Lolek Bulletproof Hosting Servers Seized, 5 Key Operators Arrested
Aug 12, 2023THNCyber Crime / Hosting European and U.S. law enforcement agencies have announced the dismantling of a bulletproof hosting service provider called Lolek Hosted,…
Category: TheHackerNews
New Python URL Parsing Flaw Enables Command Injection Attacks
Aug 12, 2023THNProgramming / Vulnerability A high-severity security flaw has been disclosed in the Python URL parsing function that could be exploited to bypass domain…
Researchers Uncover Decade-Long Cyber Espionage on Foreign Embassies in Belarus
A hitherto undocumented threat actor operating for nearly a decade and codenamed MoustachedBouncer has been attributed to cyber espionage attacks aimed at foreign embassies in…
Google Adds Quantum-Resistant Encryption in Chrome 116
Aug 11, 2023THNEncryption / Browser Security Google has announced plans to add support for quantum-resistant encryption algorithms in its Chrome browser, starting with version 116.…
Researchers Shed Light on APT31’s Advanced Backdoors and Data Exfiltration Tactics
Aug 11, 2023THNMalware / Cyber Attack The Chinese threat actor known as APT31 (aka Bronze Vinewood, Judgement Panda, or Violet Typhoon) has been linked to…
New SystemBC Malware Variant Targets Southern African Power Company
Aug 11, 2023THNMalware / Cyber Threat An unknown threat actor has been linked to a cyber attack on a power generation company in southern Africa…
15 New CODESYS SDK Flaws Expose OT Environments to Remote Attacks
Aug 11, 2023THNOperational Technology / Vulnerability A set of 15 high-severity security flaws have been disclosed in the CODESYS V3 software development kit (SDK) that…
CISA Adds Microsoft .NET Vulnerability to KEV Catalog Due to Active Exploitation
Aug 11, 2023THNEndpoint Security / Vulnerability The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a recently patched security flaw in Microsoft’s .NET and…
Freeze[.]rs Injector Weaponized for XWorm Malware Attacks
Aug 10, 2023THNMalware / Cyber Threat Malicious actors are using a legitimate Rust-based injector called Freeze[.]rs to deploy a commodity malware called XWorm in victim…
Your Sensitive Data at Risk
Aug 10, 2023THNMalware / Cyber Threat A new information malware strain called Statc Stealer has been found infecting devices running Microsoft Windows to siphon sensitive…
Emerging Attacker Exploit: Microsoft Cross-Tenant Synchronization
Aug 10, 2023The Hacker NewsThreat Detection / Attack Signal Attackers continue to target Microsoft identities to gain access to connected Microsoft applications and federated SaaS…
Encryption Flaws in Popular Chinese Language App Put Users’ Typed Data at Risk
Aug 10, 2023THNPrivacy / Encryption A widely used Chinese language input app for Windows and Android has been found vulnerable to serious security flaws that…