The Definitive Browser Security Checklist
Security stakeholders have come to realize that the prominent role the browser has in the modern corporate environment requires a re-evaluation of how it is…
Category: TheHackerNews
North Korean Hackers Turn to Credential Harvesting in Latest Wave of Cyberattacks
Jan 25, 2023Ravie LakshmananCryptocurrency / Malware A North Korean nation-state group notorious for crypto heists has been attributed to a new wave of malicious email…
VMware Releases Patches for Critical vRealize Log Insight Software Vulnerabilities
Jan 25, 2023Ravie LakshmananSoftware Security / VMware VMware on Tuesday released software to remediate four security vulnerabilities affecting vRealize Log Insight (aka Aria Operations for…
LastPass Parent Company GoTo Suffers Data Breach, Customers’ Backups Compromised
Jan 25, 2023Ravie LakshmananData Breach / Remote Work Tool LastPass-owner GoTo (formerly LogMeIn) on Tuesday disclosed that unidentified threat actors were able to steal encrypted…
Emotet Malware Makes a Comeback with New Evasion Techniques
Jan 24, 2023Ravie LakshmananCyber Threat / Cyber Crime The Emotet malware operation has continued to refine its tactics in an effort to fly under the…
Chinese Hackers Utilize Golang Malware in DragonSpark Attacks to Evade Detection
Jan 24, 2023Ravie LakshmananCyber Espionage / Golang Organizations in East Asia are being targeted by a likely Chinese-speaking actor dubbed DragonSpark while employing uncommon tactics…
Some Vulnerabilities Date Back to the Last Millennium
Vulnerability analysis results in Orange Cyberdefenses’ Security Navigator show that some vulnerabilities first discovered in 1999 are still found in networks today. This is concerning.…
FBI Says North Korean Hackers Behind $100 Million Horizon Bridge Crypto Theft
Jan 24, 2023Ravie LakshmananCryptocurrency / Cyber Crime The U.S. Federal Bureau of Investigation (FBI) on Monday confirmed that North Korean threat actors were responsible for…
Apple Issues Updates for Older Devices to Fix Actively Exploited Vulnerability
Jan 24, 2023Ravie LakshmananMobile Security / 0-Day Attack Apple has backported fixes for a recently disclosed critical security flaw affecting older devices, citing evidence of…
Facebook Introduces New Features for End-to-End Encrypted Messenger App
Jan 24, 2023Ravie LakshmananEncryption / Privacy Meta Platforms on Monday announced that it has started to expand global testing of end-to-end encryption (E2EE) in Messenger…
SaaS Security Posture Management (SSPM) as a Layer in Your Identity Fabric
Jan 23, 2023The Hacker NewsSaaS Security / SSPM Solution The move to SaaS and other cloud tools has put an emphasis on Identity & Access…
Samsung Galaxy Store App Found Vulnerable to Sneaky App Installs and Fraud
Jan 23, 2023Ravie LakshmananMobile Hacking / App Security Two security flaws have been disclosed in Samsung’s Galaxy Store app for Android that could be exploited…