Category: TheHackerNews

GitHub Codespaces
17
Jan
2023

Hackers Can Abuse Legitimate GitHub Codespaces Feature to Deliver Malware

Jan 17, 2023Ravie LakshmananThreat Response / Malware New research has found that it is possible for threat actors to abuse…

Share: X : Hackers Can Abuse Legitimate GitHub Codespaces Feature to Deliver MalwareFacebook : Hackers Can Abuse Legitimate GitHub Codespaces Feature to Deliver MalwareLinkedin : Hackers Can Abuse Legitimate GitHub Codespaces Feature to Deliver MalwareReddit : Hackers Can Abuse Legitimate GitHub Codespaces Feature to Deliver MalwareTelegram : Hackers Can Abuse Legitimate GitHub Codespaces Feature to Deliver MalwareWhatsApp : Hackers Can Abuse Legitimate GitHub Codespaces Feature to Deliver MalwareEmail : Hackers Can Abuse Legitimate GitHub Codespaces Feature to Deliver Malware
SOC Platforms
17
Jan
2023

4 Places to Supercharge Your SOC with Automation

It’s no secret that the job of SOC teams continues to become increasingly difficult. Increased volume and sophistication of attacks…

Share: X : 4 Places to Supercharge Your SOC with AutomationFacebook : 4 Places to Supercharge Your SOC with AutomationLinkedin : 4 Places to Supercharge Your SOC with AutomationReddit : 4 Places to Supercharge Your SOC with AutomationTelegram : 4 Places to Supercharge Your SOC with AutomationWhatsApp : 4 Places to Supercharge Your SOC with AutomationEmail : 4 Places to Supercharge Your SOC with Automation
PyPI Package
17
Jan
2023

Researchers Uncover 3 PyPI Packages Spreading Malware to Developer Systems

Jan 17, 2023Ravie LakshmananSoftware Security / Supply Chain A threat actor by the name Lolip0p has uploaded three rogue packages…

Share: X : Researchers Uncover 3 PyPI Packages Spreading Malware to Developer SystemsFacebook : Researchers Uncover 3 PyPI Packages Spreading Malware to Developer SystemsLinkedin : Researchers Uncover 3 PyPI Packages Spreading Malware to Developer SystemsReddit : Researchers Uncover 3 PyPI Packages Spreading Malware to Developer SystemsTelegram : Researchers Uncover 3 PyPI Packages Spreading Malware to Developer SystemsWhatsApp : Researchers Uncover 3 PyPI Packages Spreading Malware to Developer SystemsEmail : Researchers Uncover 3 PyPI Packages Spreading Malware to Developer Systems
Identity Management
16
Jan
2023

A Secure User Authentication Method – Planning is More Important than Ever

Jan 16, 2023The Hacker NewsIdentity Management / MFA When considering authentication providers, many organizations consider the ease of configuration, ubiquity…

Share: X : A Secure User Authentication Method – Planning is More Important than EverFacebook : A Secure User Authentication Method – Planning is More Important than EverLinkedin : A Secure User Authentication Method – Planning is More Important than EverReddit : A Secure User Authentication Method – Planning is More Important than EverTelegram : A Secure User Authentication Method – Planning is More Important than EverWhatsApp : A Secure User Authentication Method – Planning is More Important than EverEmail : A Secure User Authentication Method – Planning is More Important than Ever
Fake Cracked Software
16
Jan
2023

Raccoon and Vidar Stealers Spreading via Massive Network of Fake Cracked Software

Jan 16, 2023Ravie LakshmananData Security / Cyber Threat A “large and resilient infrastructure” comprising over 250 domains is being used…

Share: X : Raccoon and Vidar Stealers Spreading via Massive Network of Fake Cracked SoftwareFacebook : Raccoon and Vidar Stealers Spreading via Massive Network of Fake Cracked SoftwareLinkedin : Raccoon and Vidar Stealers Spreading via Massive Network of Fake Cracked SoftwareReddit : Raccoon and Vidar Stealers Spreading via Massive Network of Fake Cracked SoftwareTelegram : Raccoon and Vidar Stealers Spreading via Massive Network of Fake Cracked SoftwareWhatsApp : Raccoon and Vidar Stealers Spreading via Massive Network of Fake Cracked SoftwareEmail : Raccoon and Vidar Stealers Spreading via Massive Network of Fake Cracked Software
Industrial Control Systems
16
Jan
2023

CISA Warns for Flaws Affecting Industrial Control Systems from Major Manufacturers

Jan 16, 2023Ravie LakshmananIndustrial Control Systems The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has released several Industrial Control Systems…

Share: X : CISA Warns for Flaws Affecting Industrial Control Systems from Major ManufacturersFacebook : CISA Warns for Flaws Affecting Industrial Control Systems from Major ManufacturersLinkedin : CISA Warns for Flaws Affecting Industrial Control Systems from Major ManufacturersReddit : CISA Warns for Flaws Affecting Industrial Control Systems from Major ManufacturersTelegram : CISA Warns for Flaws Affecting Industrial Control Systems from Major ManufacturersWhatsApp : CISA Warns for Flaws Affecting Industrial Control Systems from Major ManufacturersEmail : CISA Warns for Flaws Affecting Industrial Control Systems from Major Manufacturers
CIA's Hive Malware
16
Jan
2023

New Backdoor Created Using Leaked CIA’s Hive Malware Discovered in the Wild

Jan 16, 2023Ravie LakshmananThreat Landscape / Malware Unidentified threat actors have deployed a new backdoor that borrows its features from…

