Apache OFBiz Update Fixes High-Severity Flaw Leading to Remote Code Execution
Sep 06, 2024Ravie LakshmananCybersecurity / Vulnerability A new security flaw has been addressed in the Apache OFBiz open-source enterprise resource...
Read more →Category: TheHackerNews
Veeam Releases Security Updates to Fix 18 Flaws, Including 5 Critical Issues
Sep 05, 2024Ravie LakshmananThreat Prevention / Software Security Veeam has shipped security updates to address a total of 18 security...
Read more →
Chinese-Speaking Hacker Group Targets Human Rights Studies in Middle East
Sep 05, 2024Ravie LakshmananMalware / Human Rights Unnamed government entities in the Middle East and Malaysia are the target of...
Read more →
U.S. Seizes 32 Pro-Russian Propaganda Domains in Major Disinformation Crackdown
The U.S. Department of Justice (DoJ) on Wednesday announced the seizure of 32 internet domains used by a pro-Russian propaganda...
Read more →
NIST Cybersecurity Framework (CSF) and CTEM – Better Together
Sep 05, 2024The Hacker NewsThreat Detection / Vulnerability Management It’s been a decade since the National Institute of Standards and...
Read more →
Malware Attackers Using MacroPack to Deliver Havoc, Brute Ratel, and PhantomCore
Sep 05, 2024Ravie LakshmananCyber Threat / Malware Threat actors are likely employing a tool designated for red teaming exercises to...
Read more →
New Cross-Platform Malware KTLVdoor Discovered in Attack on Chinese Trading Firm
Sep 05, 2024Ravie LakshmananCyber Attack / Malware The Chinese-speaking threat actor known as Earth Lusca has been observed using a...
Read more →
Cisco Fixes Two Critical Flaws in Smart Licensing Utility to Prevent Remote Attacks
Sep 05, 2024Ravie Lakshmanan Cisco has released security updates for two critical security flaws impacting its Smart Licensing Utility that...
Read more →
North Korean Hackers Targets Job Seekers with Fake FreeConference App
North Korean threat actors have leveraged a fake Windows video conferencing application impersonating FreeConference.com to backdoor developer systems as part...
Read more →
Google Confirms CVE-2024-32896 Exploited in the Wild, Releases Android Security Patch
Sep 04, 2024Ravie LakshmananVulnerability / Mobile Security Google has released its monthly security updates for the Android operating system to...
Read more →
Hackers Hijack 22,000 Removed PyPI Packages, Spreading Malicious Code to Developers
Sep 04, 2024Ravie Lakshmanan A new supply chain attack technique targeting the Python Package Index (PyPI) registry has been exploited...
Read more →
Zyxel Patches Critical OS Command Injection Flaw in Access Points and Routers
Sep 04, 2024Ravie LakshmananVulnerability / Network Security Zyxel has released software updates to address a critical security flaw impacting certain...
Read more →