Category: TheHackerNews

BADBOX Malware
14
Dec
2024

Germany Disrupts BADBOX Malware on 30,000 Devices Using Sinkhole Action

Dec 14, 2024Ravie LakshmananBotnet / Ad Fraud Germany’s Federal Office of Information Security (BSI) has announced that it has disrupted…

Share: X : Germany Disrupts BADBOX Malware on 30,000 Devices Using Sinkhole ActionFacebook : Germany Disrupts BADBOX Malware on 30,000 Devices Using Sinkhole ActionLinkedin : Germany Disrupts BADBOX Malware on 30,000 Devices Using Sinkhole ActionReddit : Germany Disrupts BADBOX Malware on 30,000 Devices Using Sinkhole ActionTelegram : Germany Disrupts BADBOX Malware on 30,000 Devices Using Sinkhole ActionWhatsApp : Germany Disrupts BADBOX Malware on 30,000 Devices Using Sinkhole ActionEmail : Germany Disrupts BADBOX Malware on 30,000 Devices Using Sinkhole Action
Yokai Backdoor Campaign
14
Dec
2024

Thai Officials Targeted in Yokai Backdoor Campaign Using DLL Side-Loading Techniques

Dec 14, 2024Ravie LakshmananMalware / Cyber Threat Thai government officials have emerged as the target of a new campaign that…

Share: X : Thai Officials Targeted in Yokai Backdoor Campaign Using DLL Side-Loading TechniquesFacebook : Thai Officials Targeted in Yokai Backdoor Campaign Using DLL Side-Loading TechniquesLinkedin : Thai Officials Targeted in Yokai Backdoor Campaign Using DLL Side-Loading TechniquesReddit : Thai Officials Targeted in Yokai Backdoor Campaign Using DLL Side-Loading TechniquesTelegram : Thai Officials Targeted in Yokai Backdoor Campaign Using DLL Side-Loading TechniquesWhatsApp : Thai Officials Targeted in Yokai Backdoor Campaign Using DLL Side-Loading TechniquesEmail : Thai Officials Targeted in Yokai Backdoor Campaign Using DLL Side-Loading Techniques
390,000+ WordPress Credentials Stolen via Malicious GitHub Repository Hosting PoC Exploits
14
Dec
2024

390,000+ WordPress Credentials Stolen via Malicious GitHub Repository Hosting PoC Exploits

Dec 13, 2024Ravie LakshmananCyber Attack / Malware A now-removed GitHub repository that advertised a WordPress tool to publish posts to…

Share: X : 390,000+ WordPress Credentials Stolen via Malicious GitHub Repository Hosting PoC ExploitsFacebook : 390,000+ WordPress Credentials Stolen via Malicious GitHub Repository Hosting PoC ExploitsLinkedin : 390,000+ WordPress Credentials Stolen via Malicious GitHub Repository Hosting PoC ExploitsReddit : 390,000+ WordPress Credentials Stolen via Malicious GitHub Repository Hosting PoC ExploitsTelegram : 390,000+ WordPress Credentials Stolen via Malicious GitHub Repository Hosting PoC ExploitsWhatsApp : 390,000+ WordPress Credentials Stolen via Malicious GitHub Repository Hosting PoC ExploitsEmail : 390,000+ WordPress Credentials Stolen via Malicious GitHub Repository Hosting PoC Exploits
OpenWrt Vulnerability
13
Dec
2024

Critical OpenWrt Vulnerability Exposes Devices to Malicious Firmware Injection

Dec 13, 2024The Hacker NewsLinux / Vulnerability A security flaw has been disclosed in OpenWrt’s Attended Sysupgrade (ASU) feature that,…

Share: X : Critical OpenWrt Vulnerability Exposes Devices to Malicious Firmware InjectionFacebook : Critical OpenWrt Vulnerability Exposes Devices to Malicious Firmware InjectionLinkedin : Critical OpenWrt Vulnerability Exposes Devices to Malicious Firmware InjectionReddit : Critical OpenWrt Vulnerability Exposes Devices to Malicious Firmware InjectionTelegram : Critical OpenWrt Vulnerability Exposes Devices to Malicious Firmware InjectionWhatsApp : Critical OpenWrt Vulnerability Exposes Devices to Malicious Firmware InjectionEmail : Critical OpenWrt Vulnerability Exposes Devices to Malicious Firmware Injection
IT Worker Fraud
13
Dec
2024

