Category: TheHackerNews

StrongPity Hackers Distribute Trojanized Telegram App to Target Android Users
10
Jan
2023

StrongPity Hackers Distribute Trojanized Telegram App to Target Android Users

Jan 10, 2023Ravie LakshmananAdvanced Persistent Threat The advanced persistent threat (APT) group known as StrongPity has targeted Android users with…

Malware Attack
10
Jan
2023

Italian Users Warned of Malware Attack Targeting Sensitive Information

Jan 10, 2023Ravie LakshmananCyber Threat / Data Security A new malware campaign has been observed targeting Italy with phishing emails…

Threema Messaging App
10
Jan
2023

Expert Analysis Reveals Cryptographic Weaknesses in Threema Messaging App

Jan 10, 2023Ravie LakshmananPrivacy / Encryption A comprehensive analysis of the cryptographic protocols used in the Swiss encrypted messaging application…

high-severity security flaw
10
Jan
2023

Severe Security Flaw Found in “jsonwebtoken” Library Used by 22,000+ Projects

Jan 10, 2023Ravie LakshmananSoftware Security / Supply Chain A high-severity security flaw has been disclosed in the open source jsonwebtoken…

Malicious Visual Studio Extensions
10
Jan
2023

Hackers Can Abuse Visual Studio Marketplace to Target Developers with Malicious Extensions

Jan 09, 2023Ravie LakshmananSupply Chain / CodeSec A new attack vector targeting the Visual Studio Code extensions marketplace could be…

SaaS Cybersecurity Threats
09
Jan
2023

Top SaaS Cybersecurity Threats in 2023: Are You Ready?

Jan 09, 2023The Hacker NewsWeb Security / SaaS Security Cybercriminals will be as busy as ever this year. Stay safe…

PyPI Packages Using Cloudflare Tunnels
09
Jan
2023

Malicious PyPI Packages Using Cloudflare Tunnels to Sneak Through Firewalls

Jan 09, 2023Ravie LakshmananNetwork Security / Supply Chain In yet another campaign targeting the Python Package Index (PyPI) repository, six…

Car Hacking
09
Jan
2023

API Vulnerabilities Uncovered in 16 Major Car Brands

Jan 09, 2023Ravie LakshmananAutomotive Security Multiple bugs affecting millions of vehicles from 16 different manufacturers could be abused to unlock,…

Kinsing Cryptojacking
09
Jan
2023

Kinsing Cryptojacking Hits Kubernetes Clusters via Misconfigured PostgreSQL

Jan 09, 2023Ravie LakshmananKubernetes / Cryptojacking The threat actors behind the Kinsing cryptojacking operation have been spotted exploiting misconfigured and…

Text-to-SQL Model Vulnerabilities
09
Jan
2023

New Study Uncovers Text-to-SQL Model Vulnerabilities Allowing Data Theft and DoS Attacks

Jan 09, 2023Ravie LakshmananDatabase Security / PLM Framework A group of academics has demonstrated novel attacks that leverage Text-to-SQL models…

SaaS Security
09
Jan
2023

Why Do User Permissions Matter for SaaS Security?

Jan 09, 2023The Hacker NewsSaaS Security / SSPM Solution Earlier this year, threat actors infiltrated Mailchimp, the popular SaaS email…

Russian Turla Hackers Hijack Decade-Old Malware Infrastructure to Deploy New Backdoors
08
Jan
2023

Russian Turla Hackers Hijack Decade-Old Malware Infrastructure to Deploy New Backdoors

Jan 08, 2023Ravie LakshmananCyberespionage / Threat Analysis The Russian cyberespionage group known as Turla has been observed piggybacking on attack…