The Hacker News9h
âš¡ THN Weekly Recap: Top Cybersecurity Threats, Tools and Tips [13 January]
This week in cybersecurity: zero-day exploits, advanced malware, and the latest hacking tricks you need to know about.
The Hacker News8h
Hackers Exploit Aviatrix Controller Vulnerability to Deploy Backdoors and Crypto Miners
CVE-2024-50603 in Aviatrix Controller enables remote code execution, cryptomining, and backdoor attacks. Patch now.
The Hacker News14h
WordPress Skimmers Evade Detection by Injecting Themselves into Database Tables
Malicious JavaScript in WordPress checkout pages steals payment data, hides in wp_options, and exfiltrates encrypted details.
The Hacker News15h
Expired Domains Allowed Control Over 4,000 Backdoors on Compromised Systems
Hijacked 4,000+ backdoors via expired domains for $20, exposing government, academic, and private systems globally.
The Hacker News10h
Ransomware on ESXi: The mechanization of virtualized attacks
In 2024, ransomware attacks targeting VMware ESXi servers reached alarming levels, with the average ransom demand ...
The Hacker News16h
DoJ Indicts Three Russians for Operating Crypto Mixers Used in Cybercrime Laundering
The U.S. Department of Justice (DoJ) on Friday indicted three Russian nationals for their alleged involvement in operating ...
The Hacker News2d
Microsoft Sues Hacking Group Exploiting Azure AI for Harmful Content Creation
Microsoft takes legal action against a hacking group using stolen Azure API keys to create harmful AI-generated content.
The Hacker News2d
New Banshee Stealer Variant Bypasses Antivirus with Apple's XProtect-Inspired Encryption
Banshee Stealer, a $3,000/month macOS malware, resurfaces with XProtect encryption, targeting 100M users via phishing ...
The Hacker News2d
Taking the Pain Out of Cybersecurity Reporting: A Practical Guide for MSPs
The guide— " Taking the Pain Out of Cybersecurity Reporting " —walks you through how to transform raw data into compelling ...
The Hacker News3d
Google Project Zero Researcher Uncovers Zero-Click Exploit Targeting Samsung Devices
Google Project Zero researcher Natalie Silvanovich, who discovered and reported the shortcoming, described it as requiring no ...
The Hacker News2d
CrowdStrike Warns of Phishing Scam Targeting Job Seekers with XMRig Cryptominer
"The malware then runs the XMRig miner, using the command-line arguments inside the downloaded configuration text file," ...
The Hacker News3d
RedDelta Deploys PlugX Malware to Target Mongolia and Taiwan in Espionage Campaigns
RedDelta exploited PlugX backdoor and Cloudflare CDN to target Asian governments, including Mongolia's Ministry of Defense, ...