HackDig : Dig high-quality web security articles for hacker

Kr00k Wi-Fi Encryption flaw affects more than a billion devices

A high-severity hardware vulnerability, dubbed Kr00k, in Wi-Fi chips manufactured by Broadcom and Cypress expose over a billion devices to hack. Cybersecurity researchers from ESET have discovered a new high-severity hardware vulnerability, dubbed Kr00k, that affects Wi-Fi chips manufactured by Broadcom and Cypress. The vulnerability could have a severe
Publish At:2020-02-26 18:44 | Read:153 | Comments:0 | Tags:Breaking News Hacking hacking news information security news

Reading Municipal Light Department, an electric utility in Massachusetts, hit by ransomware

The Reading Municipal Light Department (RMLD), an electric utility in Massachusetts, announced it was hit by a ransomware attack. This week, the Reading Municipal Light Department (RMLD), an electric utility in Massachusetts, announced it was hit by a ransomware attack. Reading Municipal Light Department provides electricity to over 68,000 citizens tha
Publish At:2020-02-26 11:32 | Read:89 | Comments:0 | Tags:Breaking News Cyber Crime Hacking critical infrastructure ha

Fbot re-emerged, the backstage

Mirai Fbot is back with the stronger infection speed, “Currently FBOT’s infection speed is about 100 nodes per day.. Don’t trust me, trust the number”, said the researcher who figured the come-back…” In the previous month we covered the mystery behind the Mirai botnet variant dubbed as “Fbot” after the threat’s latest encryption was disclosed
Publish At:2020-02-26 07:21 | Read:83 | Comments:0 | Tags:Breaking News Cyber Crime Malware Fbot Hacking information s

New Cyber Attack Campaign Leverages the COVID-19 Infodemic

Researchers from Cybaze Yoroi ZLab have spotted a new campaign exploiting the interest in coronavirus (COVID-19) evolution to spread malware. Introduction Nowadays, it is common to say that the physical world and the cyber world are strictly connected. The proof is the leverage of the current physical threat, the CoronaVirus (COVID-19), as a social eng
Publish At:2020-02-26 07:21 | Read:48 | Comments:0 | Tags:Breaking News Cyber Crime Malware coronavirus COVID-19 Cyber

Zyxel addresses Zero-Day vulnerability in NAS devices

Tech vendor Zyxel addresses a critical vulnerability in several network-attached storage (NAS) devices that is already being exploited in the wild. Zyxel has released security patches to address a critical remote code execution vulnerability, tracked as CVE-2020-9054, that affects several NAS devices. The flaw can be exploited by an unauthenticated attack
Publish At:2020-02-25 16:34 | Read:80 | Comments:0 | Tags:Breaking News Hacking hacking news it security it security n

Google fixes Chrome zero-day flaw exploited in the wild

Google has released Chrome 80 update that addresses three high-severity vulnerabilities, one of them has been exploited in the wild. Google has released Chrome 80 update (version 80.0.3987.122) that addresses three high-severity vulnerabilities, including a zero-day issue (CVE-2020-6418) that has been exploited in the wild. The CVE-2020-6418 vulnerability
Publish At:2020-02-25 12:23 | Read:211 | Comments:0 | Tags:Breaking News Hacking Chrome CVE-2020-6418 hacking news it s

Experts discovered a new critical OpenSMTPD RCE flaw exploited in the wild

Experts discovered a new critical remote code execution vulnerability in the OpenSMTPD that could allow hacking email servers running BSD or Linux. A new critical remote code execution vulnerability was discovered in the OpenSMTPD that could be exploited by attackers to take complete control over email servers running BSD or Linux operating systems. O
Publish At:2020-02-25 12:23 | Read:166 | Comments:0 | Tags:Breaking News Hacking hacking news information security news

