The Hacker News2h
Google Ads Users Targeted in Malvertising Scam Stealing Credentials and 2FA Codes
Malvertising targets Google Ads users, redirecting to phishing sites that steal credentials, budgets, and 2FA codes.
The Hacker News2h
Lazarus Group Targets Web3 Developers with Fake LinkedIn Profiles in Operation 99
Lazarus Group's Operation 99 targets Web3 developers via fake LinkedIn profiles and GitLab repositories, stealing ...
The Hacker News4h
North Korean IT Worker Fraud Linked to 2016 Crowdfunding Scam and Fake Domains
North Korean hackers stole $1.34 billion in 2024, targeting cryptocurrency exchanges and blockchain firms globally.
The Hacker News5h
Google Cloud Researchers Uncover Flaws in Rsync File Synchronization Tool
Simon Scannell, Pedro Gallegos, and Jasiel Spelman from Google Cloud Vulnerability Research have been credited with ...
The Hacker News6h
3 Actively Exploited Zero-Day Flaws Patched in Microsoft's Latest Security Update
All the three Microsoft Access issues, on the other hand, have been credited to Unpatched.ai, an AI-guided vulnerability ...
The Hacker News6h
The High-Stakes Disconnect For ICS/OT Security
Only 31% of organizations have ICS/OT SOC capabilities. Protect critical infrastructure with tailored controls and SANS Five ...
The Hacker News11h
FBI Deletes PlugX Malware from 4,250 Hacked Computers in Multi-Month Operation
The U.S. Department of Justice (DoJ) on Tuesday disclosed that a court-authorized operation allowed the Federal Bureau of ...
The Hacker News11h
Critical SimpleHelp Flaws Allow File Theft, Privilege Escalation, and RCE Attacks
Patch critical SimpleHelp vulnerabilities, including CVE-2024-57727 and CVE-2024-57728, to prevent admin credential theft and ...
The Hacker News13h
Google OAuth Vulnerability Exposes Millions via Failed Startup Domains
The San Francisco-based company said the issue has the potential to put millions of American users' data at risk simply by ...
The Hacker News13h
Fortinet Warns of New Zero-Day Used in Attacks on Firewalls with Exposed Interfaces
Fortinet firewalls running firmware versions 7.0.14-7.0.16 targeted by attackers using zero-day vulnerabilities.
The Hacker News1d
Hackers Exploit Aviatrix Controller Vulnerability to Deploy Backdoors and Crypto Miners
CVE-2024-50603 in Aviatrix Controller enables remote code execution, cryptomining, and backdoor attacks. Patch now.
The Hacker News1d
4 Reasons Your SaaS Attack Surface Can No Longer be Ignored
Surprises are never pleasant in the IT security world. Gaining visibility into your SaaS attack surface makes it possible to ...