The Hacker News

CISA Alert: Oracle E-Business Suite and SugarCRM Vulnerabilities Under Attack

February 3, 2023 add comment
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on February 2 added two security flaws to its Known Exploited Vulnerabilities (KEV) Catalog, citing evidence of active exploitation. The first of the... Read more »

New Russian-Backed Gamaredon’s Spyware Variants Targeting Ukrainian Authorities

February 2, 2023 add comment
The State Cyber Protection Centre (SCPC) of Ukraine has called out the Russian state-sponsored threat actor known as Gamaredon for its targeted cyber attacks on public authorities and critical information infrastructure... Read more »

North Korean Hackers Exploit Unpatched Zimbra Devices in ‘No Pineapple’ Campaign

February 2, 2023 add comment
A new intelligence gathering campaign linked to the prolific North Korean state-sponsored Lazarus Group leveraged known security flaws in unpatched Zimbra devices to compromise victim systems. That’s according to... Read more »

Cybersecurity budgets are going up. So why aren’t breaches going down?

February 2, 2023 add comment
Over the past few years, cybersecurity has become a major concern for businesses around the globe. With the total cost of cybercrime in 2023 forecasted to reach $8 Trillion... Read more »

New Threat: Stealthy HeadCrab Malware Compromised Over 1,200 Redis Servers

February 2, 2023 add comment
At least 1,200 Redis database servers worldwide have been corralled into a botnet using an “elusive and severe threat” dubbed HeadCrab since early September 2021. “This advanced threat actor... Read more »

Researchers Uncover New Bugs in Popular ImageMagick Image Processing Utility

February 1, 2023 add comment
Cybersecurity researchers have disclosed details of two security flaws in the open source ImageMagick software that could potentially lead to a denial-of-service (DoS) and information disclosure. The two issues, which were... Read more »

Experts Warn of ‘Ice Breaker’ Cyberattacks Targeting Gaming and Gambling Industry

February 1, 2023 add comment
A new attack campaign has targeted the gaming and gambling sectors since at least September 2022, just months prior to the ICE London 2023 gaming industry trade fair event that’s scheduled... Read more »

New SH1MMER Exploit for Chromebook Unenrolls Managed ChromeOS Devices

February 1, 2023 add comment
A new exploit has been devised to “unenroll” enterprise- or school-managed Chromebooks from administrative control. Enrolling ChromeOS devices makes it possible to enforce device policies as set by the... Read more »

Prilex PoS Malware Evolves to Block Contactless Payments to Steal from NFC Cards

February 1, 2023 add comment
The Brazilian threat actors behind an advanced and modular point-of-sale (PoS) malware known as Prilex have reared their head once again with new updates that allow it to block contactless payment... Read more »

Auditing Kubernetes with Open Source SIEM and XDR

February 1, 2023 add comment
Container technology has gained traction among businesses due to the increased efficiency it provides. In this regard, organizations widely use Kubernetes for deploying, scaling, and managing containerized applications. Organizations... Read more »
Subscribe to our Newsletter