TheHackerNews

Category Added in a WPeMatico Campaign

Researchers Find Potential Way to Run Malware on iPhone Even When it’s OFF

May 17, 2022 A first-of-its-kind security analysis of iOS Find My function has identified a novel attack surface that makes it possible to tamper with the firmware and load malware onto a Bluetooth chip that’s executed while an iPhone is “off.” The mechanism takes advantage of the fact that wireless chips related to Bluetooth, Near-field …

Researchers Find Potential Way to Run Malware on iPhone Even When it’s OFF Read More »

Researchers Warn of “Eternity Project” Malware Service Being Sold via Telegram

May 17, 2022 An unidentified threat actor has been linked to an actively in-development malware toolkit called the “Eternity Project” that lets professional and amateur cybercriminals buy stealers, clippers, worms, miners, ransomware, and a distributed denial-of-service (DDoS) bot. What makes this malware-as-a-service (MaaS) stand out is that besides using a Telegram channel to communicate updates …

Researchers Warn of “Eternity Project” Malware Service Being Sold via Telegram Read More »

Europe Agrees to Adopt New NIS2 Directive Aimed at Hardening Cybersecurity

May 17, 2022 The European Parliament announced a “provisional agreement” aimed at improving cybersecurity and resilience of both public and private sector entities in the European Union. The revised directive, called “NIS2” (short for network and information systems), is expected to replace the existing legislation on cybersecurity that was established in July 2016. The revamp sets ground …

Europe Agrees to Adopt New NIS2 Directive Aimed at Hardening Cybersecurity Read More »

Ukrainian Hacker Jailed for 4-Years in U.S. for Selling Access to Hacked Servers

May 17, 2022 A 28-year-old Ukrainian national has been sentenced to four years in prison for siphoning thousands of server login credentials and selling them on the dark web for monetary gain as part of a credential theft scheme. Glib Oleksandr Ivanov-Tolpintsev, who pleaded guilty to his offenses earlier this February, was arrested in Poland …

Ukrainian Hacker Jailed for 4-Years in U.S. for Selling Access to Hacked Servers Read More »

SonicWall Releases Patches for New Flaws Affecting SSLVPN SMA1000 Devices

May 15, 2022 SonicWall has published an advisory warning of a trio of security flaws in its Secure Mobile Access (SMA) 1000 appliances, including a high-severity authentication bypass vulnerability. The weaknesses in question impact SMA 6200, 6210, 7200, 7210, 8000v running firmware versions 12.4.0 and 12.4.1. The list of vulnerabilities is below – CVE-2022-22282 (CVSS score: 8.2) – …

SonicWall Releases Patches for New Flaws Affecting SSLVPN SMA1000 Devices Read More »

Get Lifetime Access to 2022 Cybersecurity Certification Prep Courses @ 95% Off

May 15, 2022 Ever thought about working full-time in cybersecurity? With millions of unfilled jobs around, now is a great time to get into the industry. Of course, there are many different roles in this field. But all of them require the same handful of professional certifications. The 2022 Ultimate Advanced CyberSecurity Professional Certification Bundle helps you …

Get Lifetime Access to 2022 Cybersecurity Certification Prep Courses @ 95% Off Read More »

Google Created ‘Open-Source Maintenance Crew’ to Help Secure Critical Projects

May 14, 2022 Google on Thursday announced the creation of a new “Open Source Maintenance Crew” to focus on bolstering the security of critical open source projects. Additionally, the tech giant pointed out Open Source Insights as a tool for analyzing packages and their dependency graphs, using it to determine “whether a vulnerability in a dependency might affect your …

Google Created ‘Open-Source Maintenance Crew’ to Help Secure Critical Projects Read More »

New Saitama backdoor Targeted Official from Jordan’s Foreign Ministry

May 14, 2022 A spear-phishing campaign targeting Jordan’s foreign ministry has been observed dropping a new stealthy backdoor dubbed Saitama. Researchers from Malwarebytes and Fortinet FortiGuard Labs attributed the campaign to an Iranian cyber espionage threat actor tracked under the moniker APT34, citing resemblances to past campaigns staged by the group. “Like many of these attacks, the email contained …

New Saitama backdoor Targeted Official from Jordan’s Foreign Ministry Read More »

Zyxel Releases Patch for Critical Firewall OS Command Injection Vulnerability

May 14, 2022 Zyxel has moved to address a critical security vulnerability affecting Zyxel firewall devices that enables unauthenticated and remote attackers to gain arbitrary code execution. “A command injection vulnerability in the CGI program of some firewall versions could allow an attacker to modify specific files and then execute some OS commands on a …

Zyxel Releases Patch for Critical Firewall OS Command Injection Vulnerability Read More »

Open Whatsapp chat
Whatsapp Us
Chat with us for faster replies.