@thehackernews.com@rss-parrot.net
I'm an automated parrot! I relay a website's RSS feed to the Fediverse. Every time a new post appears in the feed, I toot about it. Follow me to get all new posts in your Mastodon timeline! Brought to you by the RSS Parrot.
---
Most trusted, widely-read independent cybersecurity news source for everyone; supported by hackers and IT professionals — Send TIPs to admin@thehackernews.com
Site URL: thehackernews.com
Feed URL: feeds.feedburner.com/TheHackersNews
Posts: 33
Followers: 1
North Korean Threat Actors Deploy COVERTCATCH Malware via LinkedIn Job Scams
https://thehackernews.com/2024/09/north-korean-threat-actors-deploy.html
Published: September 7, 2024 07:28
Threat actors affiliated with North Korea have been observed leveraging LinkedIn as a way to target developers as part of a fake job recruiting operation. These attacks employ coding tests as a common initial infection vector, Google-owned Mandiant said…
FBI Cracks Down on Dark Web Marketplace Managed by Russian and Kazakh Nationals
https://thehackernews.com/2024/09/fbi-cracks-down-on-dark-web-marketplace.html
Published: September 7, 2024 07:10
Two men have been indicted in the U.S. for their alleged involvement in managing a dark web marketplace called WWH Club that specializes in the sale of sensitive personal and financial information. Alex Khodyrev, a 35-year-old Kazakhstan national, and…
SonicWall Urges Users to Patch Critical Firewall Flaw Amid Possible Exploitation
https://thehackernews.com/2024/09/sonicwall-urges-users-to-patch-critical.html
Published: September 6, 2024 15:55
SonicWall has revealed that a recently patched critical security flaw impacting SonicOS may have come under active exploitation, making it essential that users apply the patches as soon as possible. The vulnerability, tracked as CVE-2024-40766, carries a…
GeoServer Vulnerability Targeted by Hackers to Deliver Backdoors and Botnet Malware
https://thehackernews.com/2024/09/geoserver-vulnerability-targeted-by.html
Published: September 6, 2024 15:14
A recently disclosed security flaw in OSGeo GeoServer GeoTools has been exploited as part of multiple campaigns to deliver cryptocurrency miners, botnet malware such as Condi and JenX, and a known backdoor called SideWalk. The security vulnerability is a…
GitHub Actions Vulnerable to Typosquatting, Exposing Developers to Hidden Malicious Code
https://thehackernews.com/2024/09/github-actions-vulnerable-to.html
Published: September 6, 2024 15:03
Threat actors have long leveraged typosquatting as a means to trick unsuspecting users into visiting malicious websites or downloading booby-trapped software and packages. These attacks typically involve registering domains or packages with names slightly…
The State of the Virtual CISO Report: MSP/MSSP Security Strategies for 2025
https://thehackernews.com/2024/09/the-state-of-virtual-ciso-report.html
Published: September 6, 2024 09:37
The 2024 State of the vCISO Report continues Cynomi’s tradition of examining the growing popularity of virtual Chief Information Security Officer (vCISO) services. According to the independent survey, the demand for these services is increasing, with both…
Critical Security Flaw Found in LiteSpeed Cache Plugin for WordPress
https://thehackernews.com/2024/09/critical-security-flaw-found-in.html
Published: September 6, 2024 06:35
Cybersecurity researchers have discovered yet another critical security flaw in the LiteSpeed Cache plugin for WordPress that could allow unauthenticated users to take control of arbitrary accounts. The vulnerability, tracked as CVE-2024-44000 (CVSS score:…
Apache OFBiz Update Fixes High-Severity Flaw Leading to Remote Code Execution
https://thehackernews.com/2024/09/apache-ofbiz-update-fixes-high-severity.html
Published: September 6, 2024 05:22
A new security flaw has been addressed in the Apache OFBiz open-source enterprise resource planning (ERP) system that, if successfully exploited, could lead to unauthenticated remote code execution on Linux and Windows. The high-severity vulnerability,…
Pavel Durov Criticizes Outdated Laws After Arrest Over Telegram Criminal Activity
https://thehackernews.com/2024/09/paul-durov-criticizes-outdated-laws.html
Published: September 6, 2024 04:02
Telegram CEO Pavel Durov has broken his silence nearly two weeks after his arrest in France, stating the charges are misguided. "If a country is unhappy with an internet service, the established practice is to start a legal action against the service…
Chinese-Speaking Hacker Group Targets Human Rights Studies in Middle East
https://thehackernews.com/2024/09/chinese-speaking-hacker-group-targets.html
Published: September 5, 2024 16:19
Unnamed government entities in the Middle East and Malaysia are the target of a persistent cyber campaign orchestrated by a threat actor known as Tropic Trooper since June 2023. "Sighting this group's [Tactics, Techniques, and Procedures] in critical…
Veeam Releases Security Updates to Fix 18 Flaws, Including 5 Critical Issues
