Microsoft Warns of New Russian State-Sponsored Hacker Group with Destructive Intent
Jun 15, 2023Ravie Lakshmanan Microsoft on Wednesday took the lid off a “novel and distinct Russian threat actor,” which it said is linked to the…
Category: TheHackerNews
LockBit Ransomware Extorts $91 Million from U.S. Companies
The threat actors behind the LockBit ransomware-as-a-service (RaaS) scheme have extorted $91 million following hundreds of attacks against numerous U.S. organizations since 2020. That’s according…
Chinese Hackers Exploit VMware Zero-Day to Backdoor Windows and Linux Systems
Jun 14, 2023Ravie LakshmananZero-Day / Network Security The Chinese state-sponsored group known as UNC3886 has been found to exploit a zero-day flaw in VMware ESXi…
Severe Vulnerabilities Reported in Microsoft Azure Bastion and Container Registry
Jun 14, 2023Ravie LakshmananCloud Security / Vulnerability Two “dangerous” security vulnerabilities have been disclosed in Microsoft Azure Bastion and Azure Container Registry that could have…
Where from, Where to — The Evolution of Network Security
Jun 14, 2023The Hacker NewsThreat Intel / Network Security For the better part of the 90s and early aughts, the sysadmin handbook said, “Filter your…
New Golang-based Skuld Malware Stealing Discord and Browser Data from Windows PCs
Jun 14, 2023Ravie LakshmananCyber Threat / Malware A new Golang-based information stealer called Skuld has compromised Windows systems across Europe, Southeast Asia, and the U.S.…
Fake Researcher Profiles Spread Malware through GitHub Repositories as PoC Exploits
Jun 14, 2023Ravie LakshmananMalware / Zero-Day At least half of dozen GitHub accounts from fake researchers associated with a fraudulent cybersecurity company have been observed…
Critical Security Vulnerability Discovered in WooCommerce Stripe Gateway Plugin
Jun 14, 2023Ravie LakshmananWebsite Security / Hacking A security flaw has been uncovered in the WooCommerce Stripe Gateway WordPress plugin that could lead to the…
Microsoft Releases Updates to Patch Critical Flaws in Windows and Other Software
Jun 14, 2023Ravie LakshmananPatch Tuesday / Vulnerability Microsoft has rolled out fixes for its Windows operating system and other software components to remediate major security…
New DoubleFinger Loader Targets Cryptocurrency Wallets with Stealer
Jun 13, 2023Ravie LakshmananCrimeware / Cryptocurrency A novel multi-stage loader called DoubleFinger has been observed delivering a cryptocurrency stealer dubbed GreetingGhoul in what’s an advanced…
Over Half of Security Leaders Lack Confidence in Protecting App Secrets, Study Reveals
It might come as a surprise, but secrets management has become the elephant in the AppSec room. While security vulnerabilities like Common Vulnerabilities and Exposures…
Adversary-in-the-Middle Attack Campaign Hits Dozens of Global Organizations
Jun 13, 2023Ravie LakshmananPhishing Attacks / BEC “Dozens” of organizations across the world have been targeted as part of a broad business email compromise (BEC)…