocurrencies as well. Smominru, an infamous cryptocurrency-mining and credential-stealing botnet, has become one of the rapidly spreading
Kategorie: Hacking & Security

IT Firm Manager Arrested in the Biggest Data Breach Case of Ecuador’s History

18 Září, 2019 - 16:11
Ecuador officials have arrested the general manager of IT consulting firm Novaestrat after the personal details of almost the entire population of the Republic of Ecuador left exposed online in what seems to be the most significant data breach in the country's history. Personal records of more than 20 million adults and children, both dead and alive, were found publicly exposed on an unsecured
Kategorie: Hacking & Security

Warning: Researcher Drops phpMyAdmin Zero-Day Affecting All Versions

18 Září, 2019 - 13:08
A cybersecurity researcher recently published details and proof-of-concept for an unpatched zero-day vulnerability in phpMyAdmin—one of the most popular applications for managing the MySQL and MariaDB databases. phpMyAdmin is a free and open source administration tool for MySQL and MariaDB that's widely used to manage the database for websites created with WordPress, Joomla, and many other
Kategorie: Hacking & Security

The Definitive RFP Templates for EDR/EPP and APT Protection

18 Září, 2019 - 12:29
Advanced Persistent Threats groups were once considered a problem that concerns Fortune 100 companies only. However, the threat landscape of the recent years tells otherwise—in fact, every organization, regardless of vertical and size is at risk, whether as a direct target, supply chain or collateral damage. The vast majority of security decision-makers acknowledge they need to address the
Kategorie: Hacking & Security

United States Sues Edward Snowden and You'd be Surprised to Know Why

18 Září, 2019 - 07:38
The United States government today filed a lawsuit against Edward Snowden, a former contractor for the CIA and NSA government agencies who made headlines worldwide in 2013 when he fled the country and leaked top-secret information about NSA's global and domestic surveillance activities. And you would be more surprised to know the reason for this lawsuit—No, Snowden has not been sued for
Kategorie: Hacking & Security

Thousands of Google Calendars Possibly Leaking Private Information Online

17 Září, 2019 - 22:03
"Warning — Making your calendar public will make all events visible to the world, including via Google search. Are you sure?" Remember this security warning? No? If you have ever shared your Google Calendars, or maybe inadvertently, with someone that should not be publicly accessible anymore, you should immediately go back to your Google settings and check if you're exposing all your events
Kategorie: Hacking & Security

125 New Flaws Found in Routers and NAS Devices from Popular Brands

17 Září, 2019 - 11:58
The world of connected consumer electronics, IoT, and smart devices is growing faster than ever with tens of billions of connected devices streaming and sharing data wirelessly over the Internet, but how secure is it? As we connect everything from coffee maker to front-door locks and cars to the Internet, we're creating more potential—and possibly more dangerous—ways for hackers to wreak havoc.
Kategorie: Hacking & Security

WhatsApp 'Delete for Everyone' Doesn't Delete Media Files Sent to iPhone Users

17 Září, 2019 - 11:17
Mistakenly sent a picture to someone via WhatsApp that you shouldn't have? Well, we've all been there, but what's more unfortunate is that the 'Delete for Everyone' feature WhatsApp introduced two years ago contains an unpatched privacy bug, leaving its users with false sense of privacy. WhatsApp and its rival Telegram messenger offer "Delete for Everyone," a potentially life-saving feature
Kategorie: Hacking & Security

How Cloud-Based Automation Can Keep Business Operations Secure

16 Září, 2019 - 13:57
The massive data breach at Capital One – America's seventh-largest bank, according to revenue – has challenged many common assumptions about cloud computing for the first time. Ironically, the incident, which exposed some 106 million Capital One customers' accounts, has only reinforced the belief that the cloud remains the safest way to store sensitive data. "You have to compare [the cloud]
Kategorie: Hacking & Security

