The Hacker News31m
Hackers Exploit Roundcube Webmail XSS Vulnerability to Steal Login Credentials
The attack chain, per Positive Technologies, is an attempt to exploit CVE-2024-37383 (CVSS score: 6.1), a stored cross-site ...
The Hacker News22h
Acronym Overdose – Navigating the Complex Data Security Landscape
DLP (Data Loss Prevention): As a cornerstone of data security, DLP ensures that sensitive data, such as personally ...
The Hacker News1d
Crypt Ghouls Targets Russian Firms with LockBit 3.0 and Babuk Ransomware Attacks
Crypt Ghouls target Russian businesses and agencies using LockBit 3.0 and Babuk ransomware for financial gain.
The Hacker News2d
Microsoft Reveals macOS Vulnerability that Bypasses Privacy Controls in Safari Browser
The shortcoming, codenamed HM Surf by the tech giant, is tracked as CVE-2024-44133. It was addressed by Apple as part of ...
The Hacker News1d
U.S. and Allies Warn of Iranian Cyberattacks on Critical Infrastructure in Year-Long Campaign
Cybersecurity and intelligence agencies from Australia, Canada, and the U.S. have warned about a year-long campaign ...
The Hacker News2d
Russian RomCom Attacks Target Ukrainian Government with New SingleCamper RAT Variant
The Russian threat actor known as RomCom has been linked to a new wave of cyber attacks aimed at Ukrainian government ...
The Hacker News1d
North Korean IT Workers in Western Firms Now Demanding Ransom for Stolen Data
North Korean IT workers posing as freelancers steal data from Western firms, demanding ransoms for its return.
The Hacker News2d
SideWinder APT Strikes Middle East and Africa With Stealthy Multi-Stage Attack
SideWinder APT launches stealthy multi-stage attacks, deploying StealerBot malware against critical entities in the Middle ...
The Hacker News2d
U.S. Charges Two Sudanese Brothers for Record 35,000 DDoS Attacks
Sudanese brothers charged for 35,000 DDoS attacks targeting Microsoft, hospitals, and global networks in 2023.
The Hacker News2d
Researchers Uncover Cicada3301 Ransomware Operations and Its Affiliate Program
Group-IB reveals Cicada3301 ransomware’s affiliate panel, targeting U.S. and U.K. sectors with cross-platform attacks.
The Hacker News3d
Critical Kubernetes Image Builder Vulnerability Exposes Nodes to Root Access Risk
Critical Kubernetes Image Builder vulnerability CVE-2024-9486 patched to prevent root access via default credentials.
The Hacker News3d
Hackers Abuse EDRSilencer Tool to Bypass Security and Hide Malicious Activity
Cybercriminals abuse EDRSilencer to disable endpoint detection tools, making malicious activity harder to detect.