HackDig : Dig high-quality web security articles

A long-running cryptomining campaign conducted by 8220 hackers now targets Linux servers

Microsoft spotted a cloud threat actor tracked as 8220 that is now targeting Linux servers in a long-running cryptomining campaign. Microsoft Security Intelligence experts are warning of a long-running campaign conducted by a cloud threat actor group, tracked as 8220, that is now targeting Linux servers to install crypto miners. “We observed nota
Publish At:2022-07-01 11:10 | Read:191 | Comments:0 | Tags:Breaking News Cyber Crime Digital ID Hacking Malware 8220 ha

Experts blame North Korea-linked Lazarus APT for the Harmony hack

North Korea-linked Lazarus APT group is suspected to be behind the recent hack of the Harmony Horizon Bridge. Recently, threat actors have stolen $100 million in cryptocurrency from the Blockchain company Harmony. The company reported the incident to the authorities, the FBI is investigating the cyber heist with the help of several cybersecurity firms. 
Publish At:2022-06-30 14:10 | Read:123 | Comments:0 | Tags:APT Breaking News Digital ID Hacking hacking news informatio

Threat actors stole $100M in crypto assets from Harmony

Threat actors have stolen $100 million in cryptocurrency from the Blockchain company Harmony on Thursday evening. Last week threat actors have stolen $100 million in cryptocurrency from the Blockchain company Harmony. Today @HarmonyProtocol disclosed a breach which resulted in the theft of 85,837.252 Ethereum (approx. $99,334,302.58 USD as of this w
Publish At:2022-06-27 05:25 | Read:184 | Comments:0 | Tags:Breaking News Digital ID Hacking Blockchain hacking news Har

NSO Group told lawmakers that Pegasus spyware was used by at least 5 European countries

The Israeli surveillance firm NSO Group revealed that its Pegasus spyware was used by at least five European countries. The controversial Israeli surveillance vendor NSO Group told the European Union lawmakers that its Pegasus spyware was used by at least five countries in the region. NSO Group’s General Counsel Chaim Gelfand admitted that the co
Publish At:2022-06-23 09:59 | Read:227 | Comments:0 | Tags:Breaking News Digital ID Intelligence Malware Security Cyber

SeaFlower campaign distributes backdoored versions of Web3 wallets to steal seed phrases

Chinese cybercriminals are using SeaFlower backdoored versions of iOS and Android Web3 wallets to steal users’ seed phrase. Researchers from Confiant have uncovered a sophisticated malware campaign, tracked as SeaFlower, targeting Web3 wallet users. Chinese crooks are spreading backdoored versions of iOS and Android Web3 wallets to steal users’ seed phras
Publish At:2022-06-14 03:12 | Read:226 | Comments:0 | Tags:Breaking News Cyber Crime Digital ID Hacking Malware China C

Using WiFi connection probe requests to track users

Researchers at the University of Hamburg demonstrated that WiFi connection probe requests expose users to track. A group of academics at the University of Hamburg (Germany) demonstrated that it is possible to use WiFi connection probe requests to identify and track devices and thereby their users. Mobile devices transmit probe requests to receive info
Publish At:2022-06-13 06:33 | Read:215 | Comments:0 | Tags:Breaking News Digital ID Mobile hacking news information sec

Threat actors exploit recently disclosed Atlassian Confluence flaw in cryptomining campaign

Threat actors are exploiting the recently disclosed CVE-2022-26134 RCE in Atlassian Confluence servers to deploy cryptocurrency miners. CheckPoint researchers have observed threat actors exploiting the recently disclosed CVE-2022-26134 remote code execution vulnerability in Atlassian Confluence servers to deploy cryptocurrency miners. Last week, Atlass
Publish At:2022-06-10 18:27 | Read:270 | Comments:0 | Tags:Breaking News Cyber Crime Digital ID Hacking Malware Atlassi

Hackers stole over $250,000 in Ethereum from Bored Ape Yacht Club

Hackers have stolen over $250,000 in Ethereum from Bored Ape Yacht Club (BAYC), this is the third security breach it suffered this year. Threat actors compromised Bored Ape Yacht Club (BAYC) for the third time this year, they have stolen and sold NFTs, making away with 142 ETH, equivalent to over $250,000. The hacker conducted a phishing attack, they set
Publish At:2022-06-05 10:31 | Read:390 | Comments:0 | Tags:Breaking News Digital ID Hacking Bored Ape Yacht Club Ethere

