Amazing News...

In today's world of automated hacking systems, frequent data breaches and consumer protection regulations such as GDPR and PCI DSS, penetration testing is now an essential security requirement for organisations of all sizes. But what should you look for when choosing the right provider? The sheer number of providers can be daunting, and finding one which can deliver a high-quality test at a from The Hacker News https://ift.tt/O64e8E2 via IFTTT

An unofficial patch has been made available for an actively exploited security flaw in Microsoft Windows that makes it possible for files signed with malformed signatures to sneak past Mark-of-the-Web (MotW) protections. The fix, released by 0patch, arrives weeks after HP Wolf Security disclosed a Magniber ransomware campaign that targets users with fake security updates which employ a from The Hacker News https://ift.tt/ylPg3BE via IFTTT

Cloud-based repository hosting service GitHub has addressed a high-severity security flaw that could have been exploited to create malicious repositories and mount supply chain attacks. The RepoJacking technique, disclosed by Checkmarx, entails a bypass of a protection mechanism called popular repository namespace retirement, which aims to prevent developers from pulling unsafe repositories with from The Hacker News https://ift.tt/4ochWlV via IFTTT

Find your Twitter friends on Mastodon 505 by srvmshr | 306 comments on Hacker News.

SQLite in the browser with WASM/JS 536 by hochmartinez | 196 comments on Hacker News.

How to communicate effectively as a developer 531 by karls | 210 comments on Hacker News.

Google Ad Disguising Itself as www.gimp.org 575 by tosh | 208 comments on Hacker News.

How I make a living working on SerenityOS 547 by akling | 110 comments on Hacker News.

Kathleen Booth, the inventor of assembly language, has died 622 by sohkamyung | 94 comments on Hacker News.

Communication services provider Twilio this week disclosed that it experienced another "brief security incident" in June 2022 perpetrated by the same threat actor behind the August hack that resulted in unauthorized access of customer information. The security event occurred on June 29, 2022, the company said in an updated advisory shared this week, as part of its probe into the digital break-in from The Hacker News https://ift.tt/RbQ31pY via IFTTT

Disabling the Intel Management Engine 521 by metadat | 289 comments on Hacker News.

Show HN: SadServers – Test your Linux troubleshooting skills 579 by fduran | 128 comments on Hacker News. Hello, I'm building SadServers.com, a SaaS where users can test their Linux troubleshooting skills on real Linux servers in a "Capture the Flag" fashion. I hope this is useful, to learn more about the project please see https://ift.tt/sbyiSqY

Cloud computing was the lifeline that kept many companies running during the pandemic. But it was a classic case of medicine that comes with serious side effects.  Having anywhere, anytime access to data and apps gives companies tremendous flexibility in a fast-changing world, plus the means to scale and customize IT at will. The cloud is an asset or upgrade in almost every way. With one glaring from The Hacker News https://ift.tt/DKrQelh via IFTTT

Five malicious dropper Android apps with over 130,000 cumulative installations have been discovered on the Google Play Store distributing banking trojans like SharkBot and Vultur, which are capable of stealing financial data and performing on-device fraud. "These droppers continue the unstopping evolution of malicious apps sneaking to the official store," Dutch mobile security firm ThreatFabric from The Hacker News https://ift.tt/bGpYIDh via IFTTT

The Raspberry Robin worm is becoming an access-as-a-service malware for deploying other payloads, including IcedID, Bumblebee, TrueBot (aka Silence), and Clop ransomware. It is "part of a complex and interconnected malware ecosystem, with links to other malware families and alternate infection methods beyond its original USB drive spread," the Microsoft Security Threat Intelligence Center (MSTIC from The Hacker News https://ift.tt/NAhClip via IFTTT

Pokemon Card Animation 712 by parrot987 | 94 comments on Hacker News.