Share: X : New Backdoor Created Using Leaked CIA’s Hive Malware Discovered in the WildFacebook : New Backdoor Created Using Leaked CIA’s Hive Malware Discovered in the WildLinkedin : New Backdoor Created Using Leaked CIA’s Hive Malware Discovered in the WildReddit : New Backdoor Created Using Leaked CIA’s Hive Malware Discovered in the WildTelegram : New Backdoor Created Using Leaked CIA’s Hive Malware Discovered in the WildWhatsApp : New Backdoor Created Using Leaked CIA’s Hive Malware Discovered in the WildEmail : New Backdoor Created Using Leaked CIA’s Hive Malware Discovered in the Wild
CircleCI Hack
14
Jan
2023

Malware Attack on CircleCI Engineer’s Laptop Leads to Recent Security Incident

Jan 14, 2023Ravie LakshmananDevOps / Data Security DevOps platform CircleCI on Friday disclosed that unidentified threat actors compromised an employee’s…

Share: X : Malware Attack on CircleCI Engineer’s Laptop Leads to Recent Security IncidentFacebook : Malware Attack on CircleCI Engineer’s Laptop Leads to Recent Security IncidentLinkedin : Malware Attack on CircleCI Engineer’s Laptop Leads to Recent Security IncidentReddit : Malware Attack on CircleCI Engineer’s Laptop Leads to Recent Security IncidentTelegram : Malware Attack on CircleCI Engineer’s Laptop Leads to Recent Security IncidentWhatsApp : Malware Attack on CircleCI Engineer’s Laptop Leads to Recent Security IncidentEmail : Malware Attack on CircleCI Engineer’s Laptop Leads to Recent Security Incident
Cacti Server Vulnerability
14
Jan
2023

Cacti Servers Under Attack as Majority Fail to Patch Critical Vulnerability

Jan 14, 2023Ravie LakshmananServer Security / Patch Management A majority of internet-exposed Cacti servers have not been patched against a…

Share: X : Cacti Servers Under Attack as Majority Fail to Patch Critical VulnerabilityFacebook : Cacti Servers Under Attack as Majority Fail to Patch Critical VulnerabilityLinkedin : Cacti Servers Under Attack as Majority Fail to Patch Critical VulnerabilityReddit : Cacti Servers Under Attack as Majority Fail to Patch Critical VulnerabilityTelegram : Cacti Servers Under Attack as Majority Fail to Patch Critical VulnerabilityWhatsApp : Cacti Servers Under Attack as Majority Fail to Patch Critical VulnerabilityEmail : Cacti Servers Under Attack as Majority Fail to Patch Critical Vulnerability
TikTok
14
Jan
2023

TikTok Fined $5.4 Million by French Regulator for Violating Cookie Laws

Jan 14, 2023Ravie LakshmananPrivacy / Online Safety Popular short-form video hosting service TikTok has been fined €5 million (about $5.4…

Share: X : TikTok Fined $5.4 Million by French Regulator for Violating Cookie LawsFacebook : TikTok Fined $5.4 Million by French Regulator for Violating Cookie LawsLinkedin : TikTok Fined $5.4 Million by French Regulator for Violating Cookie LawsReddit : TikTok Fined $5.4 Million by French Regulator for Violating Cookie LawsTelegram : TikTok Fined $5.4 Million by French Regulator for Violating Cookie LawsWhatsApp : TikTok Fined $5.4 Million by French Regulator for Violating Cookie LawsEmail : TikTok Fined $5.4 Million by French Regulator for Violating Cookie Laws
Cisco Router
14
Jan
2023

Cisco Issues Warning for Unpatched Vulnerabilities in EoL Business Routers

Jan 14, 2023Ravie LakshmananNetwork Security / Bug Report Cisco has warned of two security vulnerabilities affecting end-of-life (EoL) Small Business…

Share: X : Cisco Issues Warning for Unpatched Vulnerabilities in EoL Business RoutersFacebook : Cisco Issues Warning for Unpatched Vulnerabilities in EoL Business RoutersLinkedin : Cisco Issues Warning for Unpatched Vulnerabilities in EoL Business RoutersReddit : Cisco Issues Warning for Unpatched Vulnerabilities in EoL Business RoutersTelegram : Cisco Issues Warning for Unpatched Vulnerabilities in EoL Business RoutersWhatsApp : Cisco Issues Warning for Unpatched Vulnerabilities in EoL Business RoutersEmail : Cisco Issues Warning for Unpatched Vulnerabilities in EoL Business Routers
EyeSpy Surveillanceware
13
Jan
2023

Tainted VPNs Being Used to Spread EyeSpy Surveillanceware

Jan 13, 2023Ravie LakshmananVPN / Surveillanceware Tainted VPN installers are being used to deliver a piece of surveillanceware dubbed EyeSpy…

Share: X : Tainted VPNs Being Used to Spread EyeSpy SurveillancewareFacebook : Tainted VPNs Being Used to Spread EyeSpy SurveillancewareLinkedin : Tainted VPNs Being Used to Spread EyeSpy SurveillancewareReddit : Tainted VPNs Being Used to Spread EyeSpy SurveillancewareTelegram : Tainted VPNs Being Used to Spread EyeSpy SurveillancewareWhatsApp : Tainted VPNs Being Used to Spread EyeSpy SurveillancewareEmail : Tainted VPNs Being Used to Spread EyeSpy Surveillanceware