The Hacker News

Syndikovat obsah The Hacker News
The Hacker News has been internationally recognized as a leading news source dedicated to promoting awareness for security experts and hackers
Aktualizace: 58 min 36 sek zpět

From Now On, Only Default Android Apps Can Access Call Log and SMS Data

9 Říjen, 2018 - 10:37
A few hours ago the company announced its "non-shocking" plans to shut down Google+ social media network following a "shocking" data breach incident. Now to prevent abuse and potential leakage of sensitive data to third-party app developers, Google has made several significant changes giving users more control over what type of data they choose to share with each app. The changes are part of
Kategorie: Hacking & Security

Google+ is Shutting Down After a Vulnerability Exposed 500,000 Users' Data

8 Říjen, 2018 - 21:31
Google is going to shut down its social media network Google+ after the company suffered a massive data breach that exposed the private data of hundreds of thousands of Google Plus users to third-party developers. According to the tech giant, a security vulnerability in one of Google+'s People APIs allowed third-party developers to access data for more than 500,000 users, including their
Kategorie: Hacking & Security

New Exploit for MikroTik Router WinBox Vulnerability Gives Full Root Access

8 Říjen, 2018 - 17:34
A known vulnerability in MikroTik routers is potentially far more dangerous than previously thought. A cybersecurity researcher from Tenable Research has released a new proof-of-concept (PoC) RCE attack for an old directory traversal vulnerability that was found and patched within a day of its discovery in April this year. The vulnerability, identified as CVE-2018-14847, was initially rated
Kategorie: Hacking & Security

How to Start a Career in Cybersecurity: All You Need to Know

8 Říjen, 2018 - 15:01
Cybersecurity is one of the most dynamic and exciting fields in tech, combining cutting-edge information technology with crime fighting. It’s also an industry in serious need of qualified professionals. Estimates show that there are over one million unfilled cybersecurity jobs. The U.S. Bureau of Labor Statistics projects that employment of information security analysts will grow 28 percent
Kategorie: Hacking & Security

Chinese Spying Chips Found Hidden On Servers Used By US Companies

4 Říjen, 2018 - 15:03
A media report today revealed details of a significant supply chain attack which appears to be one of the largest corporate espionage and hardware hacking programs from a nation-state. According to a lengthy report published today by Bloomberg, a tiny surveillance chip, not much bigger than a grain of rice, has been found hidden in the servers used by nearly 30 American companies, including
Kategorie: Hacking & Security

Wi-Fi Gets Simplified Version Numbers and Next Version is Wi-Fi 6

3 Říjen, 2018 - 20:36
Do you know what is the latest version of Wi-Fi? It's okay if you don't know. It is — Wi-Fi is 802.11ac. I am sure many of us can't answer this question immediately because the Wi-Fi technology doesn't have a traditional format of version numbers… at least until yesterday. The Wi-Fi Alliance—the group that manages the implementation of Wi-Fi—has today announced that the next version of WiFi
Kategorie: Hacking & Security

Bank Servers Hacked to Trick ATMs into Spitting Out Millions in Cash

3 Říjen, 2018 - 13:18
The US-CERT has released a joint technical alert from the DHS, the FBI, and Treasury warning about a new ATM scheme being used by the prolific North Korean APT hacking group known as Hidden Cobra. Hidden Cobra, also known as Lazarus Group and Guardians of Peace, is believed to be backed by the North Korean government and has previously launched attacks against a number of media organizations,
Kategorie: Hacking & Security

Facebook Finds 'No Evidence' Hackers Accessed Connected Third-Party Apps

3 Říjen, 2018 - 09:27
When Facebook last weekend disclosed a massive data breach—that compromised access tokens for more than 50 million accounts—many feared that the stolen tokens could have been used to access other third-party services, including Instagram and Tinder, through Facebook login. Good news is that Facebook found no evidence "so far" that proves such claims. In a blog post published Tuesday,
Kategorie: Hacking & Security

Google Announces 5 Major Security Updates for Chrome Extensions

2 Říjen, 2018 - 18:29
Google has made several new announcements for its Chrome Web Store that aims at making Chrome extensions more secure and transparent to its users. Over a couple of years, we have seen a significant rise in malicious extensions that appear to offer useful functionalities, while running hidden malicious scripts in the background without the user's knowledge. However, the best part is that
Kategorie: Hacking & Security

New iPhone Passcode Bypass Hack Exposes Photos and Contacts

2 Říjen, 2018 - 11:36
Looking for a hack to bypass the passcode or screen lock on iPhones? Jose Rodriguez, an iPhone enthusiast, has discovered a passcode bypass vulnerability in Apple’s new iOS version 12 that potentially allows an attacker to access photos and contacts, including phone numbers and emails, on a locked iPhone XS and other recent iPhone models. Rodriguez, who also discovered iPhone lock screen
Kategorie: Hacking & Security