A 34-year-old U.K. national has been arraigned in the U.S. for operating a dark web marketplace called The Real Deal that specialized in the sales of hacking tools and stolen login credentials. Daniel Kaye, who went by a litany of pseudonyms Popopret, Bestbuy, UserL0ser, and Spdrman, has been charged with five counts of access device fraud and one count of money laundering conspiracy. Kaye was from The Hacker News https://ift.tt/bM0dk6v via IFTTT

As many as 85 command-and-control (C2) servers have been discovered supported by the ShadowPad malware since September 2021, with infrastructure detected as recently as October 16, 2022. That's according to VMware's Threat Analysis Unit (TAU), which studied three ShadowPad variants using TCP, UDP, and HTTP(S) protocols for C2 communications. ShadowPad, seen as a successor to PlugX, is a modular from The Hacker News https://ift.tt/ew5PZW4 via IFTTT

Automobile, Energy, Media, Ransomware?When thinking about verticals, one may not instantly think of cyber-criminality. Yet, every move made by governments, clients, and private contractors screams toward normalizing those menaces as a new vertical. Ransomware has every trait of the classical economical vertical. A thriving ecosystem of insurers, negotiators, software providers, and managed from The Hacker News https://ift.tt/NgGc1Jx via IFTTT

A now-patched security flaw in Apple's iOS and macOS operating systems could have potentially enabled apps with Bluetooth access to eavesdrop on conversations with Siri. Apple said "an app may be able to record audio using a pair of connected AirPods," adding it addressed the Core Bluetooth issue in iOS 16.1 with improved entitlements. Credited with discovering and reporting the bug in August from The Hacker News https://ift.tt/nLZpoCI via IFTTT

A new cryptojacking campaign has been uncovered targeting vulnerable Docker and Kubernetes infrastructures as part of opportunistic attacks designed to illicitly mine cryptocurrency. Cybersecurity company CrowdStrike dubbed the activity Kiss-a-dog, with its command-and-control infrastructure overlapping with those associated with other groups like TeamTNT, which are known to strike misconfigured from The Hacker News https://ift.tt/jIXLxDc via IFTTT

I Fell 15,000 Feet and Lived (2009) 621 by metadat | 244 comments on Hacker News.

If you regularly read The Hacker News, there’s a fair chance that you know something about cybersecurity. It’s possible to turn that interest into a six-figure career. But to make the leap, you need to pick up some key skills and professional certifications. Featuring nine in-depth courses, The 2022 Masters in Cyber Security Certification Bundle helps you get ready for the next step. And in a from The Hacker News https://ift.tt/Nkv0URH via IFTTT

The North Korean espionage-focused actor known as Kimsuky has been observed using three different Android malware strains to target users located in its southern counterpart. That's according to findings from South Korean cybersecurity company S2W, which named the malware families FastFire, FastViewer, and FastSpy. "The FastFire malware is disguised as a Google security plugin, and the from The Hacker News https://ift.tt/40dP3kx via IFTTT

The threat actor behind a remote access trojan called RomCom RAT has been observed targeting Ukrainian military institutions as part of a new spear-phishing campaign that commenced on October 21, 2022.  The development marks a shift in the attacker's modus operandi, which has been previously attributed to spoofing legitimate apps like Advanced IP Scanner and pdfFiller to drop backdoors on from The Hacker News https://ift.tt/DTmnBAk via IFTTT

Turbopack, the successor to Webpack 599 by nutlope | 286 comments on Hacker News.

Cisco has warned of active exploitation attempts targeting a pair of two-year-old security flaws in the Cisco AnyConnect Secure Mobility Client for Windows. Tracked as CVE-2020-3153 (CVSS score: 6.5) and CVE-2020-3433 (CVSS score: 7.8), the vulnerabilities could enable local authenticated attackers to perform DLL hijacking and copy arbitrary files to system directories with elevated privileges. from The Hacker News https://ift.tt/qm8HI1T via IFTTT

VMware on Tuesday shipped security updates to address a critical security flaw in its VMware Cloud Foundation product. Tracked as CVE-2021-39144, the issue has been rated 9.8 out of 10 on the CVSS vulnerability scoring system, and relates to a remote code execution vulnerability via XStream open source library. "Due to an unauthenticated endpoint that leverages XStream for input serialization in from The Hacker News https://ift.tt/zpjJgQA via IFTTT

My dad's resume and skills from 1980 629 by metadat | 304 comments on Hacker News.

