The Cybersecurity Stars We Lost Last Year
It’s time once again to pay our respects to the once-famous cybersecurity solutions whose usefulness died in the past year. The cybercriminal world collectively mourns…
Category: TheHackerNews
No Wider Federal Impact from Treasury Cyber Attack, Investigation Ongoing
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Monday said there are no indications that the cyber attack targeting the Treasury Department impacted other…
New EAGERBEE Variant Targets ISPs and Governments with Advanced Backdoor Capabilities
Jan 07, 2025Ravie LakshmananCyber Attack / Hacking Internet service providers (ISPs) and governmental entities in the Middle East have been targeted using an updated variant…
Moxa Alerts Users to High-Severity Vulnerabilities in Cellular and Secure Routers
Jan 07, 2025Ravie LakshmananVulnerability / Network Security Taiwan-based Moxa has warned of two security vulnerabilities impacting its cellular routers, secure routers, and network security appliances…
India Proposes Digital Data Rules with Tough Penalties and Cybersecurity Requirements
Jan 06, 2025Ravie LakshmananRegulatory Compliance / Data Privacy The Indian government has published a draft version of the Digital Personal Data Protection (DPDP) Rules for…
Cybercriminals Target Ethereum Developers with Fake Hardhat npm Packages
Jan 06, 2025Ravie LakshmananBlockchain / Malware Cybersecurity researchers have revealed several malicious packages on the npm registry that have been found impersonating the Nomic Foundation’s…
Researchers Uncover Nuclei Vulnerability Enabling Signature Bypass and Code Execution
Jan 04, 2025Ravie LakshmananVulnerability / Software Security A high-severity security flaw has been disclosed in ProjectDiscovery’s Nuclei, a widely-used open-source vulnerability scanner that, if successfully…
PLAYFULGHOST Delivered via Phishing and SEO Poisoning in Trojanized VPN Apps
Jan 04, 2025Ravie LakshmananMalware / VPN Security Cybersecurity researchers have flagged a new malware called PLAYFULGHOST that comes with a wide range of information-gathering features…
U.S. Treasury Sanctions Beijing Cybersecurity Firm for State-Backed Hacking Campaigns
Jan 04, 2025Ravie LakshmananCyber Espionage / IoT Botnet The U.S. Treasury Department’s Office of Foreign Assets Control (OFAC) on Friday issued sanctions against a Beijing-based…
New AI Jailbreak Method ‘Bad Likert Judge’ Boosts Attack Success Rates by Over 60%
Jan 03, 2025Ravie LakshmananMachine Learning / Vulnerability Cybersecurity researchers have shed light on a new jailbreak technique that could be used to get past a…
LDAPNightmare PoC Exploit Crashes LSASS and Reboots Windows Domain Controllers
Jan 03, 2025Ravie LakshmananWindows Server / Threat Mitigation A proof-of-concept (PoC) exploit has been released for a now-patched security flaw impacting Windows Lightweight Directory Access…
Update Old .NET Domains Before January 7, 2025 to Avoid Service Disruption
Jan 03, 2025Ravie LakshmananDevOps / Software Development Microsoft has announced that it’s making an “unexpected change” to the way .NET installers and archives are distributed,…