Follow The Hacker News, filter it, and define how you want to receive the news (via Email, RSS, Telegram, WhatsApp etc.) https://follow.it/thehackernews Thu, 28 Sep 2023 02:17:22 +0200 https://api.follow.it/track-rss-story-click/v3/DdTglgecWgimc8zl3_x2BA A new threat actor known as AtlasCross has been observed leveraging Red Cross-themed phishing lures to deliver two previously undocumented backdoors named DangerAds and AtlasAgent. NSFOCUS Security Labs described the adversary as having a "high technical level and cautious attack attitude," adding that "the phishing attack activity captured this time is part of the attacker's targeted strike on]]> Wed, 27 Sep 2023 16:49:06 +0200 https://api.follow.it/track-rss-story-click/v3/DdTglgecWgimc8zl3_x2BA https://api.follow.it/track-rss-story-click/v3/DdTglgecWgg5ywJrfArNKw A novel side-channel attack called GPU.zip renders virtually all modern graphics processing units (GPU) vulnerable to information leakage. "This channel exploits an optimization that is data dependent, software transparent, and present in nearly all modern GPUs: graphical data compression," a group of academics from the University of Texas at Austin, Carnegie Mellon University, University of]]> Wed, 27 Sep 2023 14:57:10 +0200 https://api.follow.it/track-rss-story-click/v3/DdTglgecWgg5ywJrfArNKw https://api.follow.it/track-rss-story-click/v3/DdTglgecWggKp68VKLiKtw Data security is in the headlines often, and it’s almost never for a positive reason. Major breaches, new ways to hack into an organization’s supposedly secure data, and other threats make the news because well, it’s scary — and expensive.  Data breaches, ransomware and malware attacks, and other cybercrime might be pricey to prevent, but they are even more costly when they occur, with the ]]> Wed, 27 Sep 2023 13:23:11 +0200 https://api.follow.it/track-rss-story-click/v3/DdTglgecWggKp68VKLiKtw https://api.follow.it/track-rss-story-click/v3/DdTglgecWgifAvhJtNNXIQ A new malware strain called ZenRAT has emerged in the wild that's distributed via bogus installation packages of the Bitwarden password manager. "The malware is specifically targeting Windows users and will redirect people using other hosts to a benign web page," enterprise security firm Proofpoint said in a technical report. "The malware is a modular remote access trojan (RAT) with information]]> Wed, 27 Sep 2023 10:38:49 +0200 https://api.follow.it/track-rss-story-click/v3/DdTglgecWgifAvhJtNNXIQ https://api.follow.it/track-rss-story-click/v3/DdTglgecWgiixKkjGI1jjA Google has assigned a new CVE identifier for a critical security flaw in the libwebp image library for rendering images in the WebP format that has come under active exploitation in the wild. Tracked as CVE-2023-5129, the issue has been given the maximum severity score of 10.0 on the CVSS rating system. It has been described as an issue rooted in the Huffman coding algorithm - With a specially]]> Wed, 27 Sep 2023 07:23:48 +0200 https://api.follow.it/track-rss-story-click/v3/DdTglgecWgiixKkjGI1jjA https://api.follow.it/track-rss-story-click/v3/DdTglgecWgj5FkPW08KZ8A Microsoft is officially rolling out support for passkeys in Windows 11 today as part of a major update to the desktop operating system. The feature allows users to login to websites and applications without having to provide a username and password, instead relying on their device PIN or biometric information to complete the step. Based on FIDO standards, Passkeys were first announced in May]]> Tue, 26 Sep 2023 19:10:40 +0200 https://api.follow.it/track-rss-story-click/v3/DdTglgecWgj5FkPW08KZ8A https://api.follow.it/track-rss-story-click/v3/DdTglgecWgggUQj0ICDoKQ Cybersecurity experts have shed light on a new cybercrime group known as ShadowSyndicate (formerly Infra Storm) that may have leveraged as many as seven different ransomware