HackDig : Dig high-quality web security articles

Attackers impersonate CircleCI platform to compromise GitHub accounts

Threat actors target GitHub users to steal credentials and two-factor authentication (2FA) codes by impersonating the CircleCI DevOps platform. GitHub is warning of an ongoing phishing campaign targeting its users to steal credentials and two-factor authentication (2FA) codes by impersonating the CircleCI DevOps platform. The company learned of the att
Publish At:2022-09-25 12:57 | Read:42162 | Comments:0 | Tags:Breaking News Hacking Security CircleCI hacking news informa

Security Affairs newsletter Round 385

A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs free for you in your email box. If you want to also receive for free the newsletter with the international press subscribe here. ISC fixed high-severity flaws in the BIND DNS softwareUkraine: SSU dismantled cyber gang that stole 30
Publish At:2022-09-25 08:11 | Read:21414 | Comments:0 | Tags:Breaking News Cybercrime data breach Hacking hacking news in

OpIran: Anonymous declares war on Teheran amid Mahsa Amini’s death

OpIran: Anonymous launched Operation Iran against Teheran due to the ongoing crackdown on dissent after Mahsa Amini’s death. Anonymous launched OpIran against Iran due to the ongoing crackdown on dissent after Mahsa Amini’s death. The protests began after the death of Mahsa Amini from Saqqez in Kurdistan province after her arrest by Iran’s morality pol
Publish At:2022-09-25 08:11 | Read:27369 | Comments:0 | Tags:Breaking News Hacking Hacktivism Security Anonymous hacking

ISC fixed high-severity flaws in the BIND DNS software

The Internet Systems Consortium (ISC) fixed six remotely exploitable vulnerabilities in the BIND DNS software. The Internet Systems Consortium (ISC) this week released security patches to address six remotely exploitable vulnerabilities in BIND DNS software. Four out of six flaws, all denial-of-service (DoS) issue, have been rated as ‘high’ severity.
Publish At:2022-09-24 20:17 | Read:27374 | Comments:0 | Tags:Breaking News Security BIND BIND DNS Hacking hacking news in

Ukraine: SSU dismantled cyber gang that stole 30 million accounts

The cyber department of Ukraine ‘s Security Service (SSU) dismantled a gang that stole accounts of about 30 million individuals. The cyber department of Ukraine ‘s Security Service (SSU) has taken down a group of hackers that is behind the theft of about 30 million individuals. The gang was offering the stole accounts for sale on the dark web,
Publish At:2022-09-24 12:57 | Read:42501 | Comments:0 | Tags:Breaking News Cyber Crime Hacking Cybercrime Dark Web disinf

London Police arrested a teen suspected to be behind Uber, Rockstar Games breaches

The City of London Police this week announced the arrest of a 17-year-old teenager on suspicion of hacking. Is he the Uber hacker? The City of London Police on Friday announced to have arrested a 17-year-old teenager on suspicion of hacking, however, experts believe the arrest could be linked to the recent security breaches suffered by Uber and Rockstar G
Publish At:2022-09-24 10:10 | Read:21259 | Comments:0 | Tags:Breaking News Cyber Crime Hacking Security Cybercrime data b

Sophos warns of a new actively exploited flaw in Firewall product

Sophos warns that a critical code injection security vulnerability in its Firewall product is actively exploited in the wild. Sophos warns of a critical code injection security vulnerability, tracked as CVE-2022-3236, affecting its Firewall product which is being exploited in the wild. The CVE-2022-3236 flaw resides in the User Portal and Webadmin of S
Publish At:2022-09-23 20:17 | Read:34143 | Comments:0 | Tags:Breaking News Hacking Security hacking news information secu

CISA adds Zoho ManageEngine flaw to its Known Exploited Vulnerabilities Catalog

CISA added a security flaw in Zoho ManageEngine, tracked as CVE-2022-35405, to its Known Exploited Vulnerabilities Catalog. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added a recently disclosed security flaw in Zoho ManageEngine, tracked as CVE-2022-35405 (CVSS score 9.8), to its Known Exploited Vulnerabilities Catalog. According
Publish At:2022-09-23 12:21 | Read:38522 | Comments:0 | Tags:Breaking News Hacking Security hacking news information secu

