HackDig : Dig high-quality web security articles for hackers

Data of 2 million MyFreeCams users sold on a hacker forum

A threat actor was offering for sale on a hacker forum data from 2 million users allegedly stolen from the adult streaming site MyFreeCams. A threat actor was offering for sale on a hacker forum a database containing user records allegedly stolen from the adult streaming site MyFreeCams. MyFreeCams it’s one of the top adult streaming websites thta has
Publish At:2021-01-22 08:55 | Read:104 | Comments:0 | Tags:Breaking News Data Breach Hacking Darkweb hacking news infor

Abusing Windows RDP servers to amplify DDoS attacks

Threat actors are abusing Windows Remote Desktop Protocol (RDP) servers to amplify Distributed Denial of Service (DDoS) attacks. Attackers are abusing Windows Remote Desktop Protocol (RDP) servers to amplify Distributed Denial of Service (DDoS) attacks. The Microsoft Remote Desktop Protocol (RDP) is a built-in service in Microsoft Windows operating sys
Publish At:2021-01-22 07:36 | Read:68 | Comments:0 | Tags:Breaking News Hacking DDoS amplification hacking news inform

Drupal fixed a new flaw related PEAR Archive_Tar library

Drupal development team released security updates to address a vulnerability that resides in the PEAR Archive_Tar third-party library. The Drupal development team has released security updates to address the CVE-2020-36193 vulnerability in the PEAR Archive_Tar third-party library. The PEAR Archive_Tar class provides handling of tar files in PHP. It sup
Publish At:2021-01-22 06:20 | Read:48 | Comments:0 | Tags:Breaking News Security Drupal Hacking hacking news informati

Dovecat crypto-miner is targeting QNAP NAS devices

QNAP is warning customers of a new piece of malware dubbed Dovecat that is targeting NAS devices to mine cryptocurrency. Taiwanese vendor QNAP has published a security advisory to warn customers of a new piece of malware named Dovecat that is targeting NAS devices. The malware was designed to abuse NAS resources and mine cryptocurrency. The malware tar
Publish At:2021-01-21 19:54 | Read:80 | Comments:0 | Tags:Breaking News Internet of Things Malware Bitcoin Cryptocurre

Passwords stolen via phishing campaign available through Google search

Bad ops of operators of a phishing campaign exposed credentials stolen in attacks and made them publicly available through Google queries.  Check Point Research along with experts from cybersecurity firm Otorio shared details on their investigation into a large-scale phishing campaign that targeted thousands of global organizations. The campaign has be
Publish At:2021-01-21 16:00 | Read:137 | Comments:0 | Tags:Breaking News Hacking hacking news information security news

Experts warn of scanning activity for critical SAP SolMan flaw after the release of exploit

Experts warn of automated scanning activity for servers affected by a critical SAP SolMan flaw after the release of an exploit code. Experts warn of an automated scanning activity for servers affected by vulnerabilities in SAP software, attackers started probing the systems after the release of an exploit for the critical CVE-2020-6207 flaw in SAP Solutio
Publish At:2021-01-21 12:06 | Read:132 | Comments:0 | Tags:Breaking News Hacking hacking news information security news

SolarWinds Attack: Microsoft sheds lights into Solorigate second-stage activation

Microsoft’s report provides details of the entire SolarWinds attack chain with a deep dive in the second-stage activation of malware and tools. Microsoft published a new report that includes additional details of the SolarWinds supply chain attack. The new analysis shad lights on the handover from the Solorigate DLL backdoor to the Cobalt Strike loa
Publish At:2021-01-21 08:12 | Read:130 | Comments:0 | Tags:APT Breaking News Hacking Malware backdoor hacking news info

Cisco fixed multiple flaws in Cisco SD-WAN products and Smart Software Manager Satellite Web UI