families over the past year. "ShadowSyndicate is a threat actor that works with various ransomware groups and affiliates of ransomware programs," Group-IB and Bridewell said in a new joint report. The actor, active since]]> Tue, 26 Sep 2023 17:56:16 +0200 https://api.follow.it/track-rss-story-click/v3/DdTglgecWgggUQj0ICDoKQ https://api.follow.it/track-rss-story-click/v3/DdTglgecWghCaMXxK1Nvmg SOC 2, ISO, HIPAA, Cyber Essentials – all the security frameworks and certifications today are an acronym soup that can make even a compliance expert’s head spin. If you’re embarking on your compliance journey, read on to discover the differences between standards, which is best for your business, and how vulnerability management can aid compliance. What is cybersecurity compliance?]]> Tue, 26 Sep 2023 13:50:10 +0200 https://api.follow.it/track-rss-story-click/v3/DdTglgecWghCaMXxK1Nvmg https://api.follow.it/track-rss-story-click/v3/DdTglgecWgiMCL0A2lgTyg An updated version of an Android banking trojan called Xenomorph has set its sights on more than 35 financial institutions in the U.S. The campaign, according to Dutch security firm ThreatFabric, leverages phishing web pages that are designed to entice victims into installing malicious Android apps that target a broader list of apps than its predecessors. Some of the other targeted prominent]]> Tue, 26 Sep 2023 13:49:52 +0200 https://api.follow.it/track-rss-story-click/v3/DdTglgecWgiMCL0A2lgTyg https://api.follow.it/track-rss-story-click/v3/DdTglgecWggBcJX9clHkdg How To Use This Report Enhance situational awareness of techniques used by threat actors Identify potential attacks targeting your industry Gain insights to help improve and accelerate your organization’s threat response Summary of Findings The Network Effect Threat Report offers insights based on unique data from Fastly’s Next-Gen WAF from Q2 2023 (April 1, 2023 to June 30, 2023). This report]]> Tue, 26 Sep 2023 12:32:44 +0200 https://api.follow.it/track-rss-story-click/v3/DdTglgecWggBcJX9clHkdg https://api.follow.it/track-rss-story-click/v3/DdTglgecWgiewzGNh7Hi3g A "multi-year" Chinese state-sponsored cyber espionage campaign has been observed targeting South Korean academic, political, and government organizations. Recorded Future's Insikt Group, which is tracking the activity under the moniker TAG-74, said the adversary has been linked to "Chinese military intelligence and poses a significant threat to academic, aerospace and defense, government,]]> Tue, 26 Sep 2023 11:49:12 +0200 https://api.follow.it/track-rss-story-click/v3/DdTglgecWgiewzGNh7Hi3g https://api.follow.it/track-rss-story-click/v3/DdTglgecWggKzqcnygxPKQ A critical security vulnerability in the JetBrains TeamCity continuous integration and continuous deployment (CI/CD) software could be exploited by unauthenticated attackers to achieve remote code execution on affected systems. The flaw, tracked as CVE-2023-42793, carries a CVSS score of 9.8 and has been addressed in TeamCity version 2023.05.4 following responsible disclosure on September 6,]]> Tue, 26 Sep 2023 07:00:24 +0200 https://api.follow.it/track-rss-story-click/v3/DdTglgecWggKzqcnygxPKQ https://api.follow.it/track-rss-story-click/v3/DdTglgecWgjnPsVBEPJ68Q Ukrainian military entities are the target of a phishing campaign that leverages drone manuals as lures to deliver a Go-based open-source post-exploitation toolkit called Merlin. "Since drones or Unmanned Aerial Vehicles (UAVs) have been an integral tool used by the Ukrainian military, malware-laced lure files themed as UAVs service manuals have begun to surface," Securonix researchers Den]]> Mon, 25 Sep 2023 15:05:30 +0200 https://api.follow.it/track-rss-story-click/v3/DdTglgecWgjnPsVBEPJ68Q https://api.follow.it/track-rss-story-click/v3/DdTglgecWgh_TnjeN0gCGQ Generative AI is a double-edged sword, if there ever was one. There is broad agreement that tools like ChatGPT are unleashing waves of productivity across the business, from IT, to customer experience, to engineering. That's on the one hand.  