Lace Tempest Exploits SysAid IT Support Software Vulnerability
Nov 09, 2023NewsroomVulnerability / Zero Day The threat actor known as Lace Tempest has been linked to the exploitation of a zero-day flaw in SysAid…
Category: TheHackerNews
New Malvertising Campaign Uses Fake Windows News Portal to Distribute Malicious Installers
Nov 09, 2023NewsroomEndpoint Security / Malware A new malvertising campaign has been found to employ fake sites that masquerade as legitimate Windows news portal to…
New C2 Framework Iranian Hackers Using Against Israel
Nov 09, 2023NewsroomCyber Attack / Malware Iranian nation-state actors have been observed using a previously undocumented command-and-control (C2) framework called MuddyC2Go as part of attacks…
When Email Security Meets SaaS Security: Uncovering Risky Auto-Forwarding Rules
Nov 09, 2023The Hacker NewsEmail Security / SaaS Security While intended for convenience and efficient communication, email auto-forwarding rules can inadvertently lead to the unauthorized…
High-Severity SLP Vulnerability Now Under Active Exploitation
Nov 09, 2023NewsroomCyber Attack / Vulnerability The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Wednesday added a high-severity flaw in the Service Location Protocol…
WhatsApp Introduces New Privacy Feature to Protect IP Address in Calls
Nov 08, 2023NewsroomPrivacy / Data Security Meta-owned WhatsApp is officially rolling out a new privacy feature in its messaging service called “Protect IP Address in…
Researchers Uncover Undetectable Crypto Mining Technique on Azure Automation
Nov 08, 2023NewsroomCloud Security / Cryptocurrency Cybersecurity researchers have developed what’s the first fully undetectable cloud-based cryptocurrency miner leveraging the Microsoft Azure Automation service without…
BlazeStealer Malware Discovered in Python Packages on PyPI
Nov 08, 2023NewsroomSupply Chain / Software Security A new set of malicious Python packages has slithered their way to the Python Package Index (PyPI) repository…
How vCISOs, MSPs and MSSPs Can Keep their Customers Safe from Gen AI Risks
Nov 08, 2023The Hacker NewsArtificial Intelligence / Cybersecurity Download the free guide, “It’s a Generative AI World: How vCISOs, MSPs and MSSPs Can Keep their…
Kickstarting Your SaaS Security Strategy & Program
Nov 08, 2023The Hacker NewsWebinar / SaaS Security SaaS applications make up 70% of total company software usage, and as businesses increase their reliance on…
Experts Expose Farnetwork’s Ransomware-as-a-Service Business Model
Nov 08, 2023NewsroomCyber Threat / Endpoint Security Cybersecurity researchers have unmasked a prolific threat actor known as farnetwork, who has been linked to five different…
N. Korean BlueNoroff Blamed for Hacking macOS Machines with ObjCShellz Malware
Nov 07, 2023NewsroomEndpoint Security / Malware The North Korea-linked nation-state group called BlueNoroff has been attributed to a previously undocumented macOS malware strain dubbed ObjCShellz.…