What “work” looks like 535 by LordNibbler | 146 comments on Hacker News.

Cybersecurity researchers have disclosed details about a pair of vulnerabilities in Microsoft Windows, one of which could be exploited to result in a denial-of-service (DoS). The exploits, dubbed LogCrusher and OverLog by Varonis, take aim at the EventLog Remoting Protocol (MS-EVEN), which enables remote access to event logs. While the former allows "any domain user to remotely from The Hacker News https://ift.tt/tbscJv7 via IFTTT

Two point-of-sale (PoS) malware variants have been put to use by a threat actor to steal information related to more than 167,000 credit cards from payment terminals. According to Singapore-headquartered cybersecurity company Group-IB, the stolen data dumps could net the operators as much as $3.34 million by selling them on underground forums. While a significant proportion of attacks aimed at from The Hacker News https://ift.tt/D0szEYL via IFTTT

Tech giant Apple on Monday rolled out updates to remediate a zero-day flaw in iOS and iPadOS that it said has been actively exploited in the wild. The weakness, given the identifier CVE-2022-42827, has been described as an out-of-bounds write issue in the Kernel, which could be abused by a rogue application to execute arbitrary code with the highest privileges. Successful exploitation of from The Hacker News https://ift.tt/fFSWoVe via IFTTT

Sonic: Fast, lightweight and schema-less search backend 497 by rcarmo | 145 comments on Hacker News.

I help seniors with technology issues. A regular came in with a Lenovo laptop 522 by thinkingemote | 367 comments on Hacker News.

Fake Books 456 by tybulewicz | 167 comments on Hacker News.

Stop Scanning Me 492 by favourable | 134 comments on Hacker News.

U.S. cybersecurity and intelligence agencies have published a joint advisory warning of attacks perpetrated by a cybercrime gang known as the Daixin Team primarily targeting the healthcare sector in the country. "The Daixin Team is a ransomware and data extortion group that has targeted the HPH Sector with ransomware and data extortion operations since at least June 2022," the agencies said. The from The Hacker News https://ift.tt/utCNipw via IFTTT

Five origami books by Shuzo Fujimoto are now public domain 544 by mkosmul | 35 comments on Hacker News.

The breach of LA Unified School District (LAUSD) highlights the prevalence of password vulnerabilities, as criminal hackers continue to use breached credentials in increasingly frequent ransomware attacks on education. The Labor Day weekend breach of LAUSD brought significant districtwide disruptions to access to email, computers, and applications. It's unclear what student or employee data the from The Hacker News https://ift.tt/A6ujk5N via IFTTT

A chill driving game with procedurally generate scenic landscapes 537 by itsuka | 155 comments on Hacker News.

The notorious Emotet botnet has been linked to a new wave of malspam campaigns that take advantage of password-protected archive files to drop CoinMiner and Quasar RAT on compromised systems. In an attack chain detected by Trustwave SpiderLabs researchers, an invoice-themed ZIP file lure was found to contain a nested self-extracting (SFX) archive, the first archive acting as a conduit to launch from The Hacker News https://ift.tt/NCFq4Rr via IFTTT

A now-patched vulnerability in VMware Workspace ONE Access has been observed being exploited to deliver both cryptocurrency miners and ransomware on affected machines. "The attacker intends to utilize a victim's resources as much as possible, not only to install RAR1Ransom for extortion, but also to spread GuardMiner to collect cryptocurrency," Fortinet FortiGuard Labs researcher Cara Lin said  from The Hacker News https://ift.tt/PnpkHUf via IFTTT

How to use a watch as a compass 471 by jamesgill | 143 comments on Hacker News.

Google is forcing us to make our open source VoIP app worse 545 by DevhouseSpindle | 250 comments on Hacker News.