Anonymous claims to have hacked the website of the Russian Ministry of Defense

The popular collective Anonymous claims to have hacked the website of the Russian Ministry of Defense and leaked data of 305,925 people. The #OpRussia (#OpRussia) launched by Anonymous on Russia after the criminal invasion of Ukraine continues, the popular collective claims to have hacked the website of the Russian Ministry of Defense. The group of hac
Publish At:2022-09-23 12:21 | Read:49588 | Comments:0 | Tags:Breaking News Hacking Hacktivism hacking news information se

Surge in Magento 2 template attacks exploiting the CVE-2022-24086 flaw

Sansec researchers warn of a surge in hacking attempts targeting a critical Magento 2 vulnerability tracked as CVE-2022-24086. Sansec researchers are warning of a hacking campaign targeting the CVE-2022-24086 Magento 2 vulnerability. Magento is a popular open-source e-commerce platform owned by Adobe, which is used by hundreds of thousands of e-store
Publish At:2022-09-23 10:10 | Read:28019 | Comments:0 | Tags:Breaking News Cyber Crime Hacking hacking news information s

Australian Telecoms company Optus discloses security breach

Australian telecoms company Optus disclosed a data breach, threat actors gained access to former and current customers. Optus, one of the largest service providers in Australia, disclosed a data breach. The intruders gained access to the personal information of both former and current customers. The company is a subsidiary of Singtel with 10.5 million
Publish At:2022-09-23 08:11 | Read:27401 | Comments:0 | Tags:Breaking News Data Breach Hacking data breach hacking news i

AttachMe: a critical flaw affects Oracle Cloud Infrastructure (OCI)

A critical vulnerability in Oracle Cloud Infrastructure (OCI) could be exploited to access the virtual disks of other Oracle customers. Wiz researchers discovered a critical flaw in Oracle Cloud Infrastructure (OCI) that could be exploited by users to access the virtual disks of other Oracle customers. An attacker can trigger the flaw to exfiltrate sensit
Publish At:2022-09-22 20:17 | Read:34865 | Comments:0 | Tags:Breaking News Hacking Security hacking news information secu

A 15-Year-Old Unpatched Python bug potentially impacts over 350,000 projects

More than 350,000 open source projects can be potentially affected by a 15-Year-Old unpatched Python vulnerability More than 350,000 open source projects can be potentially affected by an unpatched Python vulnerability, tracked as CVE-2007-4559 (CVSS score: 6.8), that was discovered 15 years ago. The issue is a Directory traversal vulnerability that re
Publish At:2022-09-22 10:10 | Read:23679 | Comments:0 | Tags:Breaking News Hacking Security hacking news information secu

Atlassian Confluence bug CVE-2022-26134 exploited in cryptocurrency mining campaign

Threat actors are targeting unpatched Atlassian Confluence servers as part of an ongoing crypto mining campaign. Trend Micro researchers warn of an ongoing crypto mining campaign targeting Atlassian Confluence servers affected by the CVE-2022-26134 vulnerability. The now-patched critical security flaw was disclosed by Atlassian in early June, at the ti
Publish At:2022-09-22 08:11 | Read:35415 | Comments:0 | Tags:Breaking News Digital ID Hacking Malware Atlassian Atlassian

A disgruntled developer is the alleged source of the leak of the Lockbit 3.0 builder

A disgruntled developer seems to be responsible for the leak of the builder for the latest encryptor of the LockBit ransomware gang. The leak of the builder for the latest encryptor of the LockBit ransomware gang made the headlines, it seems that the person who published it is a disgruntled developer. The latest version of the encryptor, version 3.0, w
Publish At:2022-09-22 03:00 | Read:36905 | Comments:0 | Tags:Breaking News Cyber Crime Data Breach Hacking Malware Cyberc

Announce

Share high-quality web security related articles with you:)
Tell me why you support me <3

Tag Cloud