Category: TheHackerNews

Fake Job Interviews on macOS
04
Feb
2025

North Korean Hackers Deploy FERRET Malware via Fake Job Interviews on macOS

Feb 04, 2025Ravie LakshmananMalware / Cryptocurrency The North Korean threat actors behind the Contagious Interview campaign have been observed delivering…

Share: X : North Korean Hackers Deploy FERRET Malware via Fake Job Interviews on macOSFacebook : North Korean Hackers Deploy FERRET Malware via Fake Job Interviews on macOSLinkedin : North Korean Hackers Deploy FERRET Malware via Fake Job Interviews on macOSReddit : North Korean Hackers Deploy FERRET Malware via Fake Job Interviews on macOSTelegram : North Korean Hackers Deploy FERRET Malware via Fake Job Interviews on macOSWhatsApp : North Korean Hackers Deploy FERRET Malware via Fake Job Interviews on macOSEmail : North Korean Hackers Deploy FERRET Malware via Fake Job Interviews on macOS
7-Zip Flaw
04
Feb
2025

Russian Cybercrime Groups Exploiting 7-Zip Flaw to Bypass Windows MotW Protections

Feb 04, 2025Ravie LakshmananVulnerability / Cyber Espionage A recently patched security vulnerability in the 7-Zip archiver tool was exploited in…

Share: X : Russian Cybercrime Groups Exploiting 7-Zip Flaw to Bypass Windows MotW ProtectionsFacebook : Russian Cybercrime Groups Exploiting 7-Zip Flaw to Bypass Windows MotW ProtectionsLinkedin : Russian Cybercrime Groups Exploiting 7-Zip Flaw to Bypass Windows MotW ProtectionsReddit : Russian Cybercrime Groups Exploiting 7-Zip Flaw to Bypass Windows MotW ProtectionsTelegram : Russian Cybercrime Groups Exploiting 7-Zip Flaw to Bypass Windows MotW ProtectionsWhatsApp : Russian Cybercrime Groups Exploiting 7-Zip Flaw to Bypass Windows MotW ProtectionsEmail : Russian Cybercrime Groups Exploiting 7-Zip Flaw to Bypass Windows MotW Protections
Cloud Security Shifts in 2025
04
Feb
2025

Watch Out For These 8 Cloud Security Shifts in 2025

Feb 04, 2025The Hacker NewsThreat Detection / Cloud Security As cloud security evolves in 2025 and beyond, organizations must adapt…

Share: X : Watch Out For These 8 Cloud Security Shifts in 2025Facebook : Watch Out For These 8 Cloud Security Shifts in 2025Linkedin : Watch Out For These 8 Cloud Security Shifts in 2025Reddit : Watch Out For These 8 Cloud Security Shifts in 2025Telegram : Watch Out For These 8 Cloud Security Shifts in 2025WhatsApp : Watch Out For These 8 Cloud Security Shifts in 2025Email : Watch Out For These 8 Cloud Security Shifts in 2025
AMD SEV-SNP Vulnerability Allows Malicious Microcode Injection with Admin Access
04
Feb
2025

AMD SEV-SNP Vulnerability Allows Malicious Microcode Injection with Admin Access

Feb 04, 2025Ravie LakshmananVulnerability / Hardware Security A security vulnerability has been disclosed in AMD’s Secure Encrypted Virtualization (SEV) that…

Share: X : AMD SEV-SNP Vulnerability Allows Malicious Microcode Injection with Admin AccessFacebook : AMD SEV-SNP Vulnerability Allows Malicious Microcode Injection with Admin AccessLinkedin : AMD SEV-SNP Vulnerability Allows Malicious Microcode Injection with Admin AccessReddit : AMD SEV-SNP Vulnerability Allows Malicious Microcode Injection with Admin AccessTelegram : AMD SEV-SNP Vulnerability Allows Malicious Microcode Injection with Admin AccessWhatsApp : AMD SEV-SNP Vulnerability Allows Malicious Microcode Injection with Admin AccessEmail : AMD SEV-SNP Vulnerability Allows Malicious Microcode Injection with Admin Access
Taiwan Bans DeepSeek AI
04
Feb
2025