WordPress security company Wordfence on Thursday said it started detecting exploitation attempts targeting the newly disclosed flaw in Apache Commons Text on October 18, 2022. The vulnerability, tracked as CVE-2022-42889 aka Text4Shell, has been assigned a severity ranking of 9.8 out of a possible 10.0 on the CVSS scale and affects versions 1.5 through 1.9 of the library. It's also similar to from The Hacker News https://ift.tt/49aYOXd via IFTTT

Acknowledging that you have a problem is the first step to addressing the problem in a serious way. This seems to be the reasoning for the White House recently announcing its "Strengthening America's Cybersecurity" initiative. The text of the announcement contains several statements that anyone who's ever read about cybersecurity will have heard many times over: increasing resilience, greater from The Hacker News https://ift.tt/JCrVXke via IFTTT

Microsoft this week confirmed that it inadvertently exposed information related to thousands of customers following a security lapse that left an endpoint publicly accessible over the internet sans any authentication. "This misconfiguration resulted in the potential for unauthenticated access to some business transaction data corresponding to interactions between Microsoft and prospective from The Hacker News https://ift.tt/h2C7up9 via IFTTT

The Federal Police of Brazil on Wednesday announced it had arrested an individual for purported links to the notorious LAPSUS$ extortionist gang. The arrest was made as part of a new law enforcement effort, dubbed Operation Dark Cloud, that was launched in August 2022, the agency noted. Not much is known about the suspect other than the fact that the person could be a teenager. The Polícia from The Hacker News https://ift.tt/BaAme7o via IFTTT

NASA’s Webb takes star-filled portrait of Pillars of Creation 492 by pizza | 129 comments on Hacker News.

Brave browser now blocks cookie banners 484 by bookofjoe | 520 comments on Hacker News.

Show HN: A new search engine UX I've been working on in my free time 497 by ryes | 286 comments on Hacker News.

I am endlessly fascinated with content tagging systems 568 by redbar0n | 259 comments on Hacker News.

American Airlines is trying to stop a popular app used by flight attendants 496 by josephcsible | 247 comments on Hacker News.

Never trust a system that seems to be working 493 by pkilgore | 320 comments on Hacker News.

75% of the time we spend with our kids in our lifetime will be spent by age 12 565 by gmays | 430 comments on Hacker News.

Cybersecurity researchers have shared more details about a now-patched security flaw in Azure Service Fabric Explorer (SFX) that could potentially enable an attacker to gain administrator privileges on the cluster. The vulnerability, tracked as CVE-2022-35829, carries a CVSS severity rating of 6.2 and was addressed by Microsoft as part of its Patch Tuesday updates last week. Orca from The Hacker News https://ift.tt/mzdSxfv via IFTTT

In the world of insurance providers and policies, cyber insurance is a fairly new field. And many security teams are trying to wrap their heads around it.  What is it and do they need it? And with what time will they spend researching how to integrate cyber insurance into their strategy?  For small security teams, this is particularly challenging as they contend with limited resources. Luckily, from The Hacker News https://ift.tt/MvGWVx3 via IFTTT

Details have emerged about a previously undocumented and fully undetectable (FUD) PowerShell backdoor that gains its stealth by disguising itself as part of a Windows update process. "The covert self-developed tool and the associated C2 commands seem to be the work of a sophisticated, unknown threat actor who has targeted approximately 100 victims," Tomer Bar, director of security research at from The Hacker News https://ift.tt/HlxBubF via IFTTT

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Tuesday released two Industrial Control Systems (ICS) advisories pertaining to severe flaws in Advantech R-SeeNet and Hitachi Energy APM Edge appliances. This consists of three weaknesses in the R-SeeNet monitoring solution, successful exploitation of which "could result in an unauthorized attacker remotely deleting files on the from The Hacker News https://ift.tt/mpy8gST via IFTTT

How to become a pirate archivist 538 by pilimi_anna | 95 comments on Hacker News.

Sound 689 by todsacerdoti | 54 comments on Hacker News.

