The hacker new
-
![]()
Hackers Abused Microsoft's "Verified Publisher" OAuth Apps to Breach Corporate Email AccountsMicrosoft on Tuesday said it took steps to disable fake Microsoft Partner Network (MPN) accounts that were used for creating malicious OAuth...
-
![]()
Additional Supply Chain Vulnerabilities Uncovered in AMI MegaRAC BMC SoftwareTwo more supply chain security flaws have been disclosed in AMI MegaRAC Baseboard Management Controller (BMC) software, nearly two months after...
-
![]()
You Don't Know Where Your Secrets AreDo you know where your secrets are? If not, I can tell you: you are not alone. Hundreds of CISOs, CSOs, and security leaders, whether from small or...
-
![]()
QNAP Fixes Critical Vulnerability in NAS Devices with Latest Security UpdatesTaiwanese company QNAP has released updates to remediate a critical security flaw affecting its network-attached storage (NAS) devices that could...
-
![]()
GitHub Breach: Hackers Stole Code-Signing Certificates for GitHub Desktop and AtomGitHub on Monday disclosed that unknown threat actors managed to exfiltrate encrypted code signing certificates pertaining to some versions of...
-
![]()
Titan Stealer: A New Golang-Based Information Stealer Malware EmergesA new Golang-based information stealer malware dubbed Titan Stealer is being advertised by threat actors through their Telegram channel. "The...
-
![]()
Gootkit Malware Continues to Evolve with New Components and ObfuscationsThe threat actors associated with the Gootkit malware have made "notable changes" to their toolset, adding new components and obfuscations to their...
-
![]()
Microsoft Urges Customers to Secure On-Premises Exchange ServersMicrosoft is urging customers to keep their Exchange servers updated as well as take steps to bolster the environment, such as enabling Windows...
-
![]()
ISC Releases Security Patches for New BIND DNS Software VulnerabilitiesThe Internet Systems Consortium (ISC) has released patches to address multiple security vulnerabilities in the Berkeley Internet Name Domain (BIND)...
-
![]()
Hive Ransomware Infrastructure Seized in Joint International Law Enforcement EffortIn what's a case of hacking the hackers, the darknet infrastructure associated with the Hive ransomware-as-a-service (RaaS) operation has been...
-
![]()
Google Takes Down 50,000 Instances of Pro-Chinese DRAGONBRIDGE Influence OperationGoogle on Thursday disclosed it took steps to dismantle over 50,000 instances of activity orchestrated by a pro-Chinese influence operation known...
-
![]()
Researchers Release PoC Exploit for Windows CryptoAPI Bug Discovered by NSAProof-of-concept (Poc) code has been released for a now-patched high-severity security flaw in the Windows CryptoAPI that the U.S. National...
Top News
-
![]()
Additional Supply Chain Vulnerabilities Uncovered in AMI MegaRAC BMC SoftwareTwo more supply chain security flaws have been disclosed in AMI MegaRAC Baseboard Management Controller (BMC) software, nearly two months after...
-
![]()
You Don't Know Where Your Secrets AreDo you know where your secrets are? If not, I can tell you: you are not alone. Hundreds of CISOs, CSOs, and security leaders, whether from small or...
-
![]()
Hackers Abused Microsoft's "Verified Publisher" OAuth Apps to Breach Corporate Email AccountsMicrosoft on Tuesday said it took steps to disable fake Microsoft Partner Network (MPN) accounts that were used for creating malicious OAuth...
-
![]()
Facebook & Instagram Flaw Let Anyone Bypass Two-factor AuthenticationThe lack of rate-limiting in Instagram was discovered by Gtm Mänôz, a security researcher from Kathmandu, Nepal. This flaw could have allowed an...