Taiwan Bans DeepSeek AI Over National Security Concerns, Citing Data Leakage Risks

Taiwan has become the latest country to ban government agencies from using Chinese startup DeepSeek’s Artificial Intelligence (AI) platform, citing…

Share: X : Taiwan Bans DeepSeek AI Over National Security Concerns, Citing Data Leakage RisksFacebook : Taiwan Bans DeepSeek AI Over National Security Concerns, Citing Data Leakage RisksLinkedin : Taiwan Bans DeepSeek AI Over National Security Concerns, Citing Data Leakage RisksReddit : Taiwan Bans DeepSeek AI Over National Security Concerns, Citing Data Leakage RisksTelegram : Taiwan Bans DeepSeek AI Over National Security Concerns, Citing Data Leakage RisksWhatsApp : Taiwan Bans DeepSeek AI Over National Security Concerns, Citing Data Leakage RisksEmail : Taiwan Bans DeepSeek AI Over National Security Concerns, Citing Data Leakage Risks
Google Patches 47 Android Security Flaws, Including Actively Exploited CVE-2024-53104
04
Feb
2025

Google Patches 47 Android Security Flaws, Including Actively Exploited CVE-2024-53104

Feb 04, 2025Ravie LakshmananVulnerability / Mobile Security Google has shipped patches to address 47 security flaws in its Android operating…

Share: X : Google Patches 47 Android Security Flaws, Including Actively Exploited CVE-2024-53104Facebook : Google Patches 47 Android Security Flaws, Including Actively Exploited CVE-2024-53104Linkedin : Google Patches 47 Android Security Flaws, Including Actively Exploited CVE-2024-53104Reddit : Google Patches 47 Android Security Flaws, Including Actively Exploited CVE-2024-53104Telegram : Google Patches 47 Android Security Flaws, Including Actively Exploited CVE-2024-53104WhatsApp : Google Patches 47 Android Security Flaws, Including Actively Exploited CVE-2024-53104Email : Google Patches 47 Android Security Flaws, Including Actively Exploited CVE-2024-53104
Azure AI Face Service Vulnerability
04
Feb
2025

Microsoft Patches Critical Azure AI Face Service Vulnerability with CVSS 9.9 Score

Feb 04, 2025The Hacker NewsVulnerability / Cloud Security Microsoft has released patches to address two Critical-rated security flaws impacting Azure…

Share: X : Microsoft Patches Critical Azure AI Face Service Vulnerability with CVSS 9.9 ScoreFacebook : Microsoft Patches Critical Azure AI Face Service Vulnerability with CVSS 9.9 ScoreLinkedin : Microsoft Patches Critical Azure AI Face Service Vulnerability with CVSS 9.9 ScoreReddit : Microsoft Patches Critical Azure AI Face Service Vulnerability with CVSS 9.9 ScoreTelegram : Microsoft Patches Critical Azure AI Face Service Vulnerability with CVSS 9.9 ScoreWhatsApp : Microsoft Patches Critical Azure AI Face Service Vulnerability with CVSS 9.9 ScoreEmail : Microsoft Patches Critical Azure AI Face Service Vulnerability with CVSS 9.9 Score
Microsoft SharePoint Connector
04
Feb
2025

Microsoft SharePoint Connector Flaw Could’ve Enabled Credential Theft Across Power Platform

Feb 04, 2025Ravie LakshmananVulnerability / SharePoint Cybersecurity researchers have disclosed details of a now-patched vulnerability impacting the Microsoft SharePoint connector…