Both cryptocurrency and ransomware are nothing new in the digital world; both have been there for a very long time, which was enough for them to find common pieces for starting their relationship. Ransomware can be like a virtual car that works on all types of fuels, and crypto is the one that is currently most recommended. No one can argue that 2020 was the year of ransomware in the cyber world from The Hacker News https://ift.tt/Ybiq0gt via IFTTT

The China-aligned espionage-focused actor dubbed Winnti has set its sights on government organizations in Hong Kong as part of an ongoing campaign dubbed Operation CuckooBees. Active since at least 2007, Winnti (aka APT41, Barium, Bronze Atlas, and Wicked Panda) is the name designated to a prolific cyber threat group that carries out Chinese state-sponsored espionage activity, predominantly from The Hacker News https://ift.tt/FiaLsJ7 via IFTTT

Law enforcement authorities in France, in collaboration with Spain and Latvia, have disrupted a cybercrime ring that leveraged a hacking tool to steal cars without having to use a physical key fob. "The criminals targeted vehicles with keyless entry and start systems, exploiting the technology to get into the car and drive away," Europol said in a press statement. The coordinated from The Hacker News https://ift.tt/f0mHVhq via IFTTT

HelpSystems, the company behind the Cobalt Strike software platform, has released an out-of-band security update to address a remote code execution vulnerability that could allow an attacker to take control of targeted systems. Cobalt Strike is a commercial red-team framework that's mainly used for adversary simulation, but cracked versions of the software have been actively abused by ransomware from The Hacker News https://ift.tt/IlvJxCY via IFTTT

The Chaostron: An Important Advance in Learning Machines (1961) 1061 by abrax3141 | 5 comments on Hacker News.

GitHub Copi­lot inves­ti­ga­tion 510 by john-doe | 416 comments on Hacker News.

A new ransomware campaign targeted the transportation and logistics sectors in Ukraine and Poland on October 11 with a previously unknown payload dubbed Prestige. "The activity shares victimology with recent Russian state-aligned activity, specifically on affected geographies and countries, and overlaps with previous victims of the FoxBlade malware (also known as HermeticWiper)," the Microsoft from The Hacker News https://ift.tt/8je4Etm via IFTTT

Zimbra has released patches to contain an actively exploited security flaw in its enterprise collaboration suite that could be leveraged to upload arbitrary files to vulnerable instances. Tracked as CVE-2022-41352 (CVSS score: 9.8), the issue affects a component of the Zimbra suite called Amavis, an open source content filter, and more specifically, the cpio utility it uses to scan and extract from The Hacker News https://ift.tt/wOVtK9U via IFTTT

Alaska snow crab season canceled after disappearance of an estimated 1B crabs 528 by ijidak | 391 comments on Hacker News.

GitHub Copilot, with “public code” blocked, emits my copyrighted code 540 by davidgerard | 429 comments on Hacker News.

The International Criminal Police Organization, also called the Interpol, has announced the arrests of 75 individuals as part of a coordinated global operation against an organized cybercrime syndicate called Black Axe. "'Black Axe' and other West African organized crime groups have developed transnational networks, defrauding victims of millions while channeling their profits into lavish from The Hacker News https://ift.tt/d0kAuYM via IFTTT

Show HN: America – Road Trip Simulator 538 by 0x389 | 156 comments on Hacker News. APIs are a little like the open road—always waiting, full of opportunity, but hardly utilized. So here’s America, composed of several APIs that paint a vivid, real-time picture of a good old-fashioned road trip. Get local classifieds and photos. Tune into local radio stations. Talk wit other drivers. And more. Exploring the country by car was an invaluable experience for me during my time in the states. I’ve since moved to Barcelona, and find myself missing the territory. This is my attempt at recreating the magic.

Tata Power Company Limited, India's largest integrated power company, on Friday confirmed it was targeted by a cyberattack. The intrusion on IT infrastructure impacted "some of its IT systems," the company said in a filing with the National Stock Exchange (NSE) of India. It further said it has taken steps to retrieve and restore the affected machines, adding it put in place from The Hacker News https://ift.tt/EoF3en8 via IFTTT

Low Earth Orbit Visualization 530 by aseidl | 146 comments on Hacker News.

