Cybersecurity researchers have uncovered a targeted cyber attack against Ukraine that leveraged a 7-year-old Microsoft Office flaw to deploy Cobalt St

The Hacker News

27.04.2024

New 'Brokewell' Android Malware Spread Through Fake Browser Updates

A new Android malware called Brokewell is disguising itself as updates for popular apps like Google Chrome and Klarna

The Hacker News

27.04.2024

10 Critical Endpoint Security Tips You Should Know

Unlock Endpoint Security with our top 10 must-know tips! From MFA to EDR, discover how to protect your digital kingdom.

The Hacker News

27.04.2024

Palo Alto Networks Outlines Remediation for Critical PAN-OS Flaw Under Attack

A critical vulnerability (CVE-2024-3400) in PAN-OS could expose your systems to remote code execution attacks.

The Hacker News

27.04.2024

Bogus npm Packages Used to Trick Software Developers into Installing Malware

Hackers are disguising Python backdoors as legitimate npm packages to target developers during fake job interviews.

The Hacker News

27.04.2024

Severe Flaws Disclosed in Brocade SANnav SAN Management Software

Multiple critical vulnerabilities discovered in Brocade SANnav SAN management application, impacting all versions up to 2.3.0.

The Hacker News

26.04.2024

DOJ Arrests Founders of Crypto Mixer Samourai for $2 Billion in Illegal Transactions

The U.S. DOJ has made a significant move by arresting the founders of Samourai, a crypto mixer, for laundering over $100M

The Hacker News

26.04.2024

Hackers Exploiting WP-Automatic Plugin Bug to Create Admin Accounts on WordPress Sites

A critical vulnerability (CVE-2024-27956) in the WP-Automatic plugin is being actively exploited. This flaw could allow attackers to take complete con

The Hacker News

26.04.2024

Network Threats: A Step-by-Step Attack Demonstration

This article takes you through a real-life network attack simulation, covering 6 steps from Initial Access to Data Exfiltration.

The Hacker News

26.04.2024

North Korea's Lazarus Group Deploys New Kaolin RAT via Fake Job Lures

North Korean hackers used fake job offers to deliver a new Trojan called Kaolin RAT. It can change file timestamps and load malware.

The Hacker News

25.04.2024

State-Sponsored Hackers Exploit Two Cisco Zero-Day Vulnerabilities for Espionage

A new stealthy malware campaign leveraging two zero-day flaws in Cisco networking gear has been uncovered, allowing covert data collection and reconna

The Hacker News

25.04.2024

Researchers Detail Multistage Attack Hijacking Systems with SSLoad, Cobalt Strike

A sophisticated attack campaign dubbed "FROZEN#SHADOW" is underway, using phishing emails to infect systems with the stealthy malware SSLoad.

The Hacker News

25.04.2024

Google Postpones Third-Party Cookie Deprecation Amid U.K. Regulatory Scrutiny

Google hits the brakes on phasing out third-party cookies in Chrome until 2024.

The Hacker News

25.04.2024

U.S. Treasury Sanctions Iranian Firms and Individuals Tied to Cyber Attacks

U.S. Treasury Department has sanctioned two Iranian firms and four individuals for their involvement in malicious cyber activities targeting U.S.

The Hacker News

24.04.2024

Webinar: Learn Proactive Supply Chain Threat Hunting Techniques

Join industry experts Rhys Arkins and Jeffrey Martin for an exclusive webinar on combating supply chain threats.

The Hacker News

24.04.2024

Unmasking the True Cost of Cyberattacks: Beyond Ransom and Recovery

Businesses face massive disruptions from cyberattacks. From revenue losses to strained customer relations. Discover the hidden costs of cyber breaches

The Hacker News

24.04.2024

Major Security Flaws Expose Keystrokes of Over 1 Billion Chinese Keyboard App Users

Major security flaws uncovered in popular Chinese keyboard apps! Researchers found vulnerabilities that could expose users' private keystrokes.

The Hacker News

24.04.2024

Police Chiefs Call for Solutions to Access Encrypted Data in Serious Crime Cases

European police warn that default E2EE could severely hamper efforts to tackle online crimes like child abuse and terrorism.