https://thehackernews.com/2024/09/veeam-releases-security-updates-to-fix.html
Published: September 5, 2024 16:05
Veeam has shipped security updates to address a total of 18 security flaws impacting its software products, including five critical vulnerabilities that could result in remote code execution. The list of shortcomings is below - CVE-2024-40711 (CVSS score:…
U.S. Seizes 32 Pro-Russian Propaganda Domains in Major Disinformation Crackdown
https://thehackernews.com/2024/09/us-seizes-32-pro-russian-propaganda.html
Published: September 5, 2024 12:04
The U.S. Department of Justice (DoJ) on Wednesday announced the seizure of 32 internet domains used by a pro-Russian propaganda operation called Doppelganger as part of a sweeping set of actions. Accusing the Russian government-directed foreign malign…
NIST Cybersecurity Framework (CSF) and CTEM – Better Together
https://thehackernews.com/2024/09/nist-cybersecurity-framework-csf-and.html
Published: September 5, 2024 09:19
It’s been a decade since the National Institute of Standards and Technology (NIST) introduced its Cybersecurity Framework (CSF) 1.0. Created following a 2013 Executive Order, NIST was tasked with designing a voluntary cybersecurity framework that would…
Malware Attackers Using MacroPack to Deliver Havoc, Brute Ratel, and PhantomCore
https://thehackernews.com/2024/09/malware-attackers-using-macropack-to.html
Published: September 5, 2024 07:45
Threat actors are likely employing a tool designated for red teaming exercises to serve malware, according to new findings from Cisco Talos. The program in question is a payload generation framework called MacroPack, which is used to generate Office…
New Cross-Platform Malware KTLVdoor Discovered in Attack on Chinese Trading Firm
https://thehackernews.com/2024/09/new-cross-platform-malware-ktlvdoor.html
Published: September 5, 2024 05:03
The Chinese-speaking threat actor known as Earth Lusca has been observed using a new backdoor dubbed KTLVdoor as part of a cyber attack targeting an unnamed trading company based in China. The previously unreported malware is written in Golang, and thus…
Cisco Fixes Two Critical Flaws in Smart Licensing Utility to Prevent Remote Attacks
https://thehackernews.com/2024/09/cisco-fixes-two-critical-flaws-in-smart.html
Published: September 5, 2024 04:40
Cisco has released security updates for two critical security flaws impacting its Smart Licensing Utility that could allow unauthenticated, remote attackers to elevate their privileges or access sensitive information. A brief description of the two…
North Korean Hackers Targets Job Seekers with Fake FreeConference App
https://thehackernews.com/2024/09/north-korean-hackers-targets-job.html
Published: September 4, 2024 15:52
North Korean threat actors have leveraged a fake Windows video conferencing application impersonating FreeConference.com to backdoor developer systems as part of an ongoing financially-driven campaign dubbed Contagious Interview. The new attack wave,…
Google Confirms CVE-2024-32896 Exploited in the Wild, Releases Android Security Patch
https://thehackernews.com/2024/09/google-confirms-cve-2024-32896.html
Published: September 4, 2024 13:36
Google has released its monthly security updates for the Android operating system to address a known security flaw that it said has come under active exploitation in the wild. The high-severity vulnerability, tracked as CVE-2024-32896 (CVSS score: 7.8),…
Hackers Hijack 22,000 Removed PyPI Packages, Spreading Malicious Code to Developers
https://thehackernews.com/2024/09/hackers-hijack-22000-removed-pypi.html
Published: September 4, 2024 13:00
A new supply chain attack technique targeting the Python Package Index (PyPI) registry has been exploited in the wild in an attempt to infiltrate downstream organizations. It has been codenamed Revival Hijack by software supply chain security firm JFrog,…
Zyxel Patches Critical OS Command Injection Flaw in Access Points and Routers
https://thehackernews.com/2024/09/zyxel-patches-critical-os-command.html
Published: September 4, 2024 11:27
Zyxel has released software updates to address a critical security flaw impacting certain access point (AP) and security router versions that could result in the execution of unauthorized commands. Tracked as CVE-2024-7261 (CVSS score: 9.8), the…
The New Effective Way to Prevent Account Takeovers
https://thehackernews.com/2024/09/the-new-effective-way-to-prevent.html
Published: September 4, 2024 10:54
Account takeover attacks have emerged as one of the most persistent and damaging threats to cloud-based SaaS environments. Yet despite significant investments in traditional security measures, many organizations continue to struggle with preventing these…
Clearview AI Faces €30.5M Fine for Building Illegal Facial Recognition Database
https://thehackernews.com/2024/09/clearview-ai-faces-305m-fine-for.html
Published: September 4, 2024 08:43