DoJ Indicts 14 North Koreans for $88M IT Worker Fraud Scheme Over Six Years

The U.S. Department of Justice (DoJ) has indicted 14 nationals belonging to the Democratic People’s Republic of Korea (DPRK or…

Share: X : DoJ Indicts 14 North Koreans for $88M IT Worker Fraud Scheme Over Six YearsFacebook : DoJ Indicts 14 North Koreans for $88M IT Worker Fraud Scheme Over Six YearsLinkedin : DoJ Indicts 14 North Koreans for $88M IT Worker Fraud Scheme Over Six YearsReddit : DoJ Indicts 14 North Koreans for $88M IT Worker Fraud Scheme Over Six YearsTelegram : DoJ Indicts 14 North Koreans for $88M IT Worker Fraud Scheme Over Six YearsWhatsApp : DoJ Indicts 14 North Koreans for $88M IT Worker Fraud Scheme Over Six YearsEmail : DoJ Indicts 14 North Koreans for $88M IT Worker Fraud Scheme Over Six Years
CrowdStrike RFM Report
13
Dec
2024

How to Generate a CrowdStrike RFM Report With AI in Tines

Run by the team at orchestration, AI, and automation platform Tines, the Tines library contains pre-built workflows shared by real…

Share: X : How to Generate a CrowdStrike RFM Report With AI in TinesFacebook : How to Generate a CrowdStrike RFM Report With AI in TinesLinkedin : How to Generate a CrowdStrike RFM Report With AI in TinesReddit : How to Generate a CrowdStrike RFM Report With AI in TinesTelegram : How to Generate a CrowdStrike RFM Report With AI in TinesWhatsApp : How to Generate a CrowdStrike RFM Report With AI in TinesEmail : How to Generate a CrowdStrike RFM Report With AI in Tines
IOCONTROL Malware
13
Dec
2024

Iran-Linked IOCONTROL Malware Targets SCADA and Linux-Based IoT Platforms

Dec 13, 2024The Hacker NewsIoT Security / Operational Technology Iran-affiliated threat actors have been linked to a new custom malware…

Share: X : Iran-Linked IOCONTROL Malware Targets SCADA and Linux-Based IoT PlatformsFacebook : Iran-Linked IOCONTROL Malware Targets SCADA and Linux-Based IoT PlatformsLinkedin : Iran-Linked IOCONTROL Malware Targets SCADA and Linux-Based IoT PlatformsReddit : Iran-Linked IOCONTROL Malware Targets SCADA and Linux-Based IoT PlatformsTelegram : Iran-Linked IOCONTROL Malware Targets SCADA and Linux-Based IoT PlatformsWhatsApp : Iran-Linked IOCONTROL Malware Targets SCADA and Linux-Based IoT PlatformsEmail : Iran-Linked IOCONTROL Malware Targets SCADA and Linux-Based IoT Platforms
Linux Rootkit PUMAKIT
13
Dec
2024

New Linux Rootkit PUMAKIT Uses Advanced Stealth Techniques to Evade Detection

Dec 13, 2024Ravie LakshmananLinux / Threat Analysis Cybersecurity researchers have uncovered a new Linux rootkit called PUMAKIT that comes with…

Share: X : New Linux Rootkit PUMAKIT Uses Advanced Stealth Techniques to Evade DetectionFacebook : New Linux Rootkit PUMAKIT Uses Advanced Stealth Techniques to Evade DetectionLinkedin : New Linux Rootkit PUMAKIT Uses Advanced Stealth Techniques to Evade DetectionReddit : New Linux Rootkit PUMAKIT Uses Advanced Stealth Techniques to Evade DetectionTelegram : New Linux Rootkit PUMAKIT Uses Advanced Stealth Techniques to Evade DetectionWhatsApp : New Linux Rootkit PUMAKIT Uses Advanced Stealth Techniques to Evade DetectionEmail : New Linux Rootkit PUMAKIT Uses Advanced Stealth Techniques to Evade Detection
FBI Busts Rydox Marketplace
13
Dec
2024

