The Hacker News

Enforcement vs. Enrollment-based Security: How to Balance Security and Employee Trust

January 4, 2023 add comment
Challenges with an enforcement-based approach An enforcement-based approach to security begins with a security policy backed by security controls, often heavy-handed and designed to prevent employees from engaging in... Read more »

Hackers Using Stolen Bank Information to Trick Victims into Downloading BitRAT Malware

January 4, 2023 add comment
A new malware campaign has been observed using sensitive information stolen from a bank as a lure in phishing emails to drop a remote access trojan called BitRAT. The unknown... Read more »

Synology Releases Patch for Critical RCE Vulnerability Affecting VPN Plus Servers

January 4, 2023 add comment
Synology has released security updates to address a critical flaw impacting VPN Plus Server that could be exploited to take over affected systems. Tracked as CVE-2022-43931, the vulnerability carries a... Read more »

New shc-based Linux Malware Targeting Systems with Cryptocurrency Miner

January 4, 2023 add comment
A new Linux malware developed using the shell script compiler (shc) has been observed deploying a cryptocurrency miner on compromised systems. “It is presumed that after successful authentication through... Read more »

Qualcomm Chipsets and Lenovo BIOS Get Security Updates to Fix Multiple Flaws

January 4, 2023 add comment
Qualcomm on Tuesday released patches to address multiple security flaws in its chipsets, some of which could be exploited to cause information disclosure and memory corruption. The five vulnerabilities — tracked... Read more »

The FBI’s Perspective on Ransomware

January 4, 2023 add comment
Ransomware: contemporary threats, how to prevent them and how the FBI can help In April 2021, Dutch supermarkets faced a food shortage. The cause wasn’t a drought or a... Read more »

Hackers Exploiting Redis Vulnerability to Deploy New Redigo Malware on Servers

December 11, 2022 add comment
A previously undocumented Go-based malware is targeting Redis servers with the goal of taking control of the infected systems and likely building a botnet network. The attacks involve taking... Read more »

Elon Musk Confirms Twitter 2.0 will Bring End-to-End Encryption to Direct Messages

December 1, 2022 add comment
Twitter chief executive Elon Musk confirmed plans for end-to-end encryption (E2EE) for direct messages on the platform. The feature is part of Musk’s vision for Twitter 2.0, which is expected to... Read more »

U.S. Bans Chinese Telecom Equipment and Surveillance Cameras Over National Security Risk

November 30, 2022 add comment
The U.S. Federal Communications Commission (FCC) formally announced it will no longer authorize electronic equipment from Huawei, ZTE, Hytera, Hikvision, and Dahua, deeming them an “unacceptable” national security threat.... Read more »

Google to Pay $391 Million Privacy Fine for Secretly Tracking Users’ Location

November 15, 2022 add comment
Internet giant Google has agreed to pay a record $391.5 million to settle with 40 states in the U.S. over charges the company misled users about the collection of... Read more »
Subscribe to our Newsletter