Hacking campaign targets sites running popular Duplicator WordPress plugin

Security experts are warning of a new wave of attacks targeting a zero-day vulnerability in the popular Duplicator WordPress Plugin. Last week the development team behind the popular Duplicator WordPress plugin, the Snap Creek, addressed a zero-day vulnerability that affected at least 1 million websites. Now researchers at security firm WordFence are
Publish At:2020-02-25 08:05 | Read:145 | Comments:0 | Tags:Breaking News Cyber Crime Hacking Duplicator WordPress hacki

Raccoon Malware, a success case in the cybercrime ecosystem

Raccoon Malware is a recently discovered infostealer that can extract sensitive data from about 60 applications on a targeted system. Racoon malware, Legion, Mohazo, and Racealer, is an infostealer that recently appeared in the threat landscape that is advertised in hacking forums. The malware is cheap compared to similar threats, it is able
Publish At:2020-02-24 17:25 | Read:215 | Comments:0 | Tags:Breaking News Cyber Crime Malware Hacking information securi

FBI recommends using passphrases instead of complex passwords

The FBI recommends using longer passwords composed of multiple words into a long string of at least 15 characters instead of short passwords including special characters. Recent guidance from the National Institute of Standards and Technology (NIST) highlights that the password length is much more important than password complexity. The recommendatio
Publish At:2020-02-24 09:50 | Read:134 | Comments:0 | Tags:Breaking News Security Hacking passwords Security News

Slickwraps discloses data leak that impacted 850,000 user accounts

Slickwraps has disclosed a data breach that impacted over 850,000 user accounts, data were accidentally exposed due to security vulnerabilities. Slickwraps is an online store that offers for sale skins mobile devices, laptops, smartphones, tablets, and gaming consoles. The data leak was disclosed last week, on February 21 the company that customer r
Publish At:2020-02-24 09:50 | Read:66 | Comments:0 | Tags:Breaking News Data Breach Hacking data breach data leak hack

FireEye Mandiant M-Trends 2020 report: 500+ new Malware strains in 2019

FireEye’s report revealed that the incident response division Mandiant observed more than 500 new malware families in 2019. According to the FireEye Mandiant M-Trends 2020 report, FireEye analyzed 1.1 million malware samples per day in 2019 and identified 1,268 malware families. The most worrisome figure is related to the number of previously unseen malwa
Publish At:2020-02-24 05:10 | Read:135 | Comments:0 | Tags:Breaking News Hacking Malware Reports information security n

Security Affairs newsletter Round 252

A new round of the weekly newsletter arrived! The best news of the week with Security Affairs IOTA cryptocurrency shuts down entire network after a coordinated attack on its Trinity wallet Organizers of major hacking conferences in Asia put them on hold due to Coronavirus outbreak US administration requests $9.8B for cyber 2021 budget for
Publish At:2020-02-23 10:15 | Read:106 | Comments:0 | Tags:Breaking News Hacking hacking news it security it security n

ObliqueRAT, a new malware employed in attacks on government targets in Southeast Asia

Cisco Talos researchers discovered a new malware, tracked as ObliqueRAT, that was employed targeted attacks against organizations in Southeast Asia. Experts from Cisco Talos discovered a new malware, tracked as ObliqueRAT, that appears a custom malware developed by a threat actor focused on government and diplomatic targets.  The malware was employed
Publish At:2020-02-23 07:17 | Read:136 | Comments:0 | Tags:Breaking News Cyber Crime Hacking Malware information securi

Joker malware still able to bypass Google Play Store checks

The infamous Joker malware has found a way to bypass the security checks to be published in the official Play Store, new clicker was found by experts. The fight to the Joker malware (aka Bread) begun in September 2019 when security experts at Google removed from the official Play Store 24 apps because they were infected with a new spyware tracked as “the
Publish At:2020-02-22 15:20 | Read:184 | Comments:0 | Tags:Breaking News Cyber Crime Malware Mobile Hacking it security

Announce

Share high-quality web security related articles with you:)

Tools

Tag Cloud