Category: TheHackerNews

Web3.js npm Library
04
Dec
2024

Researchers Uncover Backdoor in Solana’s Popular Web3.js npm Library

Dec 04, 2024Ravie LakshmananSupply Chain Attack Cybersecurity researchers are alerting to a software supply chain attack targeting the popular @solana/web3.js…

Evade Antivirus and Email Defenses
04
Dec
2024

Hackers Use Corrupted ZIPs and Office Docs to Evade Antivirus and Email Defenses

Dec 04, 2024Ravie LakshmananEmail Security / Malware Cybersecurity researchers have called attention to a novel phishing campaign that leverages corrupted…

Cyber Espionage Targeting Telecom Networks
04
Dec
2024

Joint Advisory Warns of PRC-Backed Cyber Espionage Targeting Telecom Networks

Dec 04, 2024Ravie Lakshmanan A joint advisory issued by Australia, Canada, New Zealand, and the U.S. has warned of a…

SailPoint IdentityIQ Vulnerability
04
Dec
2024

Critical SailPoint IdentityIQ Vulnerability Exposes Files to Unauthorized Access

Dec 04, 2024Ravie LakshmananVulnerability / Software Security A critical security vulnerability has been disclosed in SailPoint’s IdentityIQ identity and access…

Critical RCE Vulnerability
04
Dec
2024

Veeam Issues Patch for Critical RCE Vulnerability in Service Provider Console

Dec 04, 2024Ravie LakshmananVulnerability / Ransomware Veeam has released security updates to address a critical flaw impacting Service Provider Console…

Cisco Warns of Exploitation of Decade-Old ASA WebVPN Vulnerability
03
Dec
2024

Cisco Warns of Exploitation of Decade-Old ASA WebVPN Vulnerability

Dec 03, 2024Ravie LakshmananVulnerability / Network Security Cisco on Monday updated an advisory to warn customers of active exploitation of…

Severe VPN Flaws
03
Dec
2024

NachoVPN Tool Exploits Flaws in Popular VPN Clients for System Compromise

Dec 03, 2024Ravie LakshmananEndpoint Security / Vulnerability Cybersecurity researchers have disclosed a set of flaws impacting Palo Alto Networks and…

North Korean Kimsuky Hackers
03
Dec
2024

North Korean Kimsuky Hackers Use Russian Email Addresses for Credential Theft Attacks

Dec 03, 2024Ravie LakshmananThreat Intelligence / Email Security The North Korea-aligned threat actor known as Kimsuky has been linked to…

SmokeLoader Malware
03
Dec
2024

SmokeLoader Malware Resurfaces, Targeting Manufacturing and IT in Taiwan

Dec 02, 2024Ravie LakshmananMalware / Cryptocurrency Taiwanese entities in manufacturing, healthcare, and information technology sectors have become the target of…

Horns&Hooves Campaign Delivers RATs via Fake Emails and JavaScript Payloads
03
Dec
2024

Horns&Hooves Campaign Delivers RATs via Fake Emails and JavaScript Payloads

Dec 03, 2024Ravie LakshmananMalware / Phishing Attack A newly discovered malware campaign has been found to target private users, retailers,…

Securing AI App Development
02
Dec
2024

A Guide to Securing AI App Development: Join This Cybersecurity Webinar

Dec 02, 2024The Hacker NewsAI Security / Data Protection Artificial Intelligence (AI) is no longer a far-off dream—it’s here, changing…

Loan Apps on Google Play
02
Dec
2024

8 Million Android Users Hit by SpyLoan Malware in Loan Apps on Google Play

Dec 02, 2024Ravie LakshmananMobile Security / Financial Fraud Over a dozen malicious Android apps identified on the Google Play Store…