HackDig : Dig high-quality web security articles for hacker

Kinsing Linux Malware Deploys Crypto-Miner in Container Environments

A campaign that has been ongoing for months is targeting misconfigured open Docker Daemon API ports to install a piece of malware named Kinsing, which in turn deploys a cryptocurrency miner in compromised container environments.Researchers at Aqua Security, who have been tracking the attacks, say that thousands of infection attempts were observed daily. As p
Publish At:2020-04-06 15:56 | Read:72 | Comments:0 | Tags:NEWS & INDUSTRY Virus & Threats Virus & Malware

Magecart Hackers Continue Improving Skimmers

A Magecart threat actor tracked as “Group 7” has been using a skimmer that creates iframes to steal payment card data, RiskIQ reveals.Various versions of the skimmer were observed since January, featuring different levels of obfuscation, and 19 different victim sites were identified to date. In some cases, the compromised websites were abused to host the ski
Publish At:2020-04-06 15:56 | Read:35 | Comments:0 | Tags:NEWS & INDUSTRY Virus & Threats Phishing Cybercrime

Magecart group 7 use new e-skimmer to steal payment data

RiskIQ researchers spotted a new ongoing Magecart campaign that already compromised at least 19 different e-commerce websites. Researchers from security firm RiskIQ have uncovered a new ongoing Magecart campaign that already compromised at least 19 different e-commerce websites to steal customers’ payment card data. The experts discovered a new s
Publish At:2020-04-04 15:17 | Read:18 | Comments:0 | Tags:Breaking News Cyber Crime Hacking Malware Cybercrime hacking

Class Action Lawsuit Filed Against Marriott Over New Data Breach

Law firm Morgan & Morgan announced on Thursday that it has filed a class action lawsuit against Marriott over the recently disclosed data breach that has impacted as many as 5.2 million individuals.The complaint filed by Morgan & Morgan in the District of Maryland accuses Marriott of negligence, breach of contract, breach of confidence, and deceptive
Publish At:2020-04-02 16:10 | Read:94 | Comments:0 | Tags:NEWS & INDUSTRY Privacy Incident Response Compliance Cyb

Firefox, IE Vulnerabilities Exploited in Attacks on China, Japan

Vulnerabilities patched earlier this year in Firefox and Internet Explorer have been exploited by an advanced persistent threat (APT) actor in attacks aimed at China and Japan.The Firefox vulnerability is CVE-2019-17026, which Mozilla patched in early January, and the Internet Explorer flaw is CVE-2020-0674, which Microsoft patched in February with its month
Publish At:2020-04-02 12:27 | Read:99 | Comments:0 | Tags:Cyberwarfare NEWS & INDUSTRY Virus & Threats Virus &

Coronavirus Malware Makes Devices Unusable by Overwriting MBR

A newly discovered piece of malware is taking advantage of the current COVID-19 pandemic to render computers unusable by overwriting the MBR (master boot record).Cybercriminals were quick to exploit the coronavirus crisis for their malicious attacks, including phishing, malware infections, and the likes, and it did not take long for state-sponsored threat ac
Publish At:2020-04-02 08:39 | Read:142 | Comments:0 | Tags:NEWS & INDUSTRY Virus & Threats Virus & Malware

Nigerian Threat Actors Specializing in BEC Attacks Continue to Evolve

The Nigerian business email compromise (BEC) threat actors referred to as SilverTerrier have intensified assaults on multiple industries and should be considered an established threat, Palo Alto Networks says.In February, the FBI’s Internet Crime Complaint Center (IC3) revealed that reported BEC and email account compromise (EAC) losses topped $1.7 billion,
Publish At:2020-04-02 06:45 | Read:178 | Comments:0 | Tags:NEWS & INDUSTRY Fraud & Identity Theft Malware Cyber

