HackDig : Dig high-quality web security articles for hackers

A zero-day in Windows 7 and Windows Server 2008 has yet to be fixed

Researcher discovers a zero-day vulnerability in Windows 7 and Windows Server 2008 while he was working on a Windows security tool. The French security researcher Clément Labro discovered a zero-day vulnerability was discovered while the security researcher was working on an update Windows security tool. The researcher was developing his own Windows pr
Publish At:2020-11-26 09:20 | Read:86 | Comments:0 | Tags:Breaking News Hacking hacking news information security news

Sophos 2021 Threat Report: Navigating cybersecurity in an uncertain world

byPaul DucklinWe know what you’re thinking: “Another year; another vendor; another threat report……and when I open it, I’ll be stuck in a thinly disguised product brochure.”Well, not this one.We’ve combined research from a number of threat prevention groups inside Sophos, including SophosLabs, Sophos Managed Threat Re
Publish At:2020-11-18 12:13 | Read:127 | Comments:0 | Tags:Android BEC Botnet Data loss Linux Machine Learning Malware

Microsoft Office Telemetry: Report Release

The German Federal Office for Information Security (orig., ger., Bundesamt für Sicherheit in der Informationstechnik – BSI) has published our report on Microsoft Office Telemetry. Microsoft has released a set of privacy settings for Office, one of which enables users to configure the type and amount of diagnostic (i.e., telemetry) data that Office may
Publish At:2020-11-17 12:40 | Read:136 | Comments:0 | Tags:Misc reversing Windows

Google discloses unpatched Windows zero-day exploited in the wild

Google researchers disclosed today a zero-day vulnerability in the Windows operating system that is currently under active exploitation. Security researchers from Google have disclosed a zero-day vulnerability in the Windows operating system, tracked as CVE-2020-17087, that is currently under active exploitation. Ben Hawkes, team lead for Google Projec
Publish At:2020-10-30 18:59 | Read:230 | Comments:0 | Tags:Breaking News Hacking Chrome Google information security new

Threat actors are actively exploiting Zerologon flaw, Microsoft warns

Microsoft researchers are warning that threat actors are continuing to actively exploit the ZeroLogon vulnerability in attacks in the wild. Microsoft is warning that threat actors are actively exploiting the ZeroLogon vulnerability in the Netlogon Remote Protocol. The CVE-2020-1472 flaw is an elevation of privilege that resides in the Netlogon. The Net
Publish At:2020-10-30 07:17 | Read:280 | Comments:0 | Tags:Breaking News Security Hacking hacking news information secu

GravityRAT and IPStorm: Mac Malware, Ported from Windows

Two malware threats that began on Windows—GravityRAT and IPStorm—are now available for Mac, Android, and Linux, too.So what does each malware family do? And what does this mean for the future of Mac malware? Read on for details.GravityRAT remote access TrojanAs the name implies, GravityRAT is a RAT: a remote access Trojan. A Windows version of GravityRAT was
Publish At:2020-10-23 13:31 | Read:221 | Comments:0 | Tags:Malware malware Windows

GravityRAT malware also targets Android and macOS

Researchers spotted new variants of the Windows GravityRAT spyware that now can also infect Android and macOS devices. Researchers from Kaspersky Lab have spotted new variants of the GravityRAT malware that now can be also used to infect Android and macOS devices. GravityRAT is a malware strain known for checking the CPU temperature of Windows computer
Publish At:2020-10-19 21:41 | Read:303 | Comments:0 | Tags:Breaking News Malware Android GravityRAT Hacking hacking new

Microsoft released out-of-band Windows fixes for 2 RCE issues

Microsoft released two out-of-band security updates to address remote code execution (RCE) bugs in the Microsoft Windows Codecs Library and Visual Studio Code. Microsoft has released two out-of-band security updates to address two remote code execution (RCE) vulnerabilities that affect the Microsoft Windows Codecs Library and Visual Studio Code. The tw
Publish At:2020-10-18 11:06 | Read:295 | Comments:0 | Tags:Breaking News Security Hacking hacking news information secu

Four npm packages found opening shells and collecting info on Linux, Windows systems

On Thursday, four JavaScript packages have been removed from the npm portal because they have been found containing malicious code. NPM staff removed four JavaScript packages from the npm portal because were containing malicious code. Npm is the largest package repository for any programming language. The four packages, which had a total of one thousan
Publish At:2020-10-17 13:50 | Read:259 | Comments:0 | Tags:Breaking News Hacking Malware hacking news information secur

Using a WordPress flaw to leverage Zerologon vulnerability and attack companies’ Domain Controllers

Using a WordPress flaw (File-Manager plugin–CVE-2020-25213) to leverage Zerologon (CVE-2020-1472) and attack companies’ Domain Controllers. Recently, a critical vulnerability called Zerologon – CVE-2020-1472 – has become a trending subject around the globe. This vulnerability would allow a malicious agent with a foothold on your internal network to es
Publish At:2020-10-07 02:30 | Read:261 | Comments:0 | Tags:Breaking News Hacking hacking news information security news

IPStorm botnet evolves to infect Android, Linux, and Mac devices

Researchers from Intezer reported that the IPStorm botnet has evolved to infect other operating systems, including Android, Linux, and Mac devices. The IPStorm botnet was first uncovered in May 2019 while targeting Windows systems, not experts from Intezer reported that the bot evolved to infect other platforms, including Android, Linux, and Mac devices.
Publish At:2020-10-02 17:12 | Read:464 | Comments:0 | Tags:Breaking News Hacking Malware Android IPStorm LINUX malware

Blast from the past! Windows XP source code allegedly leaked online

byPaul DucklinWe saw it in a tweet. How about you?pic.twitter.com/aNYt07qKsI— DEY! (@RoninDey) September 24, 2020 If the reports are to be believed, someone has just leaked a mega-torrent (pun intended – allegedly some of the files have also been uploaded to Kiwi file-sharing service Mega) of Microsoft source code going all the way back to MS-DOS
Publish At:2020-09-30 10:45 | Read:292 | Comments:0 | Tags:Data loss Microsoft leak Windows XP

Zerologon attack lets hackers to completely compromise a Windows domain

Zerologon attack allows threat actors to take over enterprise networks by exploiting the CVE-2020-1472 patched in the August 2020 Patch Tuesday. Administrators of enterprise Windows Servers have to install the August 2020 Patch Tuesday as soon as possible to protect their systems from Zerologon attack that exploits the CVE-2020-1472. The CVE-2020-1472
Publish At:2020-09-14 08:35 | Read:306 | Comments:0 | Tags:Breaking News Hacking domain controller hacking news informa

Serious Security: Hacking Windows passwords via your wallpaper

byPaul DucklinOur cybersecurity antennae always start vibrating when we see warnings about attacks that involve a new type of file.We’re sure you have the same sort of reaction.After all, if a file type that you’ve treated for years as mostly harmless suddenly turns out to be possibly very dangerous, you’re faced with a double dilemma: How
Publish At:2020-09-11 13:10 | Read:335 | Comments:0 | Tags:Phishing Vulnerability phishing serious security vulnerabili

Cisco addresses critical code execution flaw in Cisco Jabber for Windows

Cisco addressed a critical remote code execution vulnerability affecting multiple versions of its Cisco Jabber for Windows operating system. Cisco has addressed a critical severity remote code execution flaw, tracked as CVE-2020-3495, that affects multiple versions of Cisco Jabber for Windows. Cisco Jabber for Windows is a desktop collaboration client
Publish At:2020-09-02 17:23 | Read:418 | Comments:0 | Tags:Breaking News Hacking Security CISCO Cisco Jabber hacking ne

Tools