On the other end of this fencing match: risk. From IP leakage and data privacy risks to the empowering of cybercriminals with AI tools, generative AI]]> Mon, 25 Sep 2023 13:41:03 +0200 https://api.follow.it/track-rss-story-click/v3/DdTglgecWgh_TnjeN0gCGQ https://api.follow.it/track-rss-story-click/v3/DdTglgecWghW5j6mEEXhog Weak password policies leave organizations vulnerable to attacks. But are the standard password complexity requirements enough to secure them? 83% of compromised passwords would satisfy the password complexity and length requirements of compliance standards. That’s because bad actors already have access to billions of stolen credentials that can be used to compromise additional accounts by]]> Mon, 25 Sep 2023 13:19:37 +0200 https://api.follow.it/track-rss-story-click/v3/DdTglgecWghW5j6mEEXhog https://api.follow.it/track-rss-story-click/v3/DdTglgecWghUxGzaLFkUiw Tibetan, Uyghur, and Taiwanese individuals and organizations are the targets of a persistent campaign orchestrated by a threat actor codenamed EvilBamboo to gather sensitive information. "The attacker has created fake Tibetan websites, along with social media profiles, likely used to deploy browser-based exploits against targeted users," Volexity security researchers Callum Roxan, Paul]]> Mon, 25 Sep 2023 12:34:17 +0200 https://api.follow.it/track-rss-story-click/v3/DdTglgecWghUxGzaLFkUiw https://api.follow.it/track-rss-story-click/v3/DdTglgecWggzFAgfhVW9AQ An unnamed Southeast Asian government has been targeted by multiple China-nexus threat actors as part of espionage campaigns targeting the region over extended periods of time. "While this activity occurred around the same time and in some instances even simultaneously on the same victims' machines, each cluster is characterized by distinct tools, modus operandi and infrastructure," Palo Alto]]> Mon, 25 Sep 2023 08:45:53 +0200 https://api.follow.it/track-rss-story-click/v3/DdTglgecWggzFAgfhVW9AQ https://api.follow.it/track-rss-story-click/v3/DdTglgecWgg26OwF9F8Sjg Cybersecurity researchers have discovered a previously undocumented advanced backdoor dubbed Deadglyph employed by a threat actor known as Stealth Falcon as part of a cyber espionage campaign. "Deadglyph's architecture is unusual as it consists of cooperating components – one a native x64 binary, the other a .NET assembly," ESET said in a new report shared with The Hacker News. "This combination]]> Sat, 23 Sep 2023 13:10:16 +0200 https://api.follow.it/track-rss-story-click/v3/DdTglgecWgg26OwF9F8Sjg https://api.follow.it/track-rss-story-click/v3/DdTglgecWghEH7Xdrt5Qyg The three zero-day flaws addressed by Apple on September 21, 2023, were leveraged as part of an iPhone exploit chain in an attempt to deliver a spyware strain called Predator targeting former Egyptian member of parliament Ahmed Eltantawy between May and September 2023. "The targeting took place after Eltantawy publicly stated his plans to run for President in the 2024 Egyptian elections," the]]> Sat, 23 Sep 2023 08:18:27 +0200 https://api.follow.it/track-rss-story-click/v3/DdTglgecWghEH7Xdrt5Qyg https://api.follow.it/track-rss-story-click/v3/DdTglgecWgi8a9e7schFJg An active malware campaign targeting Latin America is dispensing a new variant of a banking trojan called BBTok, particularly users in Brazil and Mexico. "The BBTok banker has a dedicated functionality that replicates the interfaces of more than 40 Mexican and Brazilian banks, and tricks the victims into entering its 2FA code to their bank accounts or into entering their payment card number,"]]> Fri, 22 Sep 2023 16:48:37 +0200 https://api.follow.it/track-rss-story-click/v3/DdTglgecWgi8a9e7schFJg