The Hacker News

24.04.2024

eScan Antivirus Update Mechanism Exploited to Spread Backdoors and Miners

A sophisticated malware called GuptiMiner has been leveraging a flaw in eScan antivirus updates to spread backdoors and crypto miners across corporate

The Hacker News

24.04.2024

Apache Cordova App Harness Targeted in Dependency Confusion Attack

Researchers discovered a "dependency confusion" vulnerability in an archived Apache project, Cordova App Harness.

The Hacker News

24.04.2024

CoralRaider Malware Campaign Exploits CDN Cache to Spread Info-Stealers

A suspected Vietnamese hacking group is leveraging CDN cache to distribute malware undetected.

The Hacker News

24.04.2024

German Authorities Issue Arrest Warrants for Three Suspected Chinese Spies

German authorities issued arrest warrants against three citizens on suspicion of spying for China.

The Hacker News

23.04.2024

ToddyCat Hacker Group Uses Advanced Tools for Industrial-Scale Data Theft

Kaspersky has uncovered a concerning threat actor, ToddyCat, targeting government and military entities.

The Hacker News

23.04.2024

Russia's APT28 Exploited Windows Print Spooler Flaw to Deploy 'GooseEgg' Malware

Hackers linked to Russia have been exploiting a Windows bug for YEARS to deploy GooseEgg malware for escalating attack access.

The Hacker News

23.04.2024

MITRE Corporation Breached by Nation-State Hackers Exploiting Ivanti Flaws

MITRE, a top cybersecurity firm, breached by a nation-state. Zero-days and session hijacking were the weapons.

The Hacker News

23.04.2024

Pentera's 2024 Report Reveals Hundreds of Security Events per Week, Highlighting the Criticality of Continuous Validation

With enterprises using 53 different security solutions, why are breaches still a frequent reality? Unpack the paradox in our latest report.

The Hacker News

23.04.2024

Ransomware Double-Dip: Re-Victimization in Cyber Extortion

Major cybercrime groups are under attack by police. But are these takedowns effective? Some groups vanish, others bounce back in DAYS.

The Hacker News

23.04.2024

U.S. Imposes Visa Restrictions on 13 Linked to Commercial Spyware Misuse

The U.S. is cracking down on individuals involved in the development and sale of commercial spyware.

The Hacker News

23.04.2024

Researchers Uncover Windows Flaws Granting Hackers Rootkit-Like Powers

Researchers detail a flaw in the Windows DOS-to-NT path conversion process which can be exploited by threat actors to gain rootkit like powers.

The Hacker News

22.04.2024

Microsoft Warns: North Korean Hackers Turn to AI-Fueled Cyber Espionage

North Korea's state-linked hackers are enhancing their operations with advanced artificial intelligence tools.

The Hacker News

21.04.2024

New RedLine Stealer Variant Disguised as Game Cheats Using Lua Bytecode for Stealth

A new variant of the RedLine Stealer malware has been discovered, utilizing Lua bytecode for stealth and effectiveness.

The Hacker News

20.04.2024

Critical Update: CrushFTP Zero-Day Flaw Exploited in Targeted Attacks

If you use CrushFTP for file transfers, update to the latest version immediately.

The Hacker News

20.04.2024

Palo Alto Networks Discloses More Details on Critical PAN-OS Flaw Under Attack

A critical vulnerability (CVE-2024-3400) in Palo Alto Networks PAN-OS is being actively exploited by threat actors.

The Hacker News

20.04.2024

Akira Ransomware Gang Extorts $42 Million; Now Targets Linux Servers

Akira Ransomware group has already extorted roughly $42 million from over 250 victims globally. They are now targeting both Windows and Linux systems.

The Hacker News

20.04.2024

How Attackers Can Own a Business Without Touching the Endpoint

How attackers are hacking organizations without touching the endpoint by targeting cloud identities.

The Hacker News

20.04.2024

BlackTech Targets Tech, Research, and Gov Sectors New 'Deuterbear' Tool

China-linked hacking group Earth Hundun is targeting Asia-Pacific tech, research, and government sectors with advanced malware, including "Waterbear"

The Hacker News

19.04.2024

New Android Trojan 'SoumniBot' Evades Detection with Clever Tricks

New Android malware "SoumniBot" targets users in South Korea by exploiting unique evasion tactics. Find out how it slips through security cracks.

