HackDig : Dig high-quality web security articles

QNAP addresses a critical flaw impacting its NAS devices

Taiwanese vendor QNAP is warning customers to install QTS and QuTS firmware updates to address a critical flaw impacting its NAS devices. QNAP released QTS and QuTS firmware updates to address a critical vulnerability, tracked as CVE-2022-27596 (CVSS v3 score: 9.8), that affects QNAP NAS devices. A remote attacker can exploit the vulnerability to inje
Publish At:2023-01-30 19:47 | Read:38373 | Comments:0 | Tags:Breaking News Internet of Things Security Hacking informatio

JD Sports discloses a data breach impacting 10 million customers

Sports fashion retail JD Sports discloses a data breach that explosed data of about 10M customers who placed orders between 2018 and 2020. UK sports fashion chain JD Sports disclosed a data breach that exposed customer data from orders placed between November 2018 and October 2020. The company discovered unauthorized access to a server that contained data
Publish At:2023-01-30 18:35 | Read:23367 | Comments:0 | Tags:Breaking News Data Breach Hacking Cybercrime data breach hac

Researcher received a $27,000 bounty for 2FA bypass bug in Facebook and Instagram

A researcher disclosed technical details of a two-factor authentication bypass vulnerability affecting Instagram and Facebook. The researcher Gtm Manoz received a $27,000 bug bounty for having reported a two-factor authentication bypass vulnerability affecting Instagram and Facebook. The flaw resides in a component used by the parent company Meta for c
Publish At:2023-01-30 11:51 | Read:26865 | Comments:0 | Tags:Breaking News Hacking Social Networks Bug Bounty Facebook ha

Sandworm APT group hit Ukrainian news agency with five data wipers

The Ukrainian (CERT-UA) discovered five different wipers deployed on the network of the country’s national news agency, Ukrinform. On January 17, 2023, the Telegram channel “CyberArmyofRussia_Reborn” reported the compromise of the systems at the Ukrainian National Information Agency “Ukrinform”. The Ukrainian Computer Emer
Publish At:2023-01-30 07:53 | Read:43129 | Comments:0 | Tags:APT Breaking News Cyber warfare Malware CERT-UA Hacking hack

Pro-Russia group Killnet targets Germany due to its support to Ukraine

Pro-Russia group Killnet launched last week DDoS attacks against the websites of German airports, administration bodies, and banks. The Pro-Russia group Killnet is behind the DDoS attacks that last week hit the websites of German airports, administration bodies, and banks. The attacks are the hacktivists’ response to the German government’s de
Publish At:2023-01-29 18:35 | Read:50897 | Comments:0 | Tags:Breaking News Hacking Hacktivism hacking news information se

Alleged member of ShinyHunters group extradited to the US, could face 116 years in jail

An alleged member of the ShinyHunters cybercrime gang has been extradited from Morocco to the United States. Sebastien Raoult, a French national who is suspected of being a member of ShinyHunters cybercrime gang known as “Seyzo Kaizen,” has been extradited from Morocco to the United States. The 22-year-old man was arrested in Morocco at Rab
Publish At:2023-01-29 18:35 | Read:54700 | Comments:0 | Tags:Breaking News Cyber Crime Hacking Cybercrime hacking news in

Watch out! Experts plans to release VMware vRealize Log RCE exploit next week

Horizon3’s Attack Team made the headlines again announcing the releasse of a PoC exploit code for remote code execution in VMware vRealize Log. Researchers from the Horizon3’s Attack Team announced the release of PoC exploit code for remote code execution in VMware vRealize Log. Exploitation of multiple vulnerabilities affecting #VMware v
Publish At:2023-01-29 11:51 | Read:44274 | Comments:0 | Tags:Breaking News Hacking hacking news information security news

Security Affairs newsletter Round 404 by Pierluigi Paganini

A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs free for you in your email box. If you want to also receive for free the newsletter with the international press subscribe here. Copycat Criminals mimicking Lockbit gang in northern EuropeSandworm APT targets Ukraine with
Publish At:2023-01-29 11:51 | Read:57844 | Comments:0 | Tags:Breaking News Cybercrime data breach Hacking hacking news in

