The Hacker News20h
Hackers Exploit Roundcube Webmail XSS Vulnerability to Steal Login Credentials
The attack chain, per Positive Technologies, is an attempt to exploit CVE-2024-37383 (CVSS score: 6.1), a stored cross-site ...
The Hacker News1d
Acronym Overdose – Navigating the Complex Data Security Landscape
DLP (Data Loss Prevention): As a cornerstone of data security, DLP ensures that sensitive data, such as personally ...
The Hacker News2d
Microsoft Reveals macOS Vulnerability that Bypasses Privacy Controls in Safari Browser
The shortcoming, codenamed HM Surf by the tech giant, is tracked as CVE-2024-44133. It was addressed by Apple as part of ...
The Hacker News1d
Crypt Ghouls Targets Russian Firms with LockBit 3.0 and Babuk Ransomware Attacks
Crypt Ghouls target Russian businesses and agencies using LockBit 3.0 and Babuk ransomware for financial gain.
The Hacker News2d
Beware: Fake Google Meet Pages Deliver Infostealers in Ongoing ClickFix Campaign
Fake Google Meet pages deliver malware targeting Windows and macOS, spreading infostealers via ClickFix campaign.
The Hacker News3d
SideWinder APT Strikes Middle East and Africa With Stealthy Multi-Stage Attack
SideWinder APT launches stealthy multi-stage attacks, deploying StealerBot malware against critical entities in the Middle ...
The Hacker News3d
Researchers Uncover Cicada3301 Ransomware Operations and Its Affiliate Program
Group-IB reveals Cicada3301 ransomware’s affiliate panel, targeting U.S. and U.K. sectors with cross-platform attacks.
The Hacker News2d
U.S. and Allies Warn of Iranian Cyberattacks on Critical Infrastructure in Year-Long Campaign
Cybersecurity and intelligence agencies from Australia, Canada, and the U.S. have warned about a year-long campaign ...
The Hacker News3d
Russian RomCom Attacks Target Ukrainian Government with New SingleCamper RAT Variant
The Russian threat actor known as RomCom has been linked to a new wave of cyber attacks aimed at Ukrainian government ...
The Hacker News3d
U.S. Charges Two Sudanese Brothers for Record 35,000 DDoS Attacks
Sudanese brothers charged for 35,000 DDoS attacks targeting Microsoft, hospitals, and global networks in 2023.
The Hacker News5d
WordPress Plugin Jetpack Patches Major Vulnerability Affecting 27 Million Sites
Jetpack, owned by WordPress maker Automattic, is an all-in-one plugin that offers a comprehensive suite of tools to improve ...
The Hacker News2d
North Korean IT Workers in Western Firms Now Demanding Ransom for Stolen Data
North Korean IT workers posing as freelancers steal data from Western firms, demanding ransoms for its return.