The Hacker News7h
Critical Flaw in ProjectSend Under Active Exploitation Against Public-Facing Servers
A critical security flaw impacting the ProjectSend open-source file-sharing application has likely come under active ...
The Hacker News18h
Matrix Botnet Exploits IoT Devices in Widespread DDoS Botnet Campaign
A threat actor named Matrix has been linked to a widespread distributed denial-of-service (DoD) campaign that leverages ...
The Hacker News15h
INTERPOL Busts African Cybercrime: 1,006 Arrests, 134,089 Malicious Networks Dismantled
An INTERPOL-led operation has led to the arrest of 1,006 suspects across 19 African countries and the takedown of 134,089 ...
The Hacker News11h
Researchers Discover "Bootkitty" – First UEFI Bootkit Targeting Linux Kernels
Dubbed Bootkitty by its creators who go by the name BlackCat, the bootkit is assessed to be a proof-of-concept (PoC) and ...
The Hacker News1d
Critical WordPress Anti-Spam Plugin Flaws Expose 200,000+ Sites to Remote Attacks
Installed on over 200,000 WordPress sites, CleanTalk's Spam protection, Anti-Spam, FireWall plugin is advertised as a ...
The Hacker News2d
PyPI Python Library "aiocpa" Found Exfiltrating Crypto Keys via Telegram Bot
Signs of malicious activity were first spotted in version 0.1.13 of the library, which included a change to the Python script ...
The Hacker News1d
CISA Urges Agencies to Patch Critical "Array Networks" Flaw Amid Active Attacks
CISA flags Array Networks flaw CVE-2023-28461 for active exploitation; agencies urged to patch by December 16.
The Hacker News2d
THN Recap: Top Cybersecurity Threats, Tools, and Practices (Nov 18 - Nov 24)
From state-sponsored hacks targeting telecom giants to critical vulnerabilities putting thousands at risk, this week’s news ...
The Hacker News1d
RomCom Exploits Zero-Day Firefox and Windows Flaws in Sophisticated Cyberattacks
RomCom exploits Firefox and Windows zero-day flaws to deliver malware via fake websites in Europe and North America.
The Hacker News2d
Google's New Restore Credentials Tool Simplifies App Login After Android Migration
Google has introduced a new feature called Restore Credentials to help users restore their account access to third-party apps ...
The Hacker News1d
Chinese Hackers Use GHOSTSPIDER Malware to Hack Telecoms Across 12+ Countries
China-linked Earth Estries uses GHOSTSPIDER malware to hack telecoms and governments globally, breaching 20+ entities.
The Hacker News2d
Cybersecurity Blind Spots in IaC and PaC Tools Expose Cloud Platforms to New Attacks
Cybersecurity researchers have disclosed two new attack techniques against infrastructure-as-code (IaC) and policy-as-code ...