Sandworm APT targets Ukraine with new SwiftSlicer wiper

Russia-linked Sandworm APT group is behind a new Golang-based wiper, tracked as SwiftSlicer, that hit Ukraine, ESET reports. Researchers from ESET discovered a new Golang-based wiper, dubbed SwiftSlicer, that was used in attacks aimed at Ukraine. The experts believe that the Russia-linked APT group Sandwork (aka BlackEnergy and TeleBots) is behind the wi
Publish At:2023-01-28 18:35 | Read:49922 | Comments:0 | Tags:APT Breaking News Hacking Intelligence Malware hacking news

Copycat Criminals mimicking Lockbit gang in northern Europe

Recent reports of Lockbit locker-based attacks against North European SMBs indicate that local crooks started using Lockbit locker variants. Executive Summary During the past months, the Lockbit gang reached very high popularity in the underground ecosystem. The recent Hive infrastructure takedown as well as other major gangs dissolution such as Co
Publish At:2023-01-28 18:35 | Read:58689 | Comments:0 | Tags:Breaking News Cyber Crime Malware Cybercrime Hacking hacking

ISC fixed high-severity flaws in DNS software suite BIND

The latest BIND updates patch multiple remotely exploitable vulnerabilities that could lead to denial-of-service (DoS). BIND is a suite of software for interacting with the Domain Name System (DNS) maintained by the Internet Systems Consortium (ISC). The ISC released security patches to address multiple high-severity denial-of-service DoS vulnerabiliti
Publish At:2023-01-28 07:53 | Read:49206 | Comments:0 | Tags:Breaking News Security BIND Hacking hacking news information

Patch management is crucial to protect Exchange servers, Microsoft warns

Microsoft warns customers to patch their Exchange servers because attackers always look to exploit unpatched installs. Microsoft published a post to urge its customers to protect their Exchange servers because threat actors actively attempt to exploit vulnerabilities in unpatched installs. The IT giant recommends installing the latest available Cumulative
Publish At:2023-01-27 19:47 | Read:54894 | Comments:0 | Tags:Breaking News Security Hacking information security news IT

Hacker accused of having stolen personal data of all Austrians and more

A Dutch hacker who was arrested at the end of last year claims to have stolen the personal data of almost all Austrians.  At the end of November 2022, the Amsterdam police arrested a 25-year-old man from Almere who is suspected of having stolen or traded the personal data of tens of millions of people around the world. The investigation into the a
Publish At:2023-01-27 11:51 | Read:66756 | Comments:0 | Tags:Breaking News Cyber Crime Hacking Austria data breach Data t

CVE-2023-23560 flaw exposes 100 Lexmark printer models to hack

Lexmark released a security firmware update to fix a remote code execution flaw, tracked as CVE-2023-23560, that impacts more than 100 printer models. Lexmark has released a security firmware update to address a remote code execution vulnerability, tracked as CVE-2023-23560, that impacts more than 100 printer models. The CVE-2023-23560 flaw is a server
Publish At:2023-01-27 07:53 | Read:65168 | Comments:0 | Tags:Breaking News Hacking CVE-2023-23560 hacking news Lexmark Pi

BlackCat Ransomware gang stole secret military data from an industrial explosives manufacturer

The BlackCat Ransomware group claims to have hacked SOLAR INDUSTRIES INDIA and to have stolen 2TB of “secret military data.” The BlackCat Ransomware gang added SOLAR INDUSTRIES INDIA to the list of victims published on its Tor leak site. The company is a globally recognised industrial explosives manufacturer, it provides complete blasting solu
Publish At:2023-01-27 03:55 | Read:37255 | Comments:0 | Tags:Breaking News Cyber Crime Data Breach Hacking BlackCat ranso

Announce

Share high-quality web security related articles with you:)
Tell me why you support me <3

Tag Cloud