The Hacker News2h
Researchers Discover Severe Security Flaws in Major E2EE Cloud Storage Providers
Critical cryptographic flaws in top E2EE cloud platforms risk user data, allowing file tampering and injection.
The Hacker News1d
Hackers Exploit Roundcube Webmail XSS Vulnerability to Steal Login Credentials
The attack chain, per Positive Technologies, is an attempt to exploit CVE-2024-37383 (CVSS score: 6.1), a stored cross-site ...
The Hacker News2d
North Korean IT Workers in Western Firms Now Demanding Ransom for Stolen Data
North Korean IT workers posing as freelancers steal data from Western firms, demanding ransoms for its return.
The Hacker News1d
Acronym Overdose – Navigating the Complex Data Security Landscape
DLP (Data Loss Prevention): As a cornerstone of data security, DLP ensures that sensitive data, such as personally ...
The Hacker News3d
Microsoft Reveals macOS Vulnerability that Bypasses Privacy Controls in Safari Browser
The shortcoming, codenamed HM Surf by the tech giant, is tracked as CVE-2024-44133. It was addressed by Apple as part of ...
The Hacker News2d
Crypt Ghouls Targets Russian Firms with LockBit 3.0 and Babuk Ransomware Attacks
Crypt Ghouls target Russian businesses and agencies using LockBit 3.0 and Babuk ransomware for financial gain.
The Hacker News4d
North Korean ScarCruft Exploits Windows Zero-Day to Spread RokRAT Malware
The North Korean threat actor known as ScarCruft has been linked to the zero-day exploitation of a now-patched security flaw ...
The Hacker News2d
Beware: Fake Google Meet Pages Deliver Infostealers in Ongoing ClickFix Campaign
Fake Google Meet pages deliver malware targeting Windows and macOS, spreading infostealers via ClickFix campaign.
The Hacker News3d
Researchers Uncover Cicada3301 Ransomware Operations and Its Affiliate Program
Group-IB reveals Cicada3301 ransomware’s affiliate panel, targeting U.S. and U.K. sectors with cross-platform attacks.
The Hacker News3d
SideWinder APT Strikes Middle East and Africa With Stealthy Multi-Stage Attack
SideWinder APT launches stealthy multi-stage attacks, deploying StealerBot malware against critical entities in the Middle ...
The Hacker News2d
U.S. and Allies Warn of Iranian Cyberattacks on Critical Infrastructure in Year-Long Campaign
Cybersecurity and intelligence agencies from Australia, Canada, and the U.S. have warned about a year-long campaign ...
The Hacker News6d
WordPress Plugin Jetpack Patches Major Vulnerability Affecting 27 Million Sites
Jetpack, owned by WordPress maker Automattic, is an all-in-one plugin that offers a comprehensive suite of tools to improve ...