The Hacker News

Syndikovat obsah
The Hacker News has been internationally recognized as a leading news source dedicated to promoting awareness for security experts and [email protected]
Aktualizace: 47 min 1 sek zpět

Two Chinese APT Groups Ramp Up Cyber Espionage Against ASEAN Countries

27 Březen, 2024 - 05:20
Two China-linked advanced persistent threat (APT) groups have been observed targeting entities and member countries affiliated with the Association of Southeast Asian Nations (ASEAN) as part of a cyber espionage campaign over the past three months. This includes the threat actor known as Mustang Panda, which has been recently linked to cyber attacks against Myanmar as well as Newsroomhttp://www.blogger.com/profile/[email protected]
Kategorie: Hacking & Security

Sketchy NuGet Package Likely Linked to Industrial Espionage Targets Developers

26 Březen, 2024 - 17:54
Threat hunters have identified a suspicious package in the NuGet package manager that's likely designed to target developers working with tools made by a Chinese firm that specializes in industrial- and digital equipment manufacturing. The package in question is SqzrFramework480, which ReversingLabs said was first published on January 24, 2024. It has been downloaded 
Kategorie: Hacking & Security

Sketchy NuGet Package Likely Linked to Industrial Espionage Targets Developers

26 Březen, 2024 - 17:54
Threat hunters have identified a suspicious package in the NuGet package manager that's likely designed to target developers working with tools made by a Chinese firm that specializes in industrial- and digital equipment manufacturing. The package in question is SqzrFramework480, which ReversingLabs said was first published on January 24, 2024. It has been downloaded Newsroomhttp://www.blogger.com/profile/[email protected]
Kategorie: Hacking & Security

U.S. Charges 7 Chinese Nationals in Major 14-Year Cyber Espionage Operation

26 Březen, 2024 - 13:06
The U.S. Department of Justice (DoJ) on Monday unsealed indictments against seven Chinese nationals for their involvement in a hacking group that targeted U.S. and foreign critics, journalists, businesses, and political officials for about 14 years. The defendants include Ni Gaobin (倪高彬), Weng Ming (翁明), Cheng Feng (程锋), Peng Yaowen (彭耀文), Sun Xiaohui (孙小辉), Xiong Wang (熊旺), and Zhao Guangzong (
Kategorie: Hacking & Security

U.S. Charges 7 Chinese Nationals in Major 14-Year Cyber Espionage Operation

26 Březen, 2024 - 13:06
The U.S. Department of Justice (DoJ) on Monday unsealed indictments against seven Chinese nationals for their involvement in a hacking group that targeted U.S. and foreign critics, journalists, businesses, and political officials for about 14 years. The defendants include Ni Gaobin (倪高彬), Weng Ming (翁明), Cheng Feng (程锋), Peng Yaowen (彭耀文), Sun Xiaohui (孙小辉), Xiong Wang (熊旺), and Zhao Guangzong (Newsroomhttp://www.blogger.com/profile/[email protected]
Kategorie: Hacking & Security

Crafting Shields: Defending Minecraft Servers Against DDoS Attacks

26 Březen, 2024 - 12:29
Minecraft, with over 500 million registered users and 166 million monthly players, faces significant risks from distributed denial-of-service (DDoS) attacks, threatening server functionality, player experience, and the game’s reputation. Despite the prevalence of DDoS attacks on the game, the majority of incidents go unreported, leaving a gap in awareness and protection. This article explains
Kategorie: Hacking & Security

Crafting Shields: Defending Minecraft Servers Against DDoS Attacks

26 Březen, 2024 - 12:29
Minecraft, with over 500 million registered users and 166 million monthly players, faces significant risks from distributed denial-of-service (DDoS) attacks, threatening server functionality, player experience, and the game’s reputation. Despite the prevalence of DDoS attacks on the game, the majority of incidents go unreported, leaving a gap in awareness and protection. This article explains The Hacker Newshttp://www.blogger.com/profile/[email protected]
Kategorie: Hacking & Security

U.S. Sanctions 3 Cryptocurrency Exchanges for Helping Russia Evade Sanctions

26 Březen, 2024 - 09:31
The U.S. Department of the Treasury's Office of Foreign Assets Control (OFAC) sanctioned three cryptocurrency exchanges for offering services used to evade economic restrictions imposed on Russia following its invasion of Ukraine in early 2022. This includes Bitpapa IC FZC LLC, Crypto Explorer DMCC (AWEX), and Obshchestvo S Ogranichennoy Otvetstvennostyu Tsentr Obrabotki Elektronnykh Platezhey (
Kategorie: Hacking & Security

U.S. Sanctions 3 Cryptocurrency Exchanges for Helping Russia Evade Sanctions

26 Březen, 2024 - 09:31
The U.S. Department of the Treasury's Office of Foreign Assets Control (OFAC) sanctioned three cryptocurrency exchanges for offering services used to evade economic restrictions imposed on Russia following its invasion of Ukraine in early 2022. This includes Bitpapa IC FZC LLC, Crypto Explorer DMCC (AWEX), and Obshchestvo S Ogranichennoy Otvetstvennostyu Tsentr Obrabotki Elektronnykh Platezhey (Newsroomhttp://www.blogger.com/profile/[email protected]
Kategorie: Hacking & Security

CISA Alerts on Active Exploitation of Flaws in Fortinet, Ivanti, and Nice Products

