FreshRSS

🔒
❌ À propos de FreshRSS
Il y a de nouveaux articles disponibles, cliquez pour rafraîchir la page.
☐ ☆ ✇ The Hacker News

Russian Turla APT Group Deploying New Backdoor on Targeted Systems

Par : [email protected] (Ravie Lakshmanan)
State-sponsored hackers affiliated with Russia are behind a new series of intrusions using a previously undocumented implant to compromise systems in the U.S., Germany, and Afghanistan. Cisco Talos attributed the attacks to the Turla advanced persistent threat (APT) group, coining the malware "TinyTurla" for its limited functionality and efficient coding style that allows it to go undetected.
☐ ☆ ✇ The Hacker News

New Android Malware Steals Financial Data from 378 Banking and Wallet Apps

Par : [email protected] (Ravie Lakshmanan)
The operators behind the BlackRock mobile malware have surfaced back with a new Android banking trojan called ERMAC that targets Poland and has its roots in the infamous Cerberus malware, according to the latest research. "The new trojan already has active distribution campaigns and is targeting 378 banking and wallet apps with overlays," ThreatFabric's CEO Cengiz Han Sahin said in an emailed
☐ ☆ ✇ The Hacker News

How Does DMARC Prevent Phishing?

Par : [email protected] (The Hacker News)
DMARC is a global standard for email authentication. It allows senders to verify that the email really comes from whom it claims to come from. This helps curb spam and phishing attacks, which are among the most prevalent cybercrimes of today. Gmail, Yahoo, and many other large email providers have implemented DMARC and praised its benefits in recent years. If your company's domain name is
☐ ☆ ✇ The Hacker News

A New Jupyter Malware Version is Being Distributed via MSI Installers

Par : [email protected] (Ravie Lakshmanan)
Cybersecurity researchers have charted the evolution of Jupyter, a .NET infostealer known for singling out healthcare and education sectors, which make it exceptional at defeating most endpoint security scanning solutions. The new delivery chain, spotted by Morphisec on September 8, underscores that the malware has not just continued to remain active but also showcases "how threat actors
☐ ☆ ✇ The Hacker News

Urgent Chrome Update Released to Patch Actively Exploited Zero-Day Vulnerability

Par : [email protected] (Ravie Lakshmanan)
Google on Friday rolled out an emergency security patch to its Chrome web browser to address a security flaw that's known to have an exploit in the wild. Tracked as CVE-2021-37973, the vulnerability has been described as use after free in Portals API, a web page navigation system that enables a page to show another page as an inset and "perform a seamless transition to a new state, where the
☐ ☆ ✇ The Hacker News

SonicWall Issues Patches for a New Critical Flaw in SMA 100 Series Devices

Par : [email protected] (Ravie Lakshmanan)
Network security company SonicWall has addressed a critical security vulnerability affecting its Secure Mobile Access (SMA) 100 series appliances that can permit remote, unauthenticated attackers to gain administrator access on targeted devices remotely. Tracked as CVE-2021-20034, the arbitrary file deletion flaw is rated 9.1 out of a maximum of 10 on the CVSS scoring system, and could allow an
☐ ☆ ✇ The Hacker News

A New APT Hacker Group Spying On Hotels and Governments Worldwide

Par : [email protected] (Ravie Lakshmanan)
A new advanced persistent threat (APT) has been behind a string of attacks against hotels across the world, along with governments, international organizations, engineering companies, and law firms. Slovak cybersecurity firm ESET codenamed the cyber espionage group FamousSparrow, which it said has been active since at least August 2019, with victims located across Africa, Asia, Europe, the
☐ ☆ ✇ The Hacker News

Apple's New iCloud Private Relay Service Leaks Users' Real IP Addresses

Par : [email protected] (Ravie Lakshmanan)
A new as-yet unpatched weakness in Apple's iCloud Private Relay feature could be circumvented to leak users' true IP addresses from iOS devices running the latest version of the operating system. Introduced as a beta with iOS 15, which was officially released this week, iCloud Private Relay aims to improve anonymity on the web by employing a dual-hop architecture that effectively shields users'
☐ ☆ ✇ The Hacker News

Google Warns of a New Way Hackers Can Make Malware Undetectable on Windows

Par : [email protected] (Ravie Lakshmanan)
Cybersecurity researchers have disclosed a novel technique adopted by a threat actor to deliberately evade detection with the help of malformed digital signatures of its malware payloads. "Attackers created malformed code signatures that are treated as valid by Windows but are not able to be decoded or checked by OpenSSL code — which is used in a number of security scanning products," Google
☐ ☆ ✇ The Hacker News