Details have emerged about a now-patched security flaw in Windows Common Log File System (CLFS) that could be exploited by an attacker to gain elevated permissions on compromised machines. Tracked as CVE-2022-37969 (CVSS score: 7.8), the issue was addressed by Microsoft as part of its Patch Tuesday updates for September 2022, while also noting that it was being actively exploited in the wild. " from The Hacker News https://ift.tt/L67xnzX via IFTTT

With each passing year, the cybersecurity threat landscape continues to worsen. That reality makes cybersecurity analysts some of the most sought-after technology professionals in the world. And there are nowhere near enough of them to meet the demand. At last count, there were over 3.5 million unfilled cybersecurity jobs worldwide — and that number is still growing. The situation means that from The Hacker News https://ift.tt/PJ8Vous via IFTTT

TikTok profits from livestreams of families begging 488 by DocFeind | 283 comments on Hacker News.

Using a framework will harm the maintenance of your software 452 by excerionsforte | 496 comments on Hacker News.

MAR1D: First-Person Mario 518 by rendaw | 153 comments on Hacker News.

How Brian Eno Created Ambient 1: Music for Airports 503 by jim-jim-jim | 125 comments on Hacker News.

PostgreSQL 15 544 by jkatz05 | 107 comments on Hacker News.

Show HN: Obsidian 1.0 – Personal knowledge base app 569 by ericax | 294 comments on Hacker News. Cofounder of Obsidian here. We're excited to announce Obsidian 1.0 is live! Obsidian 1.0 introduces two big changes: a UI overhaul and an new tabbed interface. We've put a lot of care into making the app more approachable and more accessible. We've also prioritized using more native OS features for menus, windows, and many details. We got our first private beta users from a comment under a HN thread about org-roam [1], and our waiting list was an innocent Google Form. Good times! Our initial launch on HN was over two years ago [2], when terms like "second brain" and "tools for thought" were still in their infancy. Since then, the landscape has continued to evolve and new ideas are sprouting in the space every day. Obsidian has always embraced its "hacker" nature and thrives off its community of tinkerers. We now have over 670 plugins that push th...

What is the OWASP Top 10, and – just as important – what is it not? In this review, we look at how you can make this critical risk report work for you and your organisation. What is OWASP? OWASP is the Open Web Application Security Project, an international non-profit organization dedicated to improving web application security.  It operates on the core principle that all of its materials are from The Hacker News https://ift.tt/DKqsTHc via IFTTT

An advanced persistent threat (APT) actor known as Budworm targeted a U.S.-based entity for the first time in more than six years, according to latest research. The attack was aimed at an unnamed U.S. state legislature, the Symantec Threat Hunter team, part of Broadcom Software, said in a report shared with The Hacker News. Other intrusions mounted over the past six months were directed against from The Hacker News https://ift.tt/XgDusUh via IFTTT

An unofficial version of the popular WhatsApp messaging app called YoWhatsApp has been observed deploying an Android trojan known as Triada. The goal of the malware is to steal the keys that "allow the use of a WhatsApp account without the app," Kaspersky said in a new report. "If the keys are stolen, a user of a malicious WhatsApp mod can lose control over their account." from The Hacker News https://ift.tt/QZL56Ep via IFTTT

A threat actor tracked as Polonium has been linked to over a dozen highly targeted attacks aimed at Israelian entities with seven different custom backdoors since at least September 2021. The intrusions were aimed at organizations in various verticals, such as engineering, information technology, law, communications, branding and marketing, media, insurance, and social services, cybersecurity from The Hacker News https://ift.tt/wLTAHbN via IFTTT

Removing SMS support from Signal Android (soon) 490 by Aissen | 515 comments on Hacker News.

A vulnerability in Siemens Simatic programmable logic controller (PLC) can be exploited to retrieve the hard-coded, global private cryptographic keys and seize control of the devices. "An attacker can use these keys to perform multiple advanced attacks against Siemens SIMATIC devices and the related TIA Portal, while bypassing all four of its access level protections," industrial cybersecurity from The Hacker News https://ift.tt/gKNW1R3 via IFTTT

Meta Quest Pro 447 by mfiguiere | 730 comments on Hacker News.

I wish my web server were in the corner of my room 439 by flobosg | 330 comments on Hacker News.

Joe Rogan Interviews Steve Jobs 418 by charlieirish | 244 comments on Hacker News.

Go: Redefining For Loop Variable Semantics 419 by denysvitali | 217 comments on Hacker News.

