Category: TheHackerNews

Malicious App
21
Sep
2023

The Rise of the Malicious App

Sep 21, 2023The Hacker NewsSaaS Security / App Security Security teams are familiar with threats emanating from third-party applications that…

Ransomware Attackers
21
Sep
2023

Cyber Group ‘Gold Melody’ Selling Compromised Access to Ransomware Attackers

Sep 21, 2023THNCyber Threat / Ransomware A financially motivated threat actor has been outed as an initial access broker (IAB)…

Cyber Espionage Campaign
21
Sep
2023

China Accuses U.S. of Decade-Long Cyber Espionage Campaign Against Huawei Servers

Sep 21, 2023THNCyber Espionage / Spyware China’s Ministry of State Security (MSS) has accused the U.S. of breaking into Huawei’s…

Free Download Manager
21
Sep
2023

Ukrainian Hacker Suspected to be Behind “Free Download Manager” Malware Attack

Sep 21, 2023THNSupply Chain / Malware The maintainers of Free Download Manager (FDM) have acknowledged a security incident dating back…

WinRAR Vulnerability
21
Sep
2023

Fake Exploit for WinRAR Vulnerability on GitHub Infects Users with VenomRAT

Sep 21, 2023THNVulnerability / Exploit A malicious actor released a fake proof-of-concept (PoC) exploit for a recently disclosed WinRAR vulnerability…

PIILOPUOTI Dark Web Drug Marketplace
20
Sep
2023

Finnish Authorities Dismantle Notorious PIILOPUOTI Dark Web Drug Marketplace

Sep 20, 2023THNCyber Crime / Dark Web Finnish law enforcement authorities have announced the takedown of PIILOPUOTI, a dark web…

Nagios XI Network Monitoring Software
20
Sep
2023

Critical Security Flaws Exposed in Nagios XI Network Monitoring Software

Sep 20, 2023THNNetwork Security / Vulnerability Multiple security flaws have been disclosed in the Nagios XI network monitoring software that…

ValleyRAT and Gh0st RAT
20
Sep
2023

Sophisticated Phishing Campaign Targeting Chinese Users with ValleyRAT and Gh0st RAT

Sep 20, 2023THNMalware Attack / Cyber Threat Chinese-language speakers have been increasingly targeted as part of multiple email phishing campaigns…

Cybersecurity
20
Sep
2023

Fresh Wave of Malicious npm Packages Threaten Kubernetes Configs and SSH Keys

Sep 20, 2023THNKubernetes / Supply Chain Attack Cybersecurity researchers have discovered a fresh batch of malicious packages in the npm…

Do You Really Trust Your Web Application Supply Chain?
20
Sep
2023

Do You Really Trust Your Web Application Supply Chain?

Sep 20, 2023The Hacker NewsWeb Application Security Well, you shouldn’t. It may already be hiding vulnerabilities. It’s the modular nature…

Quantum-Resistant Encryption
20
Sep
2023

Signal Messenger Introduces PQXDH Quantum-Resistant Encryption

Sep 20, 2023THNEncryption / Privacy Encrypted messaging app Signal has announced an update to the Signal Protocol to add support…

Critical Vulnerability
20
Sep
2023

GitLab Releases Urgent Security Patches for Critical Vulnerability

Sep 20, 2023THNVulnerability / Software Security GitLab has shipped security patches to resolve a critical flaw that allows an attacker…