The Hacker News

19.04.2024

Hackers Target Middle East Governments with Evasive "CR4T" Backdoor

A new threat, 'DuneQuixote', targets Middle East governments with sophisticated evasion tactics.

The Hacker News

19.04.2024

Recover from Ransomware in 5 Minutes—We will Teach You How!

Keep your organization out of the ransomware news headlines and your applications protected with this simple, effective solution from Zerto.

home›The Hacker News›Software

The Hacker News - Software

Okta Warns of Unprecedented Surge in Proxy-Driven Credential Stuffing Attacks

Ukraine Targeted in Cyberattack Exploiting 7-Year-Old Microsoft Office Flaw

New 'Brokewell' Android Malware Spread Through Fake Browser Updates

10 Critical Endpoint Security Tips You Should Know

Palo Alto Networks Outlines Remediation for Critical PAN-OS Flaw Under Attack

Bogus npm Packages Used to Trick Software Developers into Installing Malware

Severe Flaws Disclosed in Brocade SANnav SAN Management Software

DOJ Arrests Founders of Crypto Mixer Samourai for $2 Billion in Illegal Transactions

Hackers Exploiting WP-Automatic Plugin Bug to Create Admin Accounts on WordPress Sites

Network Threats: A Step-by-Step Attack Demonstration

North Korea's Lazarus Group Deploys New Kaolin RAT via Fake Job Lures

State-Sponsored Hackers Exploit Two Cisco Zero-Day Vulnerabilities for Espionage

Researchers Detail Multistage Attack Hijacking Systems with SSLoad, Cobalt Strike

Google Postpones Third-Party Cookie Deprecation Amid U.K. Regulatory Scrutiny

U.S. Treasury Sanctions Iranian Firms and Individuals Tied to Cyber Attacks

Webinar: Learn Proactive Supply Chain Threat Hunting Techniques

Unmasking the True Cost of Cyberattacks: Beyond Ransom and Recovery

Major Security Flaws Expose Keystrokes of Over 1 Billion Chinese Keyboard App Users

Police Chiefs Call for Solutions to Access Encrypted Data in Serious Crime Cases

eScan Antivirus Update Mechanism Exploited to Spread Backdoors and Miners

Apache Cordova App Harness Targeted in Dependency Confusion Attack

CoralRaider Malware Campaign Exploits CDN Cache to Spread Info-Stealers

German Authorities Issue Arrest Warrants for Three Suspected Chinese Spies

ToddyCat Hacker Group Uses Advanced Tools for Industrial-Scale Data Theft

Russia's APT28 Exploited Windows Print Spooler Flaw to Deploy 'GooseEgg' Malware

MITRE Corporation Breached by Nation-State Hackers Exploiting Ivanti Flaws

Pentera's 2024 Report Reveals Hundreds of Security Events per Week, Highlighting the Criticality of Continuous Validation

Ransomware Double-Dip: Re-Victimization in Cyber Extortion

U.S. Imposes Visa Restrictions on 13 Linked to Commercial Spyware Misuse

Researchers Uncover Windows Flaws Granting Hackers Rootkit-Like Powers

Microsoft Warns: North Korean Hackers Turn to AI-Fueled Cyber Espionage

New RedLine Stealer Variant Disguised as Game Cheats Using Lua Bytecode for Stealth

Critical Update: CrushFTP Zero-Day Flaw Exploited in Targeted Attacks

Palo Alto Networks Discloses More Details on Critical PAN-OS Flaw Under Attack

Akira Ransomware Gang Extorts $42 Million; Now Targets Linux Servers

How Attackers Can Own a Business Without Touching the Endpoint

BlackTech Targets Tech, Research, and Gov Sectors New 'Deuterbear' Tool

New Android Trojan 'SoumniBot' Evades Detection with Clever Tricks

Hackers Target Middle East Governments with Evasive "CR4T" Backdoor

Recover from Ransomware in 5 Minutes—We will Teach You How!

home
›
The Hacker News
›
Software