The Hacker News

Microsoft Exposes Russian Hackers’ Sneaky Phishing Tactics via Microsoft Teams Chats

August 3, 2023 add comment
Microsoft on Wednesday disclosed that it identified a set of highly targeted social engineering attacks mounted by a Russian nation-state threat actor using credential theft phishing lures sent as... Read more »

Researchers Discover Bypass for Recently Patched Critical Ivanti EPMM Vulnerability

August 3, 2023 add comment
Cybersecurity researchers have discovered a bypass for a recently fixed actively exploited vulnerability in some versions of Ivanti Endpoint Manager Mobile (EPMM), prompting Ivanti to urge users to update... Read more »

Russian Cyber Adversary BlueCharlie Alters Infrastructure in Response to Disclosures

August 2, 2023 add comment
A Russa-nexus adversary has been linked to 94 new domains, suggesting that the group is actively modifying its infrastructure in response to public disclosures about its activities. Cybersecurity firm... Read more »

Phishers Exploit Salesforce’s Email Services Zero-Day in Targeted Facebook Campaign

August 2, 2023 add comment
A sophisticated Facebook phishing campaign has been observed exploiting a zero-day flaw in Salesforce’s email services, allowing threat actors to craft targeted phishing messages using the company’s domain and... Read more »

Industrial Control Systems Vulnerabilities Soar: Over One-Third Unpatched in 2023

August 2, 2023 add comment
About 34% of security vulnerabilities impacting industrial control systems (ICSs) that were reported in the first half of 2023 have no patch or remediation, registering a significant increase from... Read more »

Researchers Uncover AWS SSM Agent Misuse as a Covert Remote Access Trojan

August 2, 2023 add comment
Cybersecurity researchers have discovered a new post-exploitation technique in Amazon Web Services (AWS) that allows the AWS Systems Manager Agent (SSM Agent) to be run as a remote access... Read more »

Top Industries Significantly Impacted by Illicit Telegram Networks

August 2, 2023 add comment
In recent years the rise of illicit activities conducted within online messaging platforms has become a growing concern for countless industries. One of the most notable platforms that has... Read more »

Iranian Company Cloudzy Accused of Aiding Cybercriminals and Nation-State Hackers

August 2, 2023 add comment
Services offered by an obscure Iranian company known as Cloudzy are being leveraged by multiple threat actors, including cybercrime groups and nation-state crews. “Although Cloudzy is incorporated in the... Read more »

Norwegian Entities Targeted in Ongoing Attacks Exploiting Ivanti EPMM Vulnerability

August 2, 2023 add comment
Advanced persistent threat (APT) actors exploited a recently disclosed critical flaw impacting Ivanti Endpoint Manager Mobile (EPMM) as a zero-day since at least April 2023 in attacks directed against... Read more »

New NodeStealer Targeting Facebook Business Accounts and Crypto Wallets

August 1, 2023 add comment
Cybersecurity researchers have unearthed a Python variant of a stealer malware NodeStealer that’s equipped to fully take over Facebook business accounts as well as siphon cryptocurrency. Palo Alto Network Unit 42... Read more »
Subscribe to our Newsletter