Rubrika: Hacking

Security expert spotted a new piece of malware that leverages weaponized Word documents to download a PowerShell script from GitHub. Security expert discovered a new piece of malware uses weaponized Word documents to download a PowerShell script from GitHub. This PowerShell script is also used by threat actors to download a legitimate image file from image hosting… Pokračovat ve čtení New alleged MuddyWater attack downloads a PowerShell script from GitHub

During a routine Dark web monitoring, the Research team at Cyble found threat actors selling 200 million+ Records of Chinese Citizens. During a routine Dark web monitoring, the Research team at Cyble found multiple posts where threat actors are offering for sale alleged data leaks related to Chinese citizens. Data might have been stolen from… Pokračovat ve čtení Over 200 million records of Chinese Citizens for Sale on the Darkweb

Ticketmaster has agreed to pay a $10 million fine after being charged with illegally accessing computer systems of a competitor repeatedly between 2013 and 2015 in an attempt to “cut [the company] off at the knees.” A subsidiary of Live Nation, the California-based ticket sales and distribution company used the stolen information to gain an… Pokračovat ve čtení Ticketmaster To Pay $10 Million Fine For Hacking A Rival Company

Cybercriminals are abusing Facebook ads in a large-scale phishing scam aimed at stealing victims’ login credentials. Researchers from security firm ThreatNix spotted a new large-scale campaign abusing Facebook ads. Threat actors are using Facebook ads to redirect users to Github accounts hosting phishing pages used to steal victims’ login credentials. The campaign targeted more than… Pokračovat ve čtení Facebook ads used to steal 615000+ credentials in a phishing campaign

Zyxel addressed a critical flaw in its firmware, tracked as CVE-2020-29583, related to the presence of a hardcoded undocumented secret account. The Taiwanese vendor Zyxel has addressed a critical vulnerability in its firmware related to the presence of a hardcoded undocumented secret account. The vulnerability, tracked as CVE-2020-29583 received a CVSS score of 7.8, it could be exploited… Pokračovat ve čtení Expert found a secret backdoor in Zyxel firewall and VPN

Zyxel has released a patch to address a critical vulnerability in its firmware concerning a hardcoded undocumented secret account that could be abused by an attacker to login with administrative privileges and compromise its networking devices. The flaw, tracked as CVE-2020-29583 (CVSS score 7.8), affects version 4.60 present in wide-range of Zyxel devices, including Unified Security Gateway ( Více… Pokračovat ve čtení Secret Backdoor Account Found in Several Zyxel Firewall, VPN Products

Microsoft on Thursday revealed that the threat actors behind the SolarWinds supply chain attack were able to gain access to a small number of internal accounts and escalate access inside its internal network. The “very sophisticated nation-state actor” used the unauthorized access to view, but not modify, the source code present in its repositories, the… Pokračovat ve čtení Microsoft Says SolarWinds Hackers Accessed Some of Its Source Code

The threat actors behind the SolarWinds supply chain attack could have had access to the source code of several Microsoft products. The threat actors behind the SolarWinds attack could have compromised a small number of internal accounts and used at least one of them to view source code in a number of source code repositories.… Pokračovat ve čtení SolarWinds hackers gained access to Microsoft source code

A data breach broker is selling user records allegedly from twenty-six data breaches on a hacker forum. Security experts from Bleeping Computer reported that a threat actor is selling user records allegedly stolen from twenty-six companies on a hacker forum. The total volume of data available for sale is composed of 368.8 million stolen user… Pokračovat ve čtení Threat actor is selling 368.8 million records from 26 data breaches

Action bars operation of US-registered firms linked to Indian call centre Více zde: portswigger.net Sponzorováno: Další články: [display-posts posts_per_page=”15″ image_size=”thumbnail” include_excerpt=”true”]

Action bars operation of US-registered firms linked to Indian call centre Více zde: portswigger.net Sponzorováno: Další články: [display-posts posts_per_page=”15″ image_size=”thumbnail” include_excerpt=”true”]

Key thinkers on the biggest security stories and trends in 2020 Více zde: portswigger.net Sponzorováno: Další články: [display-posts posts_per_page=”15″ image_size=”thumbnail” include_excerpt=”true”]

Experts from Intezer discovered a new and self-spreading Golang-based malware that targets Windows and Linux servers. Experts from Intezer discovered a Golang-based worm that targets Windows and Linux servers. The malware has been active since early December targeting public-facing services, including MySQL, Tomcat admin panel and Jenkins that are protected with weak passwords. The worm… Pokračovat ve čtení New Golang-based Crypto worm infects Windows and Linux servers

Crackdown against financial misdeeds during lockdown leads to worldwide enforcement actions Více zde: portswigger.net Sponzorováno: Další články: [display-posts posts_per_page=”15″ image_size=”thumbnail” include_excerpt=”true”]

US Cybersecurity and Infrastructure Security Agency (CISA) urges US federal agencies to update the SolarWinds Orion software by the end of the year. The US Cybersecurity and Infrastructure Security Agency (CISA) has updated its official guidance to order US federal agencies to update the SolarWinds Orion platforms by the end of the year. According to… Pokračovat ve čtení CISA demands US govt agencies to update SolarWinds Orion software

Google has addressed a bug in its feedback tool incorporated across its services that could have allowed attackers to view users’ private docs. Google has addressed a flaw in its feedback tool that is part of multiple of its services that could be exploited by attackers to take screenshots of sensitive Google Docs documents by… Pokračovat ve čtení Google Docs bug could have allowed hackers to hijack screenshots

Key thinkers on the biggest security stories and trends in 2020 Více zde: portswigger.net Sponzorováno: Další články: [display-posts posts_per_page=”15″ image_size=”thumbnail” include_excerpt=”true”]

More than 130,000 patients alerted to potential data breach following healthcare cyber-attack Více zde: portswigger.net Sponzorováno: Další články: [display-posts posts_per_page=”15″ image_size=”thumbnail” include_excerpt=”true”]

More than 130,000 patients alerted to potential data breach following healthcare cyber-attack Více zde: portswigger.net Sponzorováno: Další články: [display-posts posts_per_page=”15″ image_size=”thumbnail” include_excerpt=”true”]

Microsoft says that SolarWinds hackers aimed at compromising the victims’ cloud infrastructure after deploying the Solorigate backdoor (aka Sunburst). The Microsoft 365 Defender Team revealed that the goal of the threat actors behind the SolarWinds supply chain attack was to move to the victims’ cloud infrastructure once infected their network with the Sunburst/Solorigate backdoor. “With… Pokračovat ve čtení SolarWinds hackers aimed at access to victims’ cloud assets

We take a look back at some of the best offensive security tools that were launched over the past three months Více zde: portswigger.net Sponzorováno: Další články: [display-posts posts_per_page=”15″ image_size=”thumbnail” include_excerpt=”true”]