Fake Researcher Profiles Spread Malware through GitHub Repositories as PoC Exploits
Jun 14, 2023Ravie LakshmananMalware / Zero-Day At least half of dozen GitHub accounts from fake researchers associated with a fraudulent...
Read more →Category: TheHackerNews
Critical Security Vulnerability Discovered in WooCommerce Stripe Gateway Plugin
Jun 14, 2023Ravie LakshmananWebsite Security / Hacking A security flaw has been uncovered in the WooCommerce Stripe Gateway WordPress plugin...
Read more →
Microsoft Releases Updates to Patch Critical Flaws in Windows and Other Software
Jun 14, 2023Ravie LakshmananPatch Tuesday / Vulnerability Microsoft has rolled out fixes for its Windows operating system and other software...
Read more →New DoubleFinger Loader Targets Cryptocurrency Wallets with Stealer
Jun 13, 2023Ravie LakshmananCrimeware / Cryptocurrency A novel multi-stage loader called DoubleFinger has been observed delivering a cryptocurrency stealer dubbed...
Read more →Over Half of Security Leaders Lack Confidence in Protecting App Secrets, Study Reveals
It might come as a surprise, but secrets management has become the elephant in the AppSec room. While security vulnerabilities...
Read more →
Adversary-in-the-Middle Attack Campaign Hits Dozens of Global Organizations
Jun 13, 2023Ravie LakshmananPhishing Attacks / BEC “Dozens” of organizations across the world have been targeted as part of a...
Read more →
Two Russian Nationals Charged for Masterminding Mt. Gox Crypto Exchange Hack
Jun 13, 2023Ravie LakshmananCyber Crime / Cryptocurrency The U.S. Department of Justice (DoJ) has charged two Russian nationals in connection...
Read more →
Mastering API Security: Understanding Your True Attack Surface
Jun 13, 2023The Hacker NewsAPI Security / Webinar Believe it or not, your attack surface is expanding faster than you...
Read more →
Critical FortiOS and FortiProxy Vulnerability Likely Exploited
Jun 13, 2023Ravie LakshmananNetwork Security / Vulnerability Fortinet on Monday disclosed that a newly patched critical flaw impacting FortiOS and...
Read more →
Researchers Uncover Publisher Spoofing Bug in Microsoft Visual Studio Installer
Jun 12, 2023Ravie LakshmananVulnerability / Software Security researchers have warned about an “easily exploitable” flaw in the Microsoft Visual Studio...
Read more →
Cybercriminals Using Powerful BatCloak Engine to Make Malware Fully Undetectable
Jun 12, 2023Ravie LakshmananEndpoint Security / Malware A fully undetectable (FUD) malware obfuscation engine named BatCloak is being used to...
Read more →
Why Now? The Rise of Attack Surface Management
Jun 12, 2023The Hacker NewsAttack Surface Management The term “attack surface management” (ASM) went from unknown to ubiquitous in the...
Read more →