The Hacker News

Local Governments Targeted for Ransomware – How to Prevent Falling Victim

July 21, 2023 add comment
Regardless of the country, local government is essential in most citizens’ lives. It provides many day-to-day services and handles various issues. Therefore, their effects can be far-reaching and deeply... Read more »

Sophisticated BundleBot Malware Disguised as Google AI Chatbot and Utilities

July 21, 2023 add comment
A new malware strain known as BundleBot has been stealthily operating under the radar by taking advantage of .NET single-file deployment techniques, enabling threat actors to capture sensitive information from... Read more »

DDoS Botnets Hijacking Zyxel Devices to Launch Devastating Attacks

July 21, 2023 add comment
Several distributed denial-of-service (DDoS) botnets have been observed exploiting a critical flaw in Zyxel devices that came to light in April 2023 to gain remote control of vulnerable systems.... Read more »

Citrix NetScaler ADC and Gateway Devices Under Attack: CISA Urges Immediate Action

July 21, 2023 add comment
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) issued an advisory on Thursday warning that the newly disclosed critical security flaw in Citrix NetScaler Application Delivery Controller (ADC) and... Read more »

A Few More Reasons Why RDP is Insecure (Surprise!)

July 20, 2023 add comment
If it seems like Remote Desktop Protocol (RDP) has been around forever, it’s because it has (at least compared to the many technologies that rise and fall within just... Read more »

North Korean State-Sponsored Hackers Suspected in JumpCloud Supply Chain Attack

July 20, 2023 add comment
An analysis of the indicators of compromise (IoCs) associated with the JumpCloud hack has uncovered evidence pointing to the involvement of North Korean state-sponsored groups, in a style that’s... Read more »

Apache OpenMeetings Web Conferencing Tool Exposed to Critical Vulnerabilities

July 20, 2023 add comment
Multiple security flaws have been disclosed in Apache OpenMeetings, a web conferencing solution, that could be potentially exploited by malicious actors to seize control of admin accounts and run... Read more »

Critical Flaws in AMI MegaRAC BMC Software Expose Servers to Remote Attacks

July 20, 2023 add comment
Two more security flaws have been disclosed in AMI MegaRAC Baseboard Management Controller (BMC) software that, if successfully exploited, could allow threat actors to remotely commandeer vulnerable servers and... Read more »

Mallox Ransomware Exploits Weak MS-SQL Servers to Breach Networks

July 20, 2023 add comment
Mallox ransomware activities in 2023 have witnessed a 174% increase when compared to the previous year, new findings from Palo Alto Networks Unit 42 reveal. “Mallox ransomware, like many... Read more »

Turla’s New DeliveryCheck Backdoor Breaches Ukrainian Defense Sector

July 20, 2023 add comment
The defense sector in Ukraine and Eastern Europe has been targeted by a novel .NET-based backdoor called DeliveryCheck (aka CAPIBAR or GAMEDAY) that’s capable of delivering next-stage payloads. The Microsoft threat... Read more »
Subscribe to our Newsletter