HackDig : Dig high-quality web security articles

FBI silently removed web shells planted on Microsoft Exchange servers in the US

FBI log into web shells that hackers installed on Microsoft Exchange email servers across the US and removed the malicious code used by threat actors. A US judge granted the FBI the power to log into web shells that were injected by nation-state hackers on Microsoft Exchange servers across the US and remove the malware, announced the US Department of Just
Publish At:2021-04-14 06:26 | Read:145 | Comments:0 | Tags:Breaking News Malware Hacking hacking news information secur

Sweden blames Russia for Swedish Sports Confederation hack

The Swedish Sports Confederation organization was compromised in 2017-18 by hackers working for Russian military intelligence, officials said. The Swedish Sports Confederation is the umbrella organisation of the Swedish sports movement, it was hacked by Russian military intelligence in a campaign conducted between December 2017 and May 2018, officials sai
Publish At:2021-04-14 02:31 | Read:125 | Comments:0 | Tags:Breaking News Cyber warfare Intelligence GRU Hacking hacking

Microsoft fixes 2 critical Exchange Server flaws reported by the NSA

Microsoft patch Tuesday security updates address four high and critical vulnerabilities in Microsoft Exchange Server that were reported by the NSA. Microsoft patch Tuesday security updates released today have addressed four critical and high severity vulnerabilities in Exchange Server (CVE-2021-28480, CVE-2021-28481, CVE-2021-28482, CVE-2021-28483), some
Publish At:2021-04-13 18:09 | Read:167 | Comments:0 | Tags:Uncategorized Hacking hacking news information security news

MS Patch Tuesday: NSA Reports New Critical Exchange Flaws

Just weeks after a wave of major in-the-wild zero-day attacks against Exchange Server installations globally, Microsoft is raising a fresh alarm for four new critical security flaws that expose businesses to remote code execution attacks.The four new Exchange Server vulnerabilities were fixed as part of this month’s Patch Tuesday bundle and because of the se
Publish At:2021-04-13 16:50 | Read:142 | Comments:0 | Tags:Endpoint Security Network Security NEWS & INDUSTRY Priva

Breaches Detected Faster, But Ransomware Surge a Major Factor: FireEye

Data from FireEye’s Mandiant incident response division shows that the time it takes organizations to detect a malicious hacker attack continues to drop, but it’s not only due to better threat detection capabilities. According to Mandiant, the surge in ransomware attacks, which are meant to be noisy and detected, is partially the reason for shorter dwel
Publish At:2021-04-13 16:50 | Read:94 | Comments:0 | Tags:NEWS & INDUSTRY Malware Cybercrime ransomware

Adobe addresses two critical vulnerabilities in Photoshop

Adobe has addressed security vulnerabilities in Adobe Photoshop, Adobe Digital Editions, Adobe Bridge, and RoboHelp. Adobe has fixed ten security vulnerabilities in Adobe Photoshop, Adobe Digital Editions, Adobe Bridge, and RoboHelp. Seven vulnerabilities have been rated as critical, some of them could be exploited by remote attackers to execute arbitr
Publish At:2021-04-13 14:14 | Read:94 | Comments:0 | Tags:Breaking News Security Adobe Hacking hacking news informatio

Experts released PoC exploit code for a critical RCE in QNAP NAS devices

The exploit code for a remote code execution vulnerability affecting QNAP network-attached storage (NAS) devices that run the Surveillance Station video management system is available online. An exploit for a remote code execution vulnerability affecting QNAP network-attached storage (NAS) devices was publicly released. The vulnerability, tracked as CV
Publish At:2021-04-13 13:25 | Read:186 | Comments:0 | Tags:Breaking News Hacking hacking news information security news

CISA Details Malware Found on Hacked Exchange Servers

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) this week published details on additional malware identified on compromised Microsoft Exchange servers, namely China Chopper webshells and DearCry ransomware.The malware operators target Exchange servers through a series of vulnerabilities that were made public on March 3, the same day Microsof
Publish At:2021-04-13 12:55 | Read:81 | Comments:0 | Tags:NEWS & INDUSTRY Virus & Threats Virus & Malware

Millions of devices impacted by NAME:WRECK flaws

Security experts disclosed nine flaws, collectively tracked as NAME:WRECK, affecting implementations of the DNS protocol in popular TCP/IP network communication stacks. Security researchers disclosed nine vulnerabilities, collectively tracked as NAME:WRECK, that affect implementations of the Domain Name System protocol in popular TCP/IP network communicat
Publish At:2021-04-13 10:19 | Read:90 | Comments:0 | Tags:Hacking Reports Security hacking news information security n

Expert publicly released Chromium-based browsers exploit demonstrated at Pwn2Own 2021

An Indian security researcher has published a proof-of-concept (PoC) exploit code for a vulnerability impacting Google Chrome and other Chromium-based browsers. The Indian security researcher Rajvardhan Agarwal has publicly released a proof-of-concept exploit code for a recently discovered vulnerability that affects Google Chrome, Microsoft Edge, and othe
Publish At:2021-04-13 06:24 | Read:149 | Comments:0 | Tags:Breaking News Hacking Chrome hacking news information securi

Expired certificate caused a Pulse Secure VPN global scale outage

Pulse Secure VPN users were not able to login due to the expiration of a code signing certificate used to digitally sign and verify software components. Pulse Secure VPN users were not able to login after a code signing certificate used to digitally sign and verify software components has expired. Multiple users have reported on Pulse Secure VPN commun
Publish At:2021-04-13 03:01 | Read:159 | Comments:0 | Tags:Breaking News Security Hacking hacking news information secu

Joker Android Trojan Lands in Huawei AppGallery App Store

Ten variants of the Joker Android Trojan managed to slip into the Huawei AppGallery app store and were downloaded by more than 538,000 users, according to new data from Russian anti-malware vendor Doctor Web.Also known as Bread, the Joker Trojan was first observed in 2017 when it was originally focused on SMS fraud. Last year, the malware was observed perfor
Publish At:2021-04-12 21:15 | Read:105 | Comments:0 | Tags:Disaster Recovery Endpoint Security Mobile Security Network

Two former NSA Officials appointed by Joe Biden for prominent cyber roles

President Joe Biden has appointed two former senior NSA officials for two prominent cyber roles in his administration. President Joe Biden has assigned to two former senior National Security Agency (NSA) officials key cyber roles in his administration. The first name was John Chris Inglis, who was nominated as the first-ever National Cyber Director, a
Publish At:2021-04-12 17:50 | Read:112 | Comments:0 | Tags:Breaking News Intelligence Hacking hacking news information

IcedID Trojan Operators Experimenting With New Delivery Methods

The threat actors behind the IcedID Trojan are experimenting with various delivery methods to increase efficiency, including sending malicious messages from web-based contact forms.First observed in 2017 and also referred to as BokBot, IcedID is a banking Trojan that features a modular design and which is often used in combination with ransomware and RATs, t
Publish At:2021-04-12 17:20 | Read:139 | Comments:0 | Tags:NEWS & INDUSTRY Virus & Threats Virus & Malware

Microsoft is open sourcing CyberBattleSim Enterprise Environment Simulator

Microsoft released as open-source the ‘CyberBattleSim Python-based toolkit which is an Enterprise Environment Simulator. Microsoft has recently announced the open-source availability of the Python-based enterprise environment simulator. named ‘CyberBattleSim.’ “CyberBattleSim is an experimentation research platform to investiga
Publish At:2021-04-12 14:44 | Read:204 | Comments:0 | Tags:Breaking News Security CyberBattleSim Deep Learning gamifica