Leap: Neovim’s Answer to the Mouse 597 by bpierre | 251 comments on Hacker News.

The operators behind the BazaCall call back phishing method have continued to evolve with updated social engineering tactics to deploy malware on targeted networks. The scheme eventually acts as an entry point to conduct financial fraud or the delivery of next-stage payloads such as ransomware, cybersecurity company Trellix said in a report published last week. Primary targets of the latest from The Hacker News https://ift.tt/5dS6kEF via IFTTT

Cyber criminals are using a previously undocumented phishing-as-a-service (PhaaS) toolkit called Caffeine to effectively scale up their attacks and distribute nefarious payloads. "This platform has an intuitive interface and comes at a relatively low cost while providing a multitude of features and tools to its criminal clients to orchestrate and automate core elements of their phishing from The Hacker News https://ift.tt/56K1aGy via IFTTT

Fortinet on Monday revealed that the newly patched critical security vulnerability impacting its firewall and proxy products is being actively exploited in the wild. Tracked as CVE-2022-40684 (CVSS score: 9.6), the flaw relates to an authentication bypass in FortiOS, FortiProxy, and FortiSwitchManager that could allow a remote attacker to perform unauthorized operations on the administrative from The Hacker News https://ift.tt/YMwLdb3 via IFTTT

A new piece of research has detailed the increasingly sophisticated nature of the malware toolset employed by an advanced persistent threat (APT) group named Earth Aughisky. "Over the last decade, the group has continued to make adjustments in the tools and malware deployments on specific targets located in Taiwan and, more recently, Japan," Trend Micro disclosed in a technical profile last week from The Hacker News https://ift.tt/RSstQ95 via IFTTT

Threat actors associated with the notorious Emotet malware are continually shifting their tactics and command-and-control (C2) infrastructure to escape detection, according to new research from VMware. Emotet is the work of a threat actor tracked as Mummy Spider (aka TA542), emerging in June 2014 as a banking trojan before morphing into an all-purpose loader in 2016 that's capable of delivering from The Hacker News https://ift.tt/F0mGvpu via IFTTT

BNB Chain, a blockchain linked to the Binance cryptocurrency exchange, disclosed an exploit on a cross-chain bridge that drained around $100 million in digital assets. "There was an exploit affecting the native cross-chain bridge between BNB Beacon Chain (BEP2) and BNB Smart Chain (BEP20 or BSC), known as 'BSC Token Hub,'" it said last week. "The exploit was through a sophisticated forging of from The Hacker News https://ift.tt/29Dfv7r via IFTTT

A severe remote code execution vulnerability in Zimbra's enterprise collaboration software and email platform is being actively exploited, with no patch currently available to remediate the issue. The shortcoming, assigned CVE-2022-41352, carries a critical-severity rating of CVSS 9.8, providing a pathway for attackers to upload arbitrary files and carry out malicious actions on affected from The Hacker News https://ift.tt/WvxtIME via IFTTT

Microsoft on Friday disclosed it has made more improvements to the mitigation method offered as a means to prevent exploitation attempts against the newly disclosed unpatched security flaws in Exchange Server. To that end, the tech giant has revised the blocking rule in IIS Manager from ".*autodiscover\.json.*Powershell.*" to "(?=.*autodiscover\.json)(?=.*powershell)." The list of from The Hacker News https://ift.tt/aMteRsu via IFTTT

Gmail 2FA causes the homeless to permanently lose access 3 times a year 787 by horseAMcharlie | 656 comments on Hacker News.

