Spacecolon Toolset Fuels Global Surge in Scarab Ransomware Attacks
Aug 23, 2023THNRansomware / Malware A malicious toolset dubbed Spacecolon is being deployed as part of an ongoing campaign to spread variants of the Scarab…
Category: TheHackerNews
Over a Dozen Malicious npm Packages Target Roblox Game Developers
Aug 23, 2023THNSoftware Security / Malware More than a dozen malicious packages have been discovered on the npm package repository since the start of August…
CISOs Tout SaaS Cybersecurity Confidence, But 79% Admit to SaaS Incidents, New Report Finds
A new State of SaaS Security Posture Management Report from SaaS cybersecurity provider AppOmni indicates that Cybersecurity, IT, and business leaders alike recognize SaaS cybersecurity…
Hong Kong Organizations Targeted via Malicious Software Updates
Aug 22, 2023THNSoftware Supply Chain / Malware A previously undocumented threat cluster has been linked to a software supply chain attack targeting organizations primarily located…
New Variant of XLoader macOS Malware Disguised as ‘OfficeNote’ Productivity App
Aug 22, 2023THNMalware / Endpoint Security A new variant of an Apple macOS malware called XLoader has surfaced in the wild, masquerading its malicious features…
Ivanti Warns of Critical Zero-Day Flaw Being Actively Exploited in Sentry Software
Aug 22, 2023THNZero-Day / Software Security Software services provider Ivanti is warning of a new critical zero-day flaw impacting Ivanti Sentry (formerly MobileIron Sentry) that…
Critical Adobe ColdFusion Flaw Added to CISA’s Exploited Vulnerability Catalog
Aug 22, 2023THNVulnerability / Cyber Threat The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a critical security flaw in Adobe ColdFusion to its…
New WinRAR Vulnerability Could Allow Hackers to Take Control of Your PC
Aug 21, 2023THNVulnerability / Cyber Threat A high-severity security flaw has been disclosed in the WinRAR utility that could be potentially exploited by a threat…
How to Investigate an OAuth Grant for Suspicious Activity or Overly Permissive Scopes
From a user’s perspective, OAuth works like magic. In just a few keystrokes, you can whisk through the account creation process and gain immediate access…
This Malware Turned Thousands of Hacked Windows and macOS PCs into Proxy Servers
Aug 21, 2023THNMalware / Privacy Threat actors are leveraging access to malware-infected Windows and macOS machines to deliver a proxy server application and use them…
Taiwan Firms and U.S. Military Under Attack
Aug 21, 2023THNCyber Threat / Malware The threat actors behind the HiatusRAT malware have returned from their hiatus with a new wave of reconnaissance and…
WoofLocker Toolkit Hides Malicious Codes in Images to Run Tech Support Scams
Aug 19, 2023THNMalvertising / Website Security Cybersecurity researchers have detailed an updated version of an advanced fingerprinting and redirection toolkit called WoofLocker that’s engineered to…