The Dutch Data Protection Authority (Dutch DPA) has imposed a fine of €30.5 million ($33.7 million) against facial recognition firm Clearview AI for violating the General Data Protection Regulation (GDPR) in the European Union (E.U.) by building an…
Hackers Use Fake GlobalProtect VPN Software in New WikiLoader Malware Attack
https://thehackernews.com/2024/09/hackers-use-fake-globalprotect-vpn.html
Published: September 4, 2024 05:31
A new malware campaign is spoofing Palo Alto Networks' GlobalProtect VPN software to deliver a variant of the WikiLoader (aka WailingCrab) loader by means of a search engine optimization (SEO) campaign. The malvertising activity, observed in June 2024, is…
Hacktivists Exploits WinRAR Vulnerability in Attacks Against Russia and Belarus
https://thehackernews.com/2024/09/hacktivists-exploits-winrar.html
Published: September 3, 2024 13:29
A hacktivist group known as Head Mare has been linked to cyber attacks that exclusively target organizations located in Russia and Belarus. "Head Mare uses more up-to-date methods for obtaining initial access," Kaspersky said in a Monday analysis of the…
New Rust-Based Ransomware Cicada3301 Targets Windows and Linux Systems
https://thehackernews.com/2024/09/new-rust-based-ransomware-cicada3301.html
Published: September 3, 2024 13:16
Cybersecurity researchers have unpacked the inner workings of a new ransomware variant called Cicada3301 that shares similarities with the now-defunct BlackCat (aka ALPHV) operation. "It appears that Cicada3301 ransomware primarily targets small to…
Rocinante Trojan Poses as Banking Apps to Steal Sensitive Data from Brazilian Android Users
https://thehackernews.com/2024/09/rocinante-trojan-poses-as-banking-apps.html
Published: September 3, 2024 09:37
Mobile users in Brazil are the target of a new malware campaign that delivers a new Android banking trojan named Rocinante. "This malware family is capable of performing keylogging using the Accessibility Service, and is also able to steal PII from its…
Secrets Exposed: Why Your CISO Should Worry About Slack
https://thehackernews.com/2024/09/secrets-exposed-why-your-ciso-should.html
Published: September 3, 2024 07:30
In the digital realm, secrets (API keys, private keys, username and password combos, etc.) are the keys to the kingdom. But what if those keys were accidentally left out in the open in the very tools we use to collaborate every day? A Single Secret Can…
New Flaws in Microsoft macOS Apps Could Allow Hackers to Gain Unrestricted Access
https://thehackernews.com/2024/09/new-flaws-in-microsoft-macos-apps-could.html
Published: September 3, 2024 04:01
Eight vulnerabilities have been uncovered in Microsoft applications for macOS that an adversary could exploit to gain elevated privileges or access sensitive data by circumventing the operating system's permissions-based model, which revolves around the…
Ex-Engineer Charged in Missouri for Failed $750,000 Bitcoin Extortion Attempt
https://thehackernews.com/2024/09/ex-engineer-charged-in-missouri-for.html
Published: September 3, 2024 01:58
A 57-year-old man from the U.S. state of Missouri has been arrested in connection with a failed data extortion campaign that targeted his former employer. Daniel Rhyne of Kansas City, Missouri, has been charged with one count of extortion in relation to a…
RansomHub Ransomware Group Targets 210 Victims Across Critical Sectors
https://thehackernews.com/2024/09/ransomhub-ransomware-group-targets-210.html
Published: September 2, 2024 13:33
Threat actors linked to the RansomHub ransomware group encrypted and exfiltrated data from at least 210 victims since its inception in February 2024, the U.S. government said. The victims span various sectors, including water and wastewater, information…
Webinar: Learn to Boost Cybersecurity with AI-Powered Vulnerability Management
https://thehackernews.com/2024/09/webinar-learn-to-boost-cybersecurity.html
Published: September 2, 2024 08:55
The world of cybersecurity is in a constant state of flux. New vulnerabilities emerge daily, and attackers are becoming more sophisticated. In this high-stakes game, security leaders need every advantage they can get. That's where Artificial Intelligence…
Next-Generation Attacks, Same Targets - How to Protect Your Users' Identities
https://thehackernews.com/2024/09/next-generation-attacks-same-targets.html
Published: September 2, 2024 07:00
The FBI and CISA Issue Joint Advisory on New Threats and How to Stop Ransomware Note: on August 29, the FBI and CISA issued a joint advisory as part of their ongoing #StopRansomware effort to help organizations protect against ransomware. The latest…
Malicious npm Packages Mimicking 'noblox.js' Compromise Roblox Developers’ Systems
https://thehackernews.com/2024/09/malicious-npm-packages-mimicking.html
Published: September 2, 2024 03:36
Roblox developers are the target of a persistent campaign that seeks to compromise systems through bogus npm packages, once again underscoring how threat actors continue to exploit the trust in the open-source ecosystem to deliver malware. "By mimicking…