Fortinet has privately warned its customers of a security flaw affecting FortiGate firewalls and FortiProxy web proxies that could potentially allow an attacker to perform unauthorized actions on susceptible devices. Tracked as CVE-2022-40684, the high-severity flaw relates to an authentication bypass vulnerability that could permit an unauthenticated adversary to perform arbitrary operations on from The Hacker News https://ift.tt/TQAhxoN via IFTTT

Meta Platforms on Friday disclosed that it had identified over 400 malicious apps on Android and iOS that it said targeted online users with the goal of stealing their Facebook login information. "These apps were listed on the Google Play Store and Apple's App Store and disguised as photo editors, games, VPN services, business apps, and other utilities to trick people into downloading them," the from The Hacker News https://ift.tt/nrUIgVx via IFTTT

Understanding the connection between GRC and cybersecurity When talking about cybersecurity, Governance, Risk, and Compliance (GRC) is often considered the least exciting part of business protection. However, its importance can't be ignored, and this is why.  While cybersecurity focuses on the technical side of protecting systems, networks, devices, and data, GRC is the tool that will help the from The Hacker News https://ift.tt/YUs02Hh via IFTTT

Multiple campaigns that distributed trojanized and typosquatted packages on the NPM open source repository have been identified as the work of a single threat actor dubbed LofyGang. Checkmarx said it discovered 199 rogue packages totaling thousands of installations, with the group operating for over a year with the goal of stealing credit card data as well as user accounts associated with from The Hacker News https://ift.tt/zeiKdnl via IFTTT

In what's a new phishing technique, it has been demonstrated that the Application Mode feature in Chromium-based web browsers can be abused to create "realistic desktop phishing applications." Application Mode is designed to offer native-like experiences in a manner that causes the website to be launched in a separate browser window, while also displaying the website's favicon and hiding the from The Hacker News https://ift.tt/TtGY8iL via IFTTT

In yet another case of bring your own vulnerable driver (BYOVD) attack, the operators of the BlackByte ransomware are leveraging a flaw in a legitimate Windows driver to bypass security solutions. "The evasion technique supports disabling a whopping list of over 1,000 drivers on which security products rely to provide protection," Sophos threat researcher Andreas Klopsch said in a new technical from The Hacker News https://ift.tt/52EA4kV via IFTTT

The threat actor behind the malware-as-a-service (MaaS) called Eternity has been linked to new piece of malware called LilithBot. "It has advanced capabilities to be used as a miner, stealer, and a clipper along with its persistence mechanisms," Zscaler ThreatLabz researchers Shatak Jain and Aditya Sharma said in a Wednesday report. "The group has been continuously enhancing the malware, adding from The Hacker News https://ift.tt/tV0a3X5 via IFTTT

Security researchers have shared details about a now-addressed security flaw in Apple's macOS operating system that could be potentially exploited to run malicious applications in a manner that can bypass Apple's security measures. The vulnerability, tracked as CVE-2022-32910, is rooted in the built-in Archive Utility and "could lead to the execution of an unsigned and unnotarized application from The Hacker News https://ift.tt/WJTMXL0 via IFTTT

It's been a year since the release of The Ultimate SaaS Security Posture Management (SSPM) Checklist. If SSPM is on your radar, here's the 2023 checklist edition, which covers the critical features and capabilities when evaluating a solution. The ease with which SaaS apps can be deployed and adopted today is remarkable, but it has become a double-edged sword. On the one hand, apps are quickly from The Hacker News https://ift.tt/jcRI3TJ via IFTTT

Imagen Video: high definition video generation with diffusion models 757 by jasondavies | 456 comments on Hacker News.

A U.S. federal court jury has found former Uber Chief Security Officer Joseph Sullivan guilty of not disclosing a 2016 breach of customer and driver records to regulators and attempting to cover up the incident. Sullivan has been convicted on two counts: One for obstructing justice by not reporting the incident and another for misprision. He faces a maximum of five years in prison for the from The Hacker News https://ift.tt/PqaEgRb via IFTTT

Australia's largest telecommunications company Telstra disclosed that it was the victim of a data breach through a third-party, nearly two weeks after Optus reported a breach of its own. "There has been no breach of Telstra's systems," Narelle Devine, the company's chief information security officer for the Asia Pacific region, said. "And no customer account data was involved." It from The Hacker News https://ift.tt/VS8ktDv via IFTTT

Professional developers want to do the right thing, but in terms of security, they are rarely set up for success. Organizations must support their upskilling with precision training and incentives if they want secure software from the ground up. The cyber threat landscape grows more complex by the day, with our data widely considered highly desirable “digital gold”. Attackers are constantly from The Hacker News https://ift.tt/ym8kqpj via IFTTT