Share: X : Microsoft SharePoint Connector Flaw Could’ve Enabled Credential Theft Across Power PlatformFacebook : Microsoft SharePoint Connector Flaw Could’ve Enabled Credential Theft Across Power PlatformLinkedin : Microsoft SharePoint Connector Flaw Could’ve Enabled Credential Theft Across Power PlatformReddit : Microsoft SharePoint Connector Flaw Could’ve Enabled Credential Theft Across Power PlatformTelegram : Microsoft SharePoint Connector Flaw Could’ve Enabled Credential Theft Across Power PlatformWhatsApp : Microsoft SharePoint Connector Flaw Could’ve Enabled Credential Theft Across Power PlatformEmail : Microsoft SharePoint Connector Flaw Could’ve Enabled Credential Theft Across Power Platform
768 CVEs Exploited in 2024, Reflecting a 20% Increase from 639 in 2023
03
Feb
2025

768 CVEs Exploited in 2024, Reflecting a 20% Increase from 639 in 2023

Feb 03, 2025Ravie LakshmananVulnerability / Network Security As many as 768 vulnerabilities with designated CVE identifiers were reported as exploited…

Share: X : 768 CVEs Exploited in 2024, Reflecting a 20% Increase from 639 in 2023Facebook : 768 CVEs Exploited in 2024, Reflecting a 20% Increase from 639 in 2023Linkedin : 768 CVEs Exploited in 2024, Reflecting a 20% Increase from 639 in 2023Reddit : 768 CVEs Exploited in 2024, Reflecting a 20% Increase from 639 in 2023Telegram : 768 CVEs Exploited in 2024, Reflecting a 20% Increase from 639 in 2023WhatsApp : 768 CVEs Exploited in 2024, Reflecting a 20% Increase from 639 in 2023Email : 768 CVEs Exploited in 2024, Reflecting a 20% Increase from 639 in 2023
PyPI Introduces Archival Status to Alert Users About Unmaintained Python Packages
03
Feb
2025

PyPI Introduces Archival Status to Alert Users About Unmaintained Python Packages

Feb 03, 2025Ravie LakshmananOpen Source / Software Security The maintainers of the Python Package Index (PyPI) registry have announced a…

Share: X : PyPI Introduces Archival Status to Alert Users About Unmaintained Python PackagesFacebook : PyPI Introduces Archival Status to Alert Users About Unmaintained Python PackagesLinkedin : PyPI Introduces Archival Status to Alert Users About Unmaintained Python PackagesReddit : PyPI Introduces Archival Status to Alert Users About Unmaintained Python PackagesTelegram : PyPI Introduces Archival Status to Alert Users About Unmaintained Python PackagesWhatsApp : PyPI Introduces Archival Status to Alert Users About Unmaintained Python PackagesEmail : PyPI Introduces Archival Status to Alert Users About Unmaintained Python Packages
Attack Surface Management
03
Feb
2025

What Is Attack Surface Management?

Attack surfaces are growing faster than security teams can keep up – to stay ahead, you need to know what’s…

Share: X : What Is Attack Surface Management?Facebook : What Is Attack Surface Management?Linkedin : What Is Attack Surface Management?Reddit : What Is Attack Surface Management?Telegram : What Is Attack Surface Management?WhatsApp : What Is Attack Surface Management?Email : What Is Attack Surface Management?
Now Targets 1,030 Sites and 73 Financial Institutions
03
Feb
2025

Now Targets 1,030 Sites and 73 Financial Institutions

Feb 03, 2025Ravie LakshmananFinancial Security / Malware Brazilian Windows users are the target of a campaign that delivers a banking…

Share: X : Now Targets 1,030 Sites and 73 Financial InstitutionsFacebook : Now Targets 1,030 Sites and 73 Financial InstitutionsLinkedin : Now Targets 1,030 Sites and 73 Financial InstitutionsReddit : Now Targets 1,030 Sites and 73 Financial InstitutionsTelegram : Now Targets 1,030 Sites and 73 Financial InstitutionsWhatsApp : Now Targets 1,030 Sites and 73 Financial InstitutionsEmail : Now Targets 1,030 Sites and 73 Financial Institutions