Archives

The Hacker News

  • New Google Chrome Zero-Day Vulnerability Being Exploited in the Wild
    by [email protected] (Ravie Lakshmanan) on 17 Ağustos 2022 at 12:02

    Google on Tuesday rolled out patches for Chrome browser for desktops to contain an actively exploited high-severity zero-day flaw in the wild. Tracked as CVE-2022-2856, the issue has been described as a case of insufficient validation of untrusted input in Intents. Security researchers Ashley Shen and Christian Resell of Google Threat Analysis Group have been credited with reporting the flaw on

  • Researchers Link Multi-Year Mass Credential Theft Campaign to Chinese Hackers
    by [email protected] (Ravie Lakshmanan) on 17 Ağustos 2022 at 11:52

    A Chinese state-sponsored threat activity group named RedAlpha has been attributed to a multi-year mass credential theft campaign aimed at global humanitarian, think tank, and government organizations. "In this activity, RedAlpha very likely sought to gain access to email accounts and other online communications of targeted individuals and organizations," Recorded Future disclosed in a new

  • Lean Security 101: 3 Tips for Building Your Framework
    by [email protected] (The Hacker News) on 17 Ağustos 2022 at 10:50

    Cobalt, Lazarus, MageCart, Evil, Revil — cybercrime syndicates spring up so fast it's hard to keep track. Until…they infiltrate your system. But you know what's even more overwhelming than rampant cybercrime? Building your organization's security framework.  CIS, NIST, PCI DSS, HIPAA, HITrust, and the list goes on. Even if you had the resources to implement every relevant industry standard and

  • Malicious Browser Extensions Targeted Over a Million Users So Far This Year
    by [email protected] (Ravie Lakshmanan) on 17 Ağustos 2022 at 08:44

    More than 1.31 million users attempted to install malicious or unwanted web browser extensions at least once, new findings from cybersecurity firm Kaspersky show. "From January 2020 to June 2022, more than 4.3 million unique users were attacked by adware hiding in browser extensions, which is approximately 70% of all users affected by malicious and unwanted add-ons," the company said. As many as

  • North Korea Hackers Spotted Targeting Job Seekers with macOS Malware
    by [email protected] (Ravie Lakshmanan) on 17 Ağustos 2022 at 06:20

    The North Korea-backed Lazarus Group has been observed targeting job seekers with malware capable of executing on Apple Macs with Intel and M1 chipsets. Slovak cybersecurity firm ESET linked it to a campaign dubbed "Operation In(ter)ception" that was first disclosed in June 2020 and involved using social engineering tactics to trick employees working in the aerospace and military sectors into