Cisco fixed multiple flaws in Cisco SD-WAN products that could allow an unauthenticated, remote attacker to execute attacks against its devices. Cisco released security updates to address multiple flaws in Cisco SD-WAN products could allow an unauthenticated, remote attacker to execute attacks against vulnerable devices. These vulnerabilities impact de
Publish At:2021-01-21 04:49 | Read:150 | Comments:0 | Tags:Breaking News Security CISCO command injection attacks Hacki

Logic bugs found in popular apps, including Signal and FB Messenger

Flaws in popular messaging apps, such as Signal and FB Messenger allowed to force a target device to transmit audio to an attacker device. Google Project Zero security researcher Natalie Silvanovich found multiple flaws in popular video conferencing apps such as Signal and FB Messenger, that allowed to force a target device to transmit audio of the surrou
Publish At:2021-01-20 17:55 | Read:220 | Comments:0 | Tags:Breaking News Hacking Mobile hacking news information securi

Livecoin halted operations after the December attack

The Russian cryptocurrency exchange Livecoin has announced it is terminating its operation following the December cyberattack.  The Russian cryptocurrency exchange was hacked on Christmas Eve, it published a message on its website warning customers to stop using its services. “Dear clients, we ask you to stop using our service in all meanings: don
Publish At:2021-01-20 12:42 | Read:152 | Comments:0 | Tags:Breaking News Digital ID Hacking information security news I

FireEye releases an auditing tool to detect SolarWinds hackers’ activity

Cybersecurity firm FireEye has released a report that sheds the light on the SolarWinds attack and the way hackers breached its networks. Cybersecurity firm FireEye has released a report that sheds the light on the SolarWinds attack and the way hackers breached its networks. The experts explained how the UNC2452 and other threat actors breached the inf
Publish At:2021-01-20 09:19 | Read:170 | Comments:0 | Tags:APT Breaking News Hacking Security hacking news information

Raindrop, a fourth malware employed in SolarWinds attacks

The threat actors behind the SolarWinds attack used malware dubbed Raindrop for lateral movement and deploying additional payloads. Security experts from Symantec revealed that threat actors behind the SolarWinds supply chain attack leveraged a malware named Raindrop for lateral movement and deploying additional payloads. Raindrop is the fourth malware
Publish At:2021-01-19 19:50 | Read:73 | Comments:0 | Tags:Breaking News Hacking Malware backdoor hacking news informat

Malwarebytes ‘s email systems hacked by SolarWinds attackers

Cyber security firm Malwarebytes announced that threat actor behind the SolarWinds attack also breached its network last year. Malwarebytes revealed today that SolarWinds hackers also breached its systems and gained access to its email. Malwarebytes joins the club of security firms that were hit by Solarwinds attackers, after FireEye, Microsoft, and Crowd
Publish At:2021-01-19 19:50 | Read:163 | Comments:0 | Tags:Breaking News Hacking hacking news information security news

FreakOut botnet target 3 recent flaws to compromise Linux devices

Security researchers uncovered a series of attacks conducted by the FreakOut botnet that leveraged recently discovered vulnerabilities. Security researchers from Check Point have uncovered a series of attacks associated with the FreakOut botnet that is targeting multiple unpatched flaws in applications running on top of Linux systems. The botnet appear
Publish At:2021-01-19 09:55 | Read:152 | Comments:0 | Tags:Breaking News Cyber Crime Hacking Malware botnet FreakOut ha

Vishing attacks conducted to steal corporate accounts, FBI warns

The Federal Bureau of Investigation (FBI) has issued a notification warning of ongoing vishing attacks attempting to steal corporate accounts. The Federal Bureau of Investigation (FBI) published a Private Industry Notification (PIN) that warns of ongoing vishing attacks aimed at stealing corporate accounts and credentials from US and international-based e
Publish At:2021-01-19 09:24 | Read:104 | Comments:0 | Tags:Breaking News Cyber Crime Hacking FBI hacking news informati

Tools

Tag Cloud

Keywords