The Hacker News

Gmail and Google Calendar Now Support Client-Side Encryption (CSE) to Boost Data Privacy

March 1, 2023 add comment
Google has announced the general availability of client-side encryption (CSE) for Gmail and Calendar, months after piloting the feature in late 2022. The data privacy controls enable “even more organizations to... Read more »

Parallax RAT Targeting Cryptocurrency Firms with Sophisticated Injection Techniques

March 1, 2023 add comment
Cryptocurrency companies are being targeted as part of a new campaign that delivers a remote access trojan called Parallax RAT. The malware “uses injection techniques to hide within legitimate... Read more »

New EX-22 Tool Empowers Hackers with Stealthy Ransomware Attacks on Enterprises

February 28, 2023 add comment
A new post-exploitation framework called EXFILTRATOR-22 (aka EX-22) has emerged in the wild with the goal of deploying ransomware within enterprise networks while flying under the radar. “It comes... Read more »

Bitdefender Releases Free Decryptor for MortalKombat Ransomware Strain

February 28, 2023 add comment
Romanian cybersecurity company Bitdefender has released a free decryptor for a new ransomware strain known as MortalKombat. MortalKombat is a new ransomware strain that emerged in January 2023. It’s based on commodity... Read more »

Application Security vs. API Security: What is the difference?

February 28, 2023 add comment
As digital transformation takes hold and businesses become increasingly reliant on digital services, it has become more important than ever to secure applications and APIs (Application Programming Interfaces). With... Read more »

APT-C-36 Strikes Again: Blind Eagle Hackers Target Key Industries in Colombia

February 28, 2023 add comment
The threat actor known as Blind Eagle has been linked to a new campaign targeting various key industries in Colombia. The activity, which was detected by the BlackBerry Research... Read more »

LastPass Reveals Second Attack Resulting in Breach of Encrypted Password Vaults

February 28, 2023 add comment
LastPass, which in December 2022 disclosed a severe data breach that allowed threat actors to access encrypted password vaults, said it happened as a result of the same adversary... Read more »

CISA Issues Warning on Active Exploitation of ZK Java Web Framework Vulnerability

February 28, 2023 add comment
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a high-severity flaw affecting the ZK Framework to its Known Exploited Vulnerabilities (KEV) catalog based on evidence of active exploitation. Tracked... Read more »

Researchers Share New Insights Into RIG Exploit Kit Malware’s Operations

February 27, 2023 add comment
The RIG exploit kit (EK) touched an all-time high successful exploitation rate of nearly 30% in 2022, new findings reveal. “RIG EK is a financially-motivated program that has been... Read more »

Shocking Findings from the 2023 Third-Party App Access Report

February 27, 2023 add comment
Spoiler Alert: Organizations with 10,000 SaaS users that use M365 and Google Workspace average over 4,371 additional connected apps. SaaS-to-SaaS (third-party) app installations are growing nonstop at organizations around the world.... Read more »
Subscribe to our Newsletter