HackDig : Dig high-quality web security articles for hackers

Malwarebytes Cyber Monday Deal: Get 50% off Premium, Teams

Malwarebytes's Cyber Monday deal is live with 50% off Malwarebytes Premium and 25% off the Malwarebytes for Teams business product.These savings are significant, especially when you purchase multi-year multi-device licenses or bundle it with Malwarebytes Privacy, their new VPN software.Malwarebytes 4.2 was released last month with enhanced protecti
Publish At:2020-11-29 13:01 | Read:56 | Comments:0 | Tags:Software cyber

Security Affairs newsletter Round 291

A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs free for you in your email box. A cyberattack crippled the IT infrastructure of the City of Saint JohnHundreds of female sports stars and celebrities have their naked photos and videos leaked onlineRomanians arrested for running underg
Publish At:2020-11-29 12:42 | Read:74 | Comments:0 | Tags:Breaking News Cybercrime data breach Hacking hacking news in

A critical flaw in industrial automation systems opens to remote hack

Experts found a critical flaw in Real-Time Automation’s (RTA) 499ES EtherNet/IP stack that could allow hacking industrial control systems. Tracked as CVE-2020-25159, the flaw is rated 9.8 out of 10 in severity by the industry-standard Common Vulnerability Scoring System (CVSS) and impacts all versions of EtherNet/IP Adapter Source Code Sta
Publish At:2020-11-29 12:42 | Read:95 | Comments:0 | Tags:Breaking News Hacking ICS-SCADA hacking news industrial auto

Operators behind Dark Caracal are still alive and operational

The Dark Caracal APT group has carried out a series of attacks against multiple sectors using a new variant of a 13-year-old backdoor Trojan. The Dark Caracal cyberespionage group is back, researchers from Check Point uncovered a new series of attack against multiple industries. The Dark Caracal is an APT group associated with the Lebanese General Dire
Publish At:2020-11-29 08:48 | Read:75 | Comments:0 | Tags:APT Breaking News Hacking Malware backdoor Dark Caracal. APT

Sopra Steria estimates financial Impact of ransomware attack could reach €50 Million

IT services provider Sopra Steria estimates that a recent ransomware attack will have a financial impact ranging between €40M and €50M. At the end of October, French IT outsourcer Sopra Steria has been hit by a ransomware attack. While the company did not reveal the family of malware that infected its systems, local media speculate the involvement of the 
Publish At:2020-11-29 08:48 | Read:108 | Comments:0 | Tags:Breaking News Cyber Crime Malware Hacking hacking news infor

Ruckus IoT Controller 1.5.1.0.21 Remote Code Execution

# Product: Ruckus IoT Controller (Ruckus vRIoT)# Version: <= 1.5.1.0.21# Vendor: https://support.ruckuswireless.com/# Vulnerability: Command Injection & Broken Authentication# References: CVE-2020-26878# Discovered by: Juan Manuel Fernandez# Exploit Title: Ruckus IoT Controller (Ruckus vRIoT) 1.5.1.0.21 - Remote Code Execution# Exploit Author: Emre SU
Publish At:2020-11-29 07:51 | Read:107 | Comments:0 | Tags:No Tag

Customize your Windows 10 appearance with these tools

With Windows, you've got an almost limitless number of ways to customize the desktop experience. From simply changing the taskbar look using Windows Registry to installing a third-party tool, you've got plenty of ways to customize Windows 10.In this article, we going to share a list of apps that you can use to customize the desktop, Windows Search, and
Publish At:2020-11-28 21:25 | Read:98 | Comments:0 | Tags:Microsoft Software

Improve your Windows 10 PC with these Microsoft Store apps

The Windows Store isn't as populated as Google and Apple's app marketplace, but there are plenty of apps that can improve your Windows 10 experience.Microsoft Store features a decent selection of apps and there are apps which can offer advanced personalization settings such as transparent taskbar. If you're looking for some great apps for your Windows 1
Publish At:2020-11-28 21:25 | Read:164 | Comments:0 | Tags:Microsoft Software

Chip maker Advantech hit by Conti ransomware gang

The IIoT chip maker Advantech was hit by the Conti ransomware, the gang is now demanding over $13 million ransom from the company. The Conti ransomware gang hit infected the systems of industrial automation and Industrial IoT (IIoT) chip maker Advantech and is demanding over $13 million ransom (roughly 750 BTC) to avoid leaking stolen files and to provide
Publish At:2020-11-28 17:12 | Read:171 | Comments:0 | Tags:Breaking News Malware Security Conti ransomware Hacking hack

Apache NiFi API Remote Code Execution

### This module requires Metasploit: https://metasploit.com/download# Current source: https://github.com/rapid7/metasploit-framework### Potential Improvements:# Add option to authenticate using client certificate# Add a scanner module?class MetasploitModule < Msf::Exploit::Remote Rank = ExcellentRanking prepend Msf::Exploit::Remote::AutoCheck include M
Publish At:2020-11-28 16:15 | Read:122 | Comments:0 | Tags:No Tag

IIoT chip maker Advantech hit by ransomware, $12.5 million ransom

The Conti ransomware gang hit the systems of industrial automation and Industrial IoT (IIoT) chip maker Advantech and is now demanding a $14 million ransom to decrypt affected systems and to stop leaking stolen company data.Advantech is a global leading manufacturer of IT products and solutions, including embedded PCs, network devices, IoT, servers, and heal
Publish At:2020-11-28 13:37 | Read:141 | Comments:0 | Tags:Security ransomware

Microsoft is working on an Android subsystem for Windows 10

Microsoft is reportedly creating a subsystem, similar to the Windows Subsystem for Linux, that allows Android applications to run on Windows 10.With around a 70% mobile market share and, unlike iOS, an open app ecosystem, it would be a mistake not to bring Android support directly into Windows 10.Microsoft realizes this and has already started offering
Publish At:2020-11-28 13:37 | Read:111 | Comments:0 | Tags:Microsoft android

Office 365 phishing campaign leverages Oracle and Amazon cloud services

Experts warn of a new sophisticated phishing scheme for stealing Office 365 credentials from small and medium-sized businesses in the U.S. The new sophisticated phishing scheme was implemented by threat actors for stealing Office 365 credentials, it leverages both cloud services from Oracle and Amazon for their infrastructure. The campaign has been ac
Publish At:2020-11-28 13:18 | Read:126 | Comments:0 | Tags:Breaking News Cyber Crime Hacking hacking news information s

Hundreds of C-level executives credentials available for $100 to $1500 per account

A credible threat actor is offering access to the email accounts of hundreds of C-level executives for $100 to $1500 per account. Access to the email accounts of hundreds of C-level executives is available on the Exploit.in for $100 to $1500 per account. Exploit.in is a popular closed-access underground forum for Russian-speaking hackers, and it isn’
Publish At:2020-11-28 06:01 | Read:148 | Comments:0 | Tags:Breaking News Cyber Crime Hacking C-executives Darkweb hacki

Drupal emergency updates fix critical arbitrary PHP code execution

Drupal has released emergency security updates to fix a critical flaw with known exploits that could allow for arbitrary PHP code execution. Drupal has released emergency security updates to address a critical vulnerability with known exploits that could be exploited to achieve arbitrary PHP code execution on some CMS versions. The Drupal project uses
Publish At:2020-11-27 21:42 | Read:83 | Comments:0 | Tags:Breaking News Hacking Security Drupal PHP code execution

Announce

Share high-quality web security related articles with you:)

Tools

Friend Links