Cisco Releases Patches 3 New Critical Flaws Affecting IOS XE Software

Par : [email protected] (Ravie Lakshmanan)
Networking equipment maker Cisco Systems has rolled out patches to address three critical security vulnerabilities in its IOS XE network operating system that remote attackers could potentially abuse to execute arbitrary code with administrative privileges and trigger a denial-of-service (DoS) condition on vulnerable devices. The list of three flaws is as follows - CVE-2021-34770 (CVSS score:
☐ ☆ ✇ The Hacker News

Urgent Apple iOS and macOS Updates Released to Fix Actively Exploited Zero-Days

Par : [email protected] (Ravie Lakshmanan)
Apple on Thursday released security updates to fix multiple security vulnerabilities in older versions of iOS and macOS that it says have been detected in exploits in the wild, in addition to expanding patches for a previously plugged security weakness abused by NSO Group's Pegasus surveillance tool to target iPhone users. <!--adsense--> Chief among them is CVE-2021-30869, a type confusion flaw
☐ ☆ ✇ The Hacker News

Microsoft Exchange Bug Exposes ~100,000 Windows Domain Credentials

Par : [email protected] (Ravie Lakshmanan)
An unpatched design flaw in the implementation of Microsoft Exchange's Autodiscover protocol has resulted in the leak of approximately 100,000 login names and passwords for Windows domains worldwide. "This is a severe security issue, since if an attacker can control such domains or has the ability to 'sniff' traffic in the same network, they can capture domain credentials in plain text (HTTP
☐ ☆ ✇ The Hacker News

A New Bug in Microsoft Windows Could Let Hackers Easily Install a Rootkit

Par : [email protected] (Ravie Lakshmanan)
Security researchers have disclosed an unpatched weakness in Microsoft Windows Platform Binary Table (WPBT) affecting all Windows-based devices since Windows 8 that could be potentially exploited to install a rootkit and compromise the integrity of devices. "These flaws make every Windows system vulnerable to easily-crafted attacks that install fraudulent vendor-specific tables," researchers
☐ ☆ ✇ The Hacker News

Why You Should Consider QEMU Live Patching

Par : [email protected] (The Hacker News)
Sysadmins know what the risks are of running unpatched services. Given the choice, and unlimited resources, most hardworking administrators will ensure that all systems and services are patched consistently. But things are rarely that simple. Technical resources are limited, and patching can often be more complicated than it appears at first glance. Worse, some services are so hidden in the
☐ ☆ ✇ The Hacker News

New Android Malware Targeting US, Canadian Users with COVID-19 Lures

Par : [email protected] (Ravie Lakshmanan)
An "insidious" new SMS smishing malware has been found targeting Android mobile users in the U.S. and Canada as part of an ongoing campaign that uses SMS text message lures related to COVID-19 regulations and vaccine information in an attempt to steal personal and financial data. Proofpoint's messaging security subsidiary Cloudmark coined the emerging malware "TangleBot." <!--adsense--> "The
☐ ☆ ✇ The Hacker News

Colombian Real Estate Agency Leak Exposes Records of Over 100,000 Buyers

Par : [email protected] (Ravie Lakshmanan)
More than one terabyte of data containing 5.5 million files has been left exposed, leaking personal information of over 100,000 customers of a Colombian real estate firm, according to cybersecurity company WizCase. The breach was discovered by Ata Hakçıl and his team in a database owned by Coninsa Ramon H, a company that specializes in architecture, engineering, construction, and real estate
☐ ☆ ✇ The Hacker News

Microsoft Warns of a Wide-Scale Phishing-as-a-Service Operation

Par : [email protected] (Ravie Lakshmanan)
Microsoft has opened the lid on a large-scale phishing-as-a-service (PHaaS) operation that's involved in selling phishing kits and email templates as well as providing hosting and automated services at a low cost, thus enabling cyber actors to purchase phishing campaigns and deploy them with minimal efforts. "With over 100 available phishing templates that mimic known brands and services, the
☐ ☆ ✇ The Hacker News

New Nagios Software Bugs Could Let Hackers Take Over IT Infrastructures

Par : [email protected] (Ravie Lakshmanan)
As many as 11 security vulnerabilities have been disclosed in Nagios network management systems, some of which could be chained to achieve pre-authenticated remote code execution with the highest privileges, as well as lead to credential theft and phishing attacks.  Industrial cybersecurity firm Claroty, which discovered the flaws, said flaws in tools such as Nagios make them an attractive
☐ ☆ ✇ The Hacker News

How Cynet's Response Automation Helps Organizations Mitigate Cyber Threats

Par : [email protected] (The Hacker News)
One of the determining factors of how much damage a cyber-attack cause is how fast organizations can respond to it. Time to response is critical for security teams, and it is a major hurdle for leaner teams. To help improve this metric and enhance organizations’ ability to respond to attacks quickly, many endpoint detection and response (EDR) and extended detection and response (XDR) vendors
❌