HackDig : Dig high-quality web security articles for hacker

Coronavirus-themed attacks March 29 – April 04, 2020

In this post, I decided to share the details of the Coronavirus-themed attacks launched from March 29 to April 04, 2020. Threat actors exploit the interest in the COVID19 outbreak while infections increase worldwide, experts are observing new campaigns on a daily bases. Below a list of attacks detected this week. March 30, 2020 – Your colleagu
Publish At:2020-04-05 06:40 | Read:66 | Comments:0 | Tags:Breaking News Cyber Crime Hacking Malware Security coronavir

Twitter discloses privacy issue that caused caching of files sent via DMs in Firefox

Twitter discloses a privacy issue in the way the Mozilla Firefox cached private files sent or received via DM for up to 7 days. Twitter admitted that the private files sent via Twitter DMs were cached inside the users’ Firefox browsers for up to seven days, even if users have logged off. The problem is related to the way the Mozilla Firefox web b
Publish At:2020-04-04 15:17 | Read:56 | Comments:0 | Tags:Breaking News Digital ID Security Social Networks Firefox in

Firefox 74.0.1 addresses two zero-days exploited in the wild

Mozilla releases Firefox version 74.0.1 to address two vulnerabilities exploited by threat actors in attacks in the wild, users should update their browsers asap. Mozilla is urging users to install the latest version of its browser, Firefox 74.0.1, which addresses two bugs that are being exploited in the wild by threat actors. The two vulnerabilities
Publish At:2020-04-04 15:17 | Read:117 | Comments:0 | Tags:Security Firefox Hacking hacking news it security it securit

Handling Malware Delivered Into .daa Files

Bad guys are always trying to use “exotic” file extensions to deliver their malicious payloads. If common dangerous extensions are often blocked by mail security gateways, there exists plenty of less common extensions. These days, with the COVID19 pandemic, we are facing a peak of phishing and scams trying to lure victims. I spotted one that uses
Publish At:2020-04-03 09:16 | Read:108 | Comments:0 | Tags:Malware Security Software DAA PowerISO

Zoom promises to improve its security and privacy as usage (and concern) soars

What’s happened?Well, Coronavirus 2019 (COVID-19) happened.Okay, smart alec. I know about that. What else is going on?Well, because so many people are (wisely) staying at home, they’re using videoconferencing and chat technology like Zoom to keep in touch with friends, family and colleagues.In fact, Zoom says that daily usage has soared from appr
Publish At:2020-04-02 13:24 | Read:112 | Comments:0 | Tags:Featured Articles IT Security and Data Protection Coronaviru

Microsoft issues targeted notification to hospitals vulnerable to Ransomware attacks

Microsoft is sending notifications to dozens of hospitals about vulnerable VPN devices and gateways exposed online in their network. Microsoft is warning dozens of hospitals of the risks of ransomware attacks due to insecure VPN devices and gateways exposed online. Recently Microsoft has published details about human-operated ransomware attacks that ta
Publish At:2020-04-02 06:11 | Read:161 | Comments:0 | Tags:Breaking News Cyber Crime Security COVID Hacking human-opera

Is Multiplayer Gaming Safe During the Quarantine?

As a result of the chaos caused by the coronavirus, hundreds of millions of people of all ages are voluntarily and sometimes involuntarily, grounded home. Streaming platforms have proven to be a haven for millions of people, but not everyone relies on Netflix and Apple TV+ to stay entertained. A big chunk of people has started exploring new horizons of onlin
Publish At:2020-04-01 05:41 | Read:160 | Comments:0 | Tags:Mobile News Security gaming

The Houseparty Hack – Fact or Fiction?

Since the global COVID-19 lockdown started, teens have been flocking to the Houseparty app. Houseparty allows users to create video call sessions so that multiple people can chat at once. At a time when social gatherings are banned, the ability to play games or simply hang out together has been invaluable. Why are people demanding we DELETE HOUSEPARTY? Over
Publish At:2020-03-31 06:25 | Read:127 | Comments:0 | Tags:Mobile News Mobile Security Security hacking houseparty

Microsoft Edge will warn users if their credentials have been compromised

Microsoft announced that it will add an alerting feature to Edge to warn users if their credentials saved to autofill have been compromised. Microsoft announced several new features for its Edge browser, including a new alerting service to warn users if the credentials they have saved to autofill have been compromised in a third-party data breach. 
Publish At:2020-03-31 04:51 | Read:126 | Comments:0 | Tags:Breaking News Security credential stuffing data breach Hacki

Now Is the Time to Get up to Speed with CMMC and SP 800-171 Rev 2

At the beginning of March 2020, Fifth Domain reported that Colorado-based aerospace, automotive and industrial parts manufacturer Visser Precision LLC had suffered a DoppelPaymer ransomware infection. Those behind this attack ultimately published information stolen from some of Visser’s customers. Those organizations included defense contractors Lockheed Mar
Publish At:2020-03-30 01:56 | Read:140 | Comments:0 | Tags:Government NIST 800-171 ransomware Secure Supply Chain secur

0patch releases free unofficial patches for Windows 0days exploited in the wild

ACROS Security’s 0patch service released unofficial patches for two Windows flaws actively exploited by attackers in the wild. ACROS Security’s 0patch service released unofficial patches for two Windows vulnerabilities actively exploited by attackers in the wild, both issues have yet to be fixed by Microsoft. A few days ago, Microsoft warned of hacker
Publish At:2020-03-27 14:00 | Read:162 | Comments:0 | Tags:Breaking News Security 0Patch Hacking information security n

Google issued 40,000 alerts of State-Sponsored attacks in 2019

Google announced to have warned users of almost 40,000 alerts of state-sponsored phishing or malware attacks during 2019. Google shared data on alerts related to state-sponsored attacks, the tech giant revealed that it issued almost 40,000 alerts of state-sponsored phishing or malware attacks to its users during 2019. The number of alerts decreased by
Publish At:2020-03-27 12:05 | Read:234 | Comments:0 | Tags:Breaking News Cyber warfare Hacking Malware Security Google

[SANS ISC] Malicious JavaScript Dropping Payload in the Registry

I published the following diary on isc.sans.edu: “Malicious JavaScript Dropping Payload in the Registry“: When we speak about “fileless” malware, it means that the malware does not use the standard filesystem to store temporary files or payloads. But they need to write data somewhere in the system for persistence or during the infe
Publish At:2020-03-27 11:30 | Read:261 | Comments:0 | Tags:Malware SANS Internet Storm Center Security SANS ISC

Operation Poisoned News: Hong Kong iOS users targeted with watering hole attacks

Operation Poisoned News – Experts observed a campaign aimed at infecting the iPhones of users in Hong Kong with an iOS backdoor that allows attackers to spy on them. Security experts at Trend Micro have observed a campaign aimed at infecting the iPhones of users in Hong Kong with an iOS backdoor tracked as lightSpy. Attackers used malicious l
Publish At:2020-03-26 18:10 | Read:285 | Comments:0 | Tags:Breaking News Hacking Malware Mobile Security information se

Thousands Of UK Loyalty Club Members Hacked

Customer loyalty programs are great – for providers and customers. In return for regular shopping, members receive various discounts and perks. At the same time, the shop gains all kinds of valuable data about your buying habits which they can use for targeted marketing purposes. Depending on the scheme they may also be able to re-sell some of that informati
Publish At:2020-03-26 09:18 | Read:190 | Comments:0 | Tags:Mobile News Security hacking attacks

Announce

Share high-quality web security related articles with you:)

Tools

Tag Cloud