Clipminer Botnet already allowed operators to make at least $1.7 Million

The Clipminer botnet allowed operators to earn at least $1.7 million, according to a report published by security researchers at Symantec. Researchers at Symantec’s Threat Hunter Team uncovered a cryptomining operation that has potentially made the actors behind it at least $1.7 million in illicit gains. The bot focuses on cryptocurrency mining and crypto
Publish At:2022-06-03 11:07 | Read:301 | Comments:0 | Tags:Breaking News Cyber Crime Digital ID Hacking Malware botnet

Do not use Tails OS until a flaw in the bundled Tor Browser will be fixed

The maintainers of the Tails project (The Amnesic Incognito Live System) warn users that the Tor Browser bundled with the OS could expose their sensitive information. The maintainers confirmed that Tor Browser in Tails 5.0 and earlier is unsafe to use for sensitive information. “We recommend that you stop using Tails until the release of 5.1 (Ma
Publish At:2022-05-26 06:44 | Read:520 | Comments:0 | Tags:Breaking News Digital ID Security Firefox Hacking hacking ne

VMware fixed a critical auth bypass issue in some of its products

VMware addressed a critical authentication bypass vulnerability “affecting local domain users” in multiple products. The virtualization giant warns that a threat actor can exploit the flaw, tracked as CVE-2022-22972 (CVSSv3 base score of 9.8), to obtain admin privileges and urges customers to install patches immediately. “This cr
Publish At:2022-05-18 18:27 | Read:465 | Comments:0 | Tags:Breaking News Digital ID Security authentication bypass Hack

Microsoft warns of the rise of cryware targeting hot wallets

Microsoft researchers warn of the rising threat of cryware targeting non-custodial cryptocurrency wallets, also known as hot wallets. Microsoft warns of the rise of cryware, malicious software used to steal info an dfunds from non-custodial cryptocurrency wallets, also known as hot wallets. Data stolen from this kind of malware includes private keys, seed
Publish At:2022-05-18 11:07 | Read:387 | Comments:0 | Tags:Breaking News Cyber Crime Digital ID Malware cryptocurrency

US gov sanctions cryptocurrency mixer Blender also used by North Korea-linked Lazarus APT

The U.S. Department of Treasury sanctioned cryptocurrency mixer Blender.io used by North Korea-linked Lazarus APT. The U.S. Department of Treasury sanctioned the cryptocurrency mixer Blender.io used by the North Korea-linked Lazarus APT to launder the funds stolen from Axie Infinity’s Ronin bridge. This is the first time ever, Treasury is sanctionin
Publish At:2022-05-07 07:00 | Read:958 | Comments:0 | Tags:Breaking News Cyber Crime Digital ID Hacking Security APT Bi

Hackers stole +80M from DeFi platforms Rari Capital and Fei Protocol

Threat actors exploited a bug in the Fuse protocol used by DeFi platforms Rari Capital and Fei Protocol and stole more than $80 million. Threat actors stole more than $80 million from the decentralized finance (DeFi) platforms Rari Capital and Fei Protocol on Saturday. Researchers from smart contract analysis firm Block Sec reported that attackers exploit
Publish At:2022-05-01 10:22 | Read:1109 | Comments:0 | Tags:Breaking News Cyber Crime Digital ID Hacking DeFi Fei Protoc

Anomaly Six, a US surveillance firm that tracks roughly 3 billion devices in real-time

An interesting article published by The Intercept reveals the secretive business of a US surveillance firm named Anomaly Six. When we speak about the secretive business of surveillance businesses we often refer to the powerful tools developed by Israeli firms like NSO Group and Candiru, but many other firms operates in the shadow like the US company Anoma
Publish At:2022-04-26 06:26 | Read:1123 | Comments:0 | Tags:Breaking News Digital ID Intelligence Mobile Security A6 Ano

Announce

Share high-quality web security related articles with you:)
Tell me why you support me <3