US Sanctions 3 North Korean Hacking Groups Accused for Global Cyber Attacks

14 Září, 2019 - 12:16
The United States Treasury Department on Friday announced sanctions against three state-sponsored North Korean hacking groups for conducting several destructive cyberattacks on US critical infrastructure. Besides this, the hacking groups have also been accused of stealing possibly hundreds of millions of dollars from financial institutions around the world to ultimately fund the North Korean
Kategorie: Hacking & Security

Yikes! iOS 13 Coming Next Week With iPhone LockScreen Bypass Bug

13 Září, 2019 - 20:06
Good news... next week, on September 19, Apple will roll out iOS 13, the latest version of its mobile operating system. Yes, we're excited about, but here comes the bad news... iOS 13 contains a vulnerability that could allow anyone to bypass the lockscreen protection on your iPhone and access some sensitive information. Jose Rodriguez, a Spanish security researcher, contacted The Hacker
Kategorie: Hacking & Security

Multiple Code Execution Flaws Found In PHP Programming Language

13 Září, 2019 - 15:23
Maintainers of the PHP programming language recently released the latest versions of PHP to patch multiple high-severity vulnerabilities in its core and bundled libraries, the most severe of which could allow remote attackers to execute arbitrary code and compromise targeted servers. Hypertext Preprocessor, commonly known as PHP, is the most popular server-side web programming language that
Kategorie: Hacking & Security

New SIM Card Flaw Lets Hackers Hijack Any Phone Just By Sending SMS

12 Září, 2019 - 19:02
Cybersecurity researchers today revealed the existence of a new and previously undetected critical vulnerability in SIM cards that could allow remote attackers to compromise targeted mobile phones and spy on victims just by sending an SMS. Dubbed "SimJacker," the vulnerability resides in a particular piece of software, called the S@T Browser (a dynamic SIM toolkit), embedded on most SIM cards
Kategorie: Hacking & Security

WebARX — A Defensive Core For Your Website

12 Září, 2019 - 13:44
Estonian based web security startup WebARX, the company who is also behind open-source plugin vulnerability scanner WPBullet and soon-to-be-released bug bounty platform, has a big vision for a safer web. It built a defensive core for websites which is embedded deep inside the company's DNA as even ARX in their name refers to the citadel (the core fortified area of a town or
Kategorie: Hacking & Security

CISO Kit — Breach Protection in the Palm of Your Hand

12 Září, 2019 - 11:28
CISOs and CIOs need to know better than anyone the security pulse of their organizations. On the other hand, they cannot be flooded with every changing detail. Finding the right balance that enables them to clearly grasp the big picture required in making sound decisions is a task many security executives find challenging. Threat actors do not acknowledge off-hours or weekends, introducing the
Kategorie: Hacking & Security

Popular Period Tracking Apps Share Your Sexual Health Data With Facebook

12 Září, 2019 - 10:55
Hello Ladies, let's talk about periods, privacy, and Facebook. Are you using an app on your smartphone to keep tracks on your periods? Well, it's worrying, because it might be sharing your extremely sensitive information like menstrual cycle and sexual activities with Facebook. A new investigative report from UK-based advocacy group Privacy International revealed how some most popular
Kategorie: Hacking & Security

The Hottest Malware Hits of the Summer

11 Září, 2019 - 19:03
It's been a summer of ransomware hold-ups, supply chain attacks and fileless attacks flying under the radar of old-school security. With malware running amok while we were lying on the beach, here's a recap of the most burning strains and trends seen in the wild during the months of July and August 2019. Malware Evolution Trends The heat must have had an effect as this summer saw malware
Kategorie: Hacking & Security

NetCAT: New Attack Lets Hackers Remotely Steal Data From Intel CPUs

11 Září, 2019 - 15:09
Unlike previous side-channel vulnerabilities disclosed in Intel CPUs, researchers have discovered a new flaw that can be exploited remotely over the network without requiring an attacker to have physical access or any malware installed on a targeted computer. Dubbed NetCAT, short for Network Cache ATtack, the new network-based side-channel vulnerability could allow a remote attacker to sniff
Kategorie: Hacking & Security