26 Březen, 2024 - 05:54
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Monday placed three security flaws to its Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation. The vulnerabilities added are as follows - CVE-2023-48788 (CVSS score: 9.3) - Fortinet FortiClient EMS SQL Injection Vulnerability CVE-2021-44529 (CVSS score: 9.8) - Ivanti
Kategorie: Hacking & Security

CISA Alerts on Active Exploitation of Flaws in Fortinet, Ivanti, and Nice Products

26 Březen, 2024 - 05:54
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Monday placed three security flaws to its Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation. The vulnerabilities added are as follows - CVE-2023-48788 (CVSS score: 9.3) - Fortinet FortiClient EMS SQL Injection Vulnerability CVE-2021-44529 (CVSS score: 9.8) - Ivanti Newsroomhttp://www.blogger.com/profile/[email protected]
Kategorie: Hacking & Security

Hackers Hijack GitHub Accounts in Supply Chain Attack Affecting Top-gg and Others

25 Březen, 2024 - 12:58
Unidentified adversaries orchestrated a sophisticated attack campaign that has impacted several individual developers as well as the GitHub organization account associated with Top.gg, a Discord bot discovery site. "The threat actors used multiple TTPs in this attack, including account takeover via stolen browser cookies, contributing malicious code with verified commits, setting up a custom
Kategorie: Hacking & Security

Hackers Hijack GitHub Accounts in Supply Chain Attack Affecting Top-gg and Others

25 Březen, 2024 - 12:58
Unidentified adversaries orchestrated a sophisticated attack campaign that has impacted several individual developers as well as the GitHub organization account associated with Top.gg, a Discord bot discovery site. "The threat actors used multiple TTPs in this attack, including account takeover via stolen browser cookies, contributing malicious code with verified commits, setting up a custom Newsroomhttp://www.blogger.com/profile/[email protected]
Kategorie: Hacking & Security

Key Lesson from Microsoft’s Password Spray Hack: Secure Every Account

25 Březen, 2024 - 12:37
In January 2024, Microsoft discovered they’d been the victim of a hack orchestrated by Russian-state hackers Midnight Blizzard (sometimes known as Nobelium). The concerning detail about this case is how easy it was to breach the software giant. It wasn’t a highly technical hack that exploited a zero-day vulnerability – the hackers used a simple password spray attack to take control of
Kategorie: Hacking & Security

Key Lesson from Microsoft’s Password Spray Hack: Secure Every Account

25 Březen, 2024 - 12:37
In January 2024, Microsoft discovered they’d been the victim of a hack orchestrated by Russian-state hackers Midnight Blizzard (sometimes known as Nobelium). The concerning detail about this case is how easy it was to breach the software giant. It wasn’t a highly technical hack that exploited a zero-day vulnerability – the hackers used a simple password spray attack to take control of The Hacker Newshttp://www.blogger.com/profile/[email protected]
Kategorie: Hacking & Security

New "GoFetch" Vulnerability in Apple M-Series Chips Leaks Secret Encryption Keys

25 Březen, 2024 - 10:02
A new security shortcoming discovered in Apple M-series chips could be exploited to extract secret keys used during cryptographic operations. Dubbed GoFetch, the vulnerability relates to a microarchitectural side-channel attack that takes advantage of a feature known as data memory-dependent prefetcher (DMP) to target constant-time cryptographic implementations and capture sensitive data
Kategorie: Hacking & Security

New "GoFetch" Vulnerability in Apple M-Series Chips Leaks Secret Encryption Keys

25 Březen, 2024 - 10:02
A new security shortcoming discovered in Apple M-series chips could be exploited to extract secret keys used during cryptographic operations. Dubbed GoFetch, the vulnerability relates to a microarchitectural side-channel attack that takes advantage of a feature known as data memory-dependent prefetcher (DMP) to target constant-time cryptographic implementations and capture sensitive data Newsroomhttp://www.blogger.com/profile/[email protected]
Kategorie: Hacking & Security

Iran-Linked MuddyWater Deploys Atera for Surveillance in Phishing Attacks

25 Březen, 2024 - 08:37
The Iran-affiliated threat actor tracked as MuddyWater (aka Mango Sandstorm or TA450) has been linked to a new phishing campaign in March 2024 that aims to deliver a legitimate Remote Monitoring and Management (RMM) solution called Atera. The activity, which took place from March 7 through the week of March 11, targeted Israeli entities spanning global manufacturing, technology, and
Kategorie: Hacking & Security

Iran-Linked MuddyWater Deploys Atera for Surveillance in Phishing Attacks

25 Březen, 2024 - 08:37
The Iran-affiliated threat actor tracked as MuddyWater (aka Mango Sandstorm or TA450) has been linked to a new phishing campaign in March 2024 that aims to deliver a legitimate Remote Monitoring and Management (RMM) solution called Atera. The activity, which took place from March 7 through the week of March 11, targeted Israeli entities spanning global manufacturing, technology, and Newsroomhttp://www.blogger.com/profile/[email protected]
Kategorie: Hacking & Security

N. Korea-linked Kimsuky Shifts to Compiled HTML Help Files in Ongoing Cyberattacks

24 Březen, 2024 - 06:38
The North Korea-linked threat actor known as Kimsuky (aka Black Banshee, Emerald Sleet, or Springtail) has been observed shifting its tactics, leveraging Compiled HTML Help (CHM) files as vectors to deliver malware for harvesting sensitive data. Kimsuky, active since at least 2012, is known to target entities located in South Korea as well as North America, Asia, and Europe. According
Kategorie: Hacking & Security