GhostDNS: New DNS Changer Botnet Hijacked Over 100,000 Routers

1 Říjen, 2018 - 16:51
Chinese cybersecurity researchers have uncovered a widespread, ongoing malware campaign that has already hijacked over 100,000 home routers and modified their DNS settings to hack users with malicious web pages—especially if they visit banking sites—and steal their login credentials. Dubbed GhostDNS, the campaign has many similarities with the infamous DNSChanger malware that works by
Kategorie: Hacking & Security

Telegram Calling Feature Leaks Your IP Addresses—Patch Released

1 Říjen, 2018 - 14:06
The desktop version of the security and privacy-focused, end-to-end encrypted messaging app, Telegram, has been found leaking both users' private and public IP addresses by default during voice calls. With 200 million monthly active users as of March 2018, Telegram promotes itself as an ultra-secure instant messaging service that lets its users make end-to-end encrypted chat and voice call
Kategorie: Hacking & Security

Facebook Hacked — 10 Important Updates You Need To Know About

29 Září, 2018 - 16:37
If you also found yourself logged out of Facebook on Friday, you are not alone. Facebook forced more than 90 million users to log out and back into their accounts in response to a massive data breach. On Friday afternoon, the social media giant disclosed that some unknown hackers managed to exploit three vulnerabilities in its website and steal data from 50 million users and that as a
Kategorie: Hacking & Security

Hackers Stole 50 Million Facebook Users' Access Tokens Using Zero-Day Flaw

29 Září, 2018 - 11:41
Logged out from your Facebook account automatically? Well you're not alone… Facebook just admitted that an unknown hacker or a group of hackers exploited a zero-day vulnerability in its social media platform that allowed them to steal secret access tokens for more than 50 million accounts. UPDATE:  10 Important Updates You Need To Know About the Latest Facebook Hacking Incident. In a brief
Kategorie: Hacking & Security

Julian Assange will no longer be the editor-in-chief of WikiLeaks

28 Září, 2018 - 14:44
Julian Assange, the founder of popular whistleblower website WikiLeaks, is stepping down from the position of editor-in-chief of the organisation under "extraordinary circumstances." Assange, the 47-year-old Australian hacker, founded WikiLeaks in 2006 and has since made many high-profile leaks, exposing 'dirty' secrets of several individuals, political parties as well as government
Kategorie: Hacking & Security

Google Hacker Discloses New Linux Kernel Vulnerability and PoC Exploit

28 Září, 2018 - 10:35
A cybersecurity researcher with Google Project Zero has released the details, and a proof-of-concept (PoC) exploit for a high severity vulnerability that exists in Linux kernel since kernel version 3.16 through 4.18.8. Discovered by white hat hacker Jann Horn, the kernel vulnerability (CVE-2018-17182) is a cache invalidation bug in the Linux memory management subsystem that leads to
Kategorie: Hacking & Security

16-Year-Old Boy Who Hacked Apple's Private Systems Gets No Jail Time

27 Září, 2018 - 21:20
An Australian teenager who pleaded guilty to break into Apple's private systems multiple times over several months and download some 90GB of secure files has avoided conviction and will not serve time in prison. An Australian Children's Court has given the now 19-year-old adult defendant, who was 16 at the time of committing the crime, a probation order of eight months, though the magistrate
Kategorie: Hacking & Security

Cybersecurity Researchers Spotted First-Ever UEFI Rootkit in the Wild

27 Září, 2018 - 19:40
Cybersecurity researchers at ESET have unveiled what they claim to be the first-ever UEFI rootkit being used in the wild, allowing hackers to implant persistent malware on the targeted computers that could survive a complete hard-drive wipe. Dubbed LoJax, the UEFI rootkit is part of a malware campaign conducted by the infamous Sednit group, also known as APT28, Fancy Bear, Strontium, and
Kategorie: Hacking & Security

New Linux Kernel Bug Affects Red Hat, CentOS, and Debian Distributions

27 Září, 2018 - 18:52
Security researchers have published the details and proof-of-concept (PoC) exploits of an integer overflow vulnerability in the Linux kernel that could allow an unprivileged user to gain superuser access to the targeted system. The vulnerability, discovered by cloud-based security and compliance solutions provider Qualys, which has been dubbed "Mutagen Astronomy," affects the kernel versions
Kategorie: Hacking & Security

Pangu Hackers have Jailbroken iOS 12 on Apple's New iPhone XS

27 Září, 2018 - 17:21
Bad news for Apple. The Chinese hacking team Pangu is back and has once again surprised everyone with a jailbreak for iOS 12 running on the brand-new iPhone XS. Well, that was really fast. Pangu jailbreak team has been quiet for a while, since it last released the untethered jailbreak tool for iOS 9 back in October 2015. <!-- linkads --> Jailbreaking is a process of removing limitations on
Kategorie: Hacking & Security