FBI Busts Rydox Marketplace with 7,600 PII Sales, Cryptocurrency Worth $225K Seized

The U.S. Department of Justice (DoJ) on Thursday announced the shutdown of an illicit marketplace called Rydox (“rydox.ru” and “rydox[.]cc”)…

Share: X : FBI Busts Rydox Marketplace with 7,600 PII Sales, Cryptocurrency Worth $225K SeizedFacebook : FBI Busts Rydox Marketplace with 7,600 PII Sales, Cryptocurrency Worth $225K SeizedLinkedin : FBI Busts Rydox Marketplace with 7,600 PII Sales, Cryptocurrency Worth $225K SeizedReddit : FBI Busts Rydox Marketplace with 7,600 PII Sales, Cryptocurrency Worth $225K SeizedTelegram : FBI Busts Rydox Marketplace with 7,600 PII Sales, Cryptocurrency Worth $225K SeizedWhatsApp : FBI Busts Rydox Marketplace with 7,600 PII Sales, Cryptocurrency Worth $225K SeizedEmail : FBI Busts Rydox Marketplace with 7,600 PII Sales, Cryptocurrency Worth $225K Seized
Android Spyware
12
Dec
2024

Gamaredon Deploys Android Spyware “BoneSpy” and “PlainGnome” in Former Soviet States

Dec 12, 2024Ravie LakshmananMobile Security / Cyber Espionage The Russia-linked state-sponsored threat actor tracked as Gamaredon has been attributed to…

Share: X : Gamaredon Deploys Android Spyware “BoneSpy” and “PlainGnome” in Former Soviet StatesFacebook : Gamaredon Deploys Android Spyware “BoneSpy” and “PlainGnome” in Former Soviet StatesLinkedin : Gamaredon Deploys Android Spyware “BoneSpy” and “PlainGnome” in Former Soviet StatesReddit : Gamaredon Deploys Android Spyware “BoneSpy” and “PlainGnome” in Former Soviet StatesTelegram : Gamaredon Deploys Android Spyware “BoneSpy” and “PlainGnome” in Former Soviet StatesWhatsApp : Gamaredon Deploys Android Spyware “BoneSpy” and “PlainGnome” in Former Soviet StatesEmail : Gamaredon Deploys Android Spyware “BoneSpy” and “PlainGnome” in Former Soviet States
296,000 Prometheus
12
Dec
2024

Credentials and API Keys Leaking Online

Dec 12, 2024Ravie LakshmananVulnerability / Cloud Security Cybersecurity researchers are warning that thousands of servers hosting the Prometheus monitoring and…

Share: X : Credentials and API Keys Leaking OnlineFacebook : Credentials and API Keys Leaking OnlineLinkedin : Credentials and API Keys Leaking OnlineReddit : Credentials and API Keys Leaking OnlineTelegram : Credentials and API Keys Leaking OnlineWhatsApp : Credentials and API Keys Leaking OnlineEmail : Credentials and API Keys Leaking Online
TCC Bypass in iOS and macOS
12
Dec
2024

Researchers Uncover Symlink Exploit Allowing TCC Bypass in iOS and macOS

Dec 12, 2024Ravie LakshmananVulnerability / Device Security Details have emerged about a now-patched security vulnerability in Apple’s iOS and macOS…

Share: X : Researchers Uncover Symlink Exploit Allowing TCC Bypass in iOS and macOSFacebook : Researchers Uncover Symlink Exploit Allowing TCC Bypass in iOS and macOSLinkedin : Researchers Uncover Symlink Exploit Allowing TCC Bypass in iOS and macOSReddit : Researchers Uncover Symlink Exploit Allowing TCC Bypass in iOS and macOSTelegram : Researchers Uncover Symlink Exploit Allowing TCC Bypass in iOS and macOSWhatsApp : Researchers Uncover Symlink Exploit Allowing TCC Bypass in iOS and macOSEmail : Researchers Uncover Symlink Exploit Allowing TCC Bypass in iOS and macOS