The Hacker News11h
Hackers Exploit Roundcube Webmail XSS Vulnerability to Steal Login Credentials
The attack chain, per Positive Technologies, is an attempt to exploit CVE-2024-37383 (CVSS score: 6.1), a stored cross-site ...
The Hacker News1d
Crypt Ghouls Targets Russian Firms with LockBit 3.0 and Babuk Ransomware Attacks
Crypt Ghouls target Russian businesses and agencies using LockBit 3.0 and Babuk ransomware for financial gain.
The Hacker News1d
Acronym Overdose – Navigating the Complex Data Security Landscape
DLP (Data Loss Prevention): As a cornerstone of data security, DLP ensures that sensitive data, such as personally ...
The Hacker News2d
Microsoft Reveals macOS Vulnerability that Bypasses Privacy Controls in Safari Browser
The shortcoming, codenamed HM Surf by the tech giant, is tracked as CVE-2024-44133. It was addressed by Apple as part of ...
The Hacker News2d
U.S. and Allies Warn of Iranian Cyberattacks on Critical Infrastructure in Year-Long Campaign
Cybersecurity and intelligence agencies from Australia, Canada, and the U.S. have warned about a year-long campaign ...
The Hacker News3d
Russian RomCom Attacks Target Ukrainian Government with New SingleCamper RAT Variant
The Russian threat actor known as RomCom has been linked to a new wave of cyber attacks aimed at Ukrainian government ...
The Hacker News3d
U.S. Charges Two Sudanese Brothers for Record 35,000 DDoS Attacks
Sudanese brothers charged for 35,000 DDoS attacks targeting Microsoft, hospitals, and global networks in 2023.
The Hacker News6d
Critical Veeam Vulnerability Exploited to Spread Akira and Fog Ransomware
Cybercriminals exploit CVE-2024-40711 in Veeam to deploy ransomware, targeting unpatched systems and compromised VPNs.
The Hacker News3d
SideWinder APT Strikes Middle East and Africa With Stealthy Multi-Stage Attack
SideWinder APT launches stealthy multi-stage attacks, deploying StealerBot malware against critical entities in the Middle ...
The Hacker News2d
North Korean IT Workers in Western Firms Now Demanding Ransom for Stolen Data
North Korean IT workers posing as freelancers steal data from Western firms, demanding ransoms for its return.
The Hacker News5d
China Accuses U.S. of Fabricating Volt Typhoon to Hide Its Own Hacking Campaigns
Volt Typhoon is the moniker assigned to a China-nexus cyber espionage group that's believed to be active since 2019, ...
The Hacker News4d
North Korean ScarCruft Exploits Windows Zero-Day to Spread RokRAT Malware
The North Korean threat actor known as ScarCruft has been linked to the zero-day exploitation of a now-patched security flaw ...