hacker news

Kinsing Actors Exploiting Recent Linux Flaw to Breach Cloud Environments

Nov 3, 2023 by iHash Leave a Comment

Nov 03, 2023NewsroomCloud Security / Linux The threat actors linked to Kinsing have been observed attempting to exploit the recently disclosed Linux privilege escalation flaw called Looney Tunables as part of a "new experimental campaign" designed to breach cloud environments. "Intriguingly, the attacker is also broadening the horizons of their cloud-native attacks by … [Read more...] about Kinsing Actors Exploiting Recent Linux Flaw to Breach Cloud Environments

SaaS Security is Now Accessible and Affordable to All

Nov 2, 2023 by iHash Leave a Comment

Nov 02, 2023The Hacker NewsSaaS Security / Software This new product offers SaaS discovery and risk assessment coupled with a free user access review in a unique "freemium" model Securing employees' SaaS usage is becoming increasingly crucial for most cloud-based organizations. While numerous tools are available to address this need, they often employ different approaches and … [Read more...] about SaaS Security is Now Accessible and Affordable to All

LayerX’s Enterprise Browser Security Extension

Nov 1, 2023 by iHash Leave a Comment

The browser has become the main work interface in modern enterprises. It's where employees create and interact with data, and how they access organizational and external SaaS and web apps. As a result, the browser is extensively targeted by adversaries. They seek to steal the data it stores and use it for malicious access to organizational SaaS apps or the hosting machine. … [Read more...] about LayerX’s Enterprise Browser Security Extension

Malicious NuGet Packages Caught Distributing SeroXen RAT Malware

Oct 31, 2023 by iHash Leave a Comment

Oct 31, 2023NewsroomSoftware Security / Malware Cybersecurity researchers have uncovered a new set of malicious packages published to the NuGet package manager using a lesser-known method for malware deployment. Software supply chain security firm ReversingLabs described the campaign as coordinated and ongoing since August 1, 2023, while linking it to a host of rogue NuGet … [Read more...] about Malicious NuGet Packages Caught Distributing SeroXen RAT Malware

5 Must-Know Trends Impacting AppSec

Oct 30, 2023 by iHash Leave a Comment

Oct 30, 2023The Hacker NewsWebinar / Web App Security Modern web app development relies on cloud infrastructure and containerization. These technologies scale on demand, handling millions of daily file transfers – it's almost impossible to imagine a world without them. However, they also introduce multiple attack vectors that exploit file uploads when working with public … [Read more...] about 5 Must-Know Trends Impacting AppSec

Researchers Uncover Wiretapping of XMPP-Based Instant Messaging Service

Oct 28, 2023 by iHash Leave a Comment

Oct 28, 2023NewsroomPrivacy / Data Security New findings have shed light on what's said to be a lawful attempt to covertly intercept traffic originating from jabber[.]ru (aka xmpp[.]ru), an XMPP-based instant messaging service, via servers hosted on Hetzner and Linode (a subsidiary of Akamai) in Germany. "The attacker has issued several new TLS certificates using Let's … [Read more...] about Researchers Uncover Wiretapping of XMPP-Based Instant Messaging Service

N. Korean Lazarus Group Targets Software Vendor Using Known Flaws

Oct 27, 2023 by iHash Leave a Comment

Oct 27, 2023NewsroomCyber Attack / Malware The North Korea-aligned Lazarus Group has been attributed as behind a new campaign in which an unnamed software vendor was compromised through the exploitation of known security flaws in another high-profile software. The attack sequences, according to Kaspersky, culminated in the deployment of malware families such as SIGNBT and … [Read more...] about N. Korean Lazarus Group Targets Software Vendor Using Known Flaws

How to Keep Your Business Running in a Contested Environment

Oct 27, 2023 by iHash Leave a Comment

When organizations start incorporating cybersecurity regulations and cyber incident reporting requirements into their security protocols, it's essential for them to establish comprehensive plans for preparation, mitigation, and response to potential threats. At the heart of your business lies your operational technology and critical systems. This places them at the forefront of … [Read more...] about How to Keep Your Business Running in a Contested Environment

The Danger of Forgotten Pixels on Websites: A New Case Study

Oct 26, 2023 by iHash Leave a Comment

Oct 26, 2023The Hacker NewsWeb Security / Data Protection While cyberattacks on websites receive much attention, there are often unaddressed risks that can lead to businesses facing lawsuits and privacy violations even in the absence of hacking incidents. A new case study highlights one of these more common cases. Download the full case study here. It's a scenario that could … [Read more...] about The Danger of Forgotten Pixels on Websites: A New Case Study

Nation State Hackers Exploiting Zero-Day in Roundcube Webmail Software

Oct 25, 2023 by iHash Leave a Comment

Oct 25, 2023NewsroomThreat Intelligence / Vulnerability The threat actor known as Winter Vivern has been observed exploiting a zero-day flaw in Roundcube webmail software on October 11, 2023, to harvest email messages from victims' accounts. "Winter Vivern has stepped up its operations by using a zero-day vulnerability in Roundcube," ESET security researcher Matthieu Faou … [Read more...] about Nation State Hackers Exploiting Zero-Day in Roundcube Webmail Software

« Previous Page

JBL Flip 6 Portable Bluetooth Speaker (Open Box) for $74

Navee V25 300W Foldable e-Scooter for $299

Smart Tracker Includes Key Ring – Works with Apple Find My App (2-Pack) for $34

Harmony Premium Plan Lifetime Subscription for $99

Lenovo 11.6" 100e Chromebook 2nd Gen (2019) MediaTek MT8173C 4GB RAM 16GB eMMC (Refurbished) for $54