Vollgar Campaign Targets MS-SQL Servers With Backdoors, Crypto-Miners

A recently uncovered attack campaign that stayed under the radar since May 2018 is targeting devices running MS-SQL servers with backdoors and crypto-miners, Guardicore Labs reveals.Dubbed Vollgar, the campaign managed to infect roughly three thousand database machines daily, with victims in sectors such as healthcare, aviation, IT and telecommunications, an
Publish At:2020-04-02 01:04 | Read:136 | Comments:0 | Tags:NEWS & INDUSTRY Virus & Threats Virus & Malware

Trojanized Zoom Apps Target Work-From-Home Android Users

Malicious, re-packaged versions of the Zoom video conferencing application are targeting work-from-home Android users with adware and Trojans, Bitdefender reports.Forced by the current COVID-19 pandemic to work from home, many are using Zoom to stay connected with co-workers and other people they work with, and cybercriminals are taking advantage of the situ
Publish At:2020-04-01 13:41 | Read:188 | Comments:0 | Tags:Mobile Security NEWS & INDUSTRY Virus & Threats Viru

Breaking the Ice: A Deep Dive Into the IcedID Banking Trojan’s New Major Version Release

The IcedID banking Trojan was discovered by IBM X-Force researchers in 2017. At that time, it targeted banks, payment card providers, mobile services providers, payroll, webmail and e-commerce sites, mainly in the U.S. IcedID has since continued to evolve, and while one of its more recent versions became active in late-2019, X-Force researchers have identifi
Publish At:2020-04-01 07:12 | Read:201 | Comments:0 | Tags:Fraud Protection Malware Threat Research Banking Malware Ban

FBI Warns of Ongoing Kwampirs Attacks Targeting Global Industries

A malicious campaign is targeting organizations from a broad range of industries with a piece of malware known as Kwampirs, the Federal Bureau of Investigation warns.Initially detailed in 2018, the malware is a custom backdoor associated with a threat actor tracked as Orangeworm, which has been active since at least 2015, mainly targeting organizations in th
Publish At:2020-03-31 14:55 | Read:129 | Comments:0 | Tags:Endpoint Security NEWS & INDUSTRY Virus & Threats Vi

New Marriott Data Breach Impacts Up to 5.2 Million Guests

Marriott on Tuesday disclosed a new data breach that could impact up to 5.2 million of its guests. The incident is related to an internal application used by Marriott hotels.According to the company, its corporate-owned and franchised hotels use an application to provide services to guests. At the end of February, Marriott discovered that the credentials of
Publish At:2020-03-31 11:07 | Read:171 | Comments:0 | Tags:NEWS & INDUSTRY Cybercrime

Microsoft to Add Compromised Password Notification to Edge

Microsoft on Monday announced several new features for its Edge web browser, including one that will alert users if the credentials they have saved to autofill have been compromised as a result of a third-party data breach.Online services often get hacked and these intrusions can result in millions of username and password combinations getting stolen. While
Publish At:2020-03-30 16:09 | Read:170 | Comments:0 | Tags:NEWS & INDUSTRY Privacy Email Security Fraud & Ident

State-Backed Players Join Pandemic Cyber Crime Attacks

Sophisticated state-supported actors are following cybercriminals in exploiting the coronavirous pandemic and posing an “advanced persistent threat" (APT), French defence technology giant Thales warned Monday.Hades, linked to the APT28 which is believed to be of Russian origin and behind an attack on the US Democrat party in 2016, was the first state-backed
Publish At:2020-03-30 16:09 | Read:119 | Comments:0 | Tags:Cyberwarfare NEWS & INDUSTRY Virus & Threats Cybercr

Zeus Sphinx spam campaign attempt to exploit Coronavirus outbreak

The Zeus Sphinx malware is back, operators are now spreading it exploiting the interest in the Coronavirus outbreak. The Zeus Sphinx malware is back, it was observed in a new wave of attacks attempting to exploit the interest in the Coronavirus outbreak. Experts from IBM X-Force uncovered a hacking campaign employing the Zeus Sphinx malware, as known
Publish At:2020-03-30 13:41 | Read:168 | Comments:0 | Tags:Breaking News Cyber Crime Hacking Malware covid19 Cybercrime


Share high-quality web security related articles with you:)


Tag Cloud