The Hacker News

Syndikovat obsah The Hacker News
The Hacker News has been internationally recognized as a leading news source dedicated to promoting awareness for security experts and hackers
Aktualizace: 14 min 28 sek zpět

21-Year-Old Cypriot Hacker Extradited to U.S. Over Fraud and Extortion Charges

20 Červenec, 2020 - 14:43
The United States Department of Justice has extradited two criminals from the Republic of Cyprus—one is a computer hacker suspected of cyber intrusions and extortion, and the other is a money launderer with known connections to the terrorist organization Hezbollah. Both suspects—Joshua Polloso Epifaniou, 21, a resident of Nicosia, and Ghassan Diab, 37, a citizen of Lebanon—were arrested
Kategorie: Hacking & Security

Why Application Security Should Be Considered An Enabler For Business

17 Červenec, 2020 - 12:48
If you ask Alex, he won't admit being old-fashioned. He has been working in the IT industry for a while now and accepts that security is important for the business's health. But reluctant to take security as the business enabler. In today's environment, moving to digitization is a critical step required to drive innovation and business growth. When the application development takes the driver
Kategorie: Hacking & Security

Iranian Hackers Accidentally Exposed Their Training Videos (40 GB) Online

17 Červenec, 2020 - 12:23
An OPSEC error by an Iranian threat actor has laid bare the inner workings of the hacking group by providing a rare insight into the "behind-the-scenes look into their methods." IBM's X-Force Incident Response Intelligence Services (IRIS) got hold of nearly five hours worth of video recordings of the state-sponsored group it calls ITG18 (also called Charming Kitten, Phosphorous, or APT35) that
Kategorie: Hacking & Security

4 Dangerous Brazilian Banking Trojans Now Trying to Rob Users Worldwide

17 Červenec, 2020 - 10:33
Cybersecurity researchers on Tuesday detailed as many as four different families of Brazilian banking trojans that have targeted financial institutions in Brazil, Latin America, and Europe. Collectively called the "Tetrade" by Kaspersky researchers, the malware families — comprising Guildma, Javali, Melcoz, and Grandoreiro — have evolved their capabilities to function as a backdoor and adopt a
Kategorie: Hacking & Security

Several High-Profile Accounts Hacked in the Biggest Twitter Hack of All Time

17 Červenec, 2020 - 10:23
Social media platform Twitter, earlier today on Wednesday, was on fire after it suffered one of the biggest cyberattacks in its history. A number of high-profile Twitter accounts, including those of US presidential candidate Joe Biden, Amazon CEO Jeff Bezos, Bill Gates, Elon Musk, Uber, and Apple, were breached simultaneously in what's a far-reaching hacking campaign carried out to promote a
Kategorie: Hacking & Security

New Android Malware Now Steals Passwords For Non-Banking Apps Too

17 Červenec, 2020 - 10:22
Cybersecurity researchers today uncovered a new strain of banking malware that targets not only banking apps but also steals data and credentials from social networking, dating, and cryptocurrency apps—a total of 337 non-financial Android applications on its target list. Dubbed "BlackRock" by ThreatFabric researchers, which discovered the trojan in May, its source code is derived from a leaked
Kategorie: Hacking & Security

A New Flaw In Zoom Could Have Let Fraudsters Mimic Organisations

16 Červenec, 2020 - 14:11
In a report shared with The Hacker News, researchers at cybersecurity firm CheckPoint today disclosed details of a minor but easy-to-exploit flaw they reported in Zoom, the highly popular and widely used video conferencing software. The latest Zoom flaw could have allowed attackers mimic an organization, tricking its employees or business partners into revealing personal or other confidential
Kategorie: Hacking & Security

Critical RCE Flaw Affects F5 BIG-IP Application Security Servers

15 Červenec, 2020 - 20:43
Cybersecurity researchers today issued a security advisory warning enterprises and governments across the globe to immediately patch a highly-critical remote code execution vulnerability affecting F5's BIG-IP networking devices running application security servers. The vulnerability, assigned CVE-2020-5902 and rated as critical with a CVSS score of 10 out of 10, could let remote attackers
Kategorie: Hacking & Security

17-Year-Old Critical 'Wormable' RCE Vulnerability Impacts Windows DNS Servers

15 Červenec, 2020 - 10:02
Cybersecurity researchers today disclosed a new highly critical "wormable" vulnerability—carrying a severity score of 10 out of 10 on the CVSS scale—affecting Windows Server versions 2003 to 2019. The 17-year-old remote code execution flaw (CVE-2020-1350), dubbed 'SigRed' by Check Point, could allow an unauthenticated, remote attacker to gain domain administrator privileges over targeted
Kategorie: Hacking & Security

Adobe Issues July 2020 Critical Security Patches for Multiple Software

14 Červenec, 2020 - 16:45
Adobe today released software updates to patch a total of 13 new security vulnerabilities affecting 5 of its widely used applications. Out of these 13 vulnerabilities, four have been rated critical, and nine are important in severity. The affected products that received security patches today include: Adobe Creative Cloud Desktop Application Adobe Media Encoder Adobe Genuine Service Adobe
Kategorie: Hacking & Security

New Highly-Critical SAP Bug Could Let Attackers Take Over Corporate Servers

14 Červenec, 2020 - 09:17
SAP has patched a critical vulnerability impacting the LM Configuration Wizard component in NetWeaver Application Server (AS) Java platform, allowing an unauthenticated attacker to take control of SAP applications. The bug, dubbed RECON and tracked as CVE-2020-6287, is rated with a maximum CVSS score of 10 out of 10, potentially affecting over 40,000 SAP customers, according to cybersecurity
Kategorie: Hacking & Security

Exclusive: Any Chingari App (Indian TikTok Clone) Account Can Be Hacked Easily

11 Červenec, 2020 - 21:03
Following vulnerability disclosure in the Mitron app, another viral TikTok clone in India has now been found vulnerable to a critical but easy-to-exploit authentication bypass vulnerability, allowing anyone to hijack any user account and tamper with their information, content, and even upload unauthorized videos. The Indian video sharing app, called Chingari, is available for Android and iOS
Kategorie: Hacking & Security

Unpatched Critical Flaw Disclosed in Zoom Software for Windows 7 or Earlier

10 Červenec, 2020 - 17:51
A zero-day vulnerability has been discovered in Zoom video conferencing software for Windows that could allow an attacker to execute arbitrary code on a victim's computer running Microsoft Windows 7 or older. To successfully exploit the zoom vulnerability, all an attacker needs to do is tricking a Zoom user into performing some typical action like opening a received document file. No security
Kategorie: Hacking & Security

Joker Malware Apps Once Again Bypass Google's Security to Spread via Play Store

9 Červenec, 2020 - 16:51
Cybersecurity researchers took the wraps off yet another instance of Android malware hidden under the guise of legitimate applications to stealthily subscribe unsuspecting users for premium services without their knowledge. In a report published by Check Point research today, the malware — infamously called Joker (or Bread) — has found another trick to bypass Google's Play Store protections:
Kategorie: Hacking & Security