HackDig : Dig high-quality web security articles

Emotet directly drops Cobalt Strike beacons without intermediate Trojans

The Emotet malware continues to evolve, in the latest attacks, it directly installs Cobalt Strike beacons to give the attackers access to the target network. Emotet malware now directly installs Cobalt Strike beacons to give the attackers immediate access to the target network and allow them to carry out malicious activities, such as launching ransonware
Publish At:2021-12-08 03:01 | Read:112 | Comments:0 | Tags:Breaking News Cyber Crime Malware Cybersecurity cybersecurit

Magnat malvertising campaigns spreads malicious Chrome extensions, backdoors and info stealers

Experts spotted a series of malvertising campaigns using fake installers of popular apps and games to deliver a backdoor and a malicious Chrome extension. Talos researchers spotted a series of malvertising campaigns using fake installers of popular apps and games as a lure to trick users into downloading a new backdoor and an undocumented malicious Google
Publish At:2021-12-06 06:23 | Read:87 | Comments:0 | Tags:Breaking News Cyber Crime Hacking Malware backdoor Chrome ex

German BSI agency warns of ransomware attacks over Christmas holidays

German BSI warns of ransomware attacks over the Christmas and end-of-year holidays, fearing Emotet return and attacks on Microsoft Exchange servers. The German cybersecurity authority BSI warns of ransomware attacks over the Christmas holidays, fearing the return of the Emotet botnet return. During this period offices are often closed and employees are at
Publish At:2021-12-05 06:23 | Read:220 | Comments:0 | Tags:Breaking News Cyber Crime Hacking Malware BSI Cybersecurity

KAX17 threat actor is attempting to deanonymize Tor users running thousands of rogue relays

Since 2017, an unknown threat actor has run thousands of malicious Tor relay servers in the attempt to unmask Tor users. A mysterious threat actor, tracked as KAX17, has run thousands of malicious Tor relay servers since 2017 in an attempt to deanonymize Tor users. KAX17 ran relay servers in various positions within the Tor network, including entry an
Publish At:2021-12-03 16:25 | Read:346 | Comments:0 | Tags:Breaking News Hacking APT Cybersecurity cybersecurity news h

Watch out for Omicron COVID-19-themed phishing messages!

Threat actors have started to exploit the interest in the Omicron COVID-19 variant and are using it as a lure in phishing campaigns. Crooks have already started exploiting the interest in the Omicron COVID-19 variant and are using it as a lure in phishing attacks. People are interested in the spreading of the new variant, the efficiency of the vaccine
Publish At:2021-12-03 06:23 | Read:311 | Comments:0 | Tags:Breaking News Cyber Crime COVID-19 Cybersecurity cybersecuri

NginRAT – A stealth malware targets e-store hiding on Nginx servers

Threat actors are targeting e-stores with remote access malware, dubbed NginRAT, that hides on Nginx servers bypassing security solutions. Researchers from security firm Sansec recently discovered a new Linux remote access trojan (RAT), tracked as CronRAT, that hides in the Linux task scheduling system (cron) on February 31st. CronRAT is employed in 
Publish At:2021-12-02 13:00 | Read:216 | Comments:0 | Tags:Breaking News Cyber Crime Malware Cybersecurity cybersecurit

New RTF Template Inject technique used by APT groups in recent attacks

Nation-state actors from China, India, and Russia, were spotted using a novel RTF template injection technique in recent attacks. APT groups from China, India, and Russia have used a new RTF (rich text format) template injection technique in recent phishing attacks. The technique was first reported by the security firm Proofpoint spotted which observe
Publish At:2021-12-01 13:00 | Read:249 | Comments:0 | Tags:APT Breaking News Hacking Cybersecurity cybersecurity news h

Sabbath Ransomware target critical infrastructure in the US and Canada

Sabbath ransomware is a new threat that has been targeting critical infrastructure in the United States and Canada since June 2021. A new ransomware group called Sabbath (aka UNC2190) has been targeting critical infrastructure in the United States and Canada since June 2021. According to Mandiant researchers, the group is a rebrand of Arcane and Eruption
Publish At:2021-12-01 06:23 | Read:195 | Comments:0 | Tags:Breaking News Cyber Crime Malware Cybersecurity cybersecurit

Play the Opera Please – Opera patches a flaw in their turbo servers

Opera released a mini patch for a vulnerability in their turbo servers that dates back to 2018. Prior approval are taken from Opera security team before disclosing this issue! Before we get started there are few things which we need to understand such as, Value added service (VAS): Value added services (VAS) is a popular telecommunications term for
Publish At:2021-11-30 18:11 | Read:265 | Comments:0 | Tags:Breaking News Hacking Cybersecurity cybersecurity news hacki

New EwDoor Botnet is targeting AT&T customers

360 Netlab experts spotted a new botnet dubbed EwDoor that infects unpatched AT&T enterprise network edge devices. Experts from Qihoo 360’s Network Security Research Lab discovered a new botnet, dubbed EwDoor, that targets AT&T customers using EdgeMarc Enterprise Session Border Controller (ESBC) edge devices that are publicly exposed to the
Publish At:2021-11-30 15:50 | Read:231 | Comments:0 | Tags:Breaking News Cyber Crime Malware btnet Cybersecurity cybers

Critical Printing Shellz flaws impact 150 HP multifunction printer models

Researchers discovered a critical wormable buffer overflow vulnerability that affects 150 different HP multifunction printer models (MFPs). Cybersecurity researchers from F-Secure have discovered two critical vulnerabilities, collectively tracked as Printing Shellz, that impact approximately 150 multifunction printer models. The vulnerabilities can be
Publish At:2021-11-30 13:00 | Read:259 | Comments:0 | Tags:Breaking News Hacking Cybersecurity cybersecurity news hacki

Panasonic confirmed that its network was illegally accessed by attackers

Panasonic disclosed a security breach after threat actors gained access to its servers storing potentially sensitive information. Japanese electronics giant Panasonic disclosed a security breach after threat actors gained access to some servers of the company containing sensitive data. The company discovered the intrusion on November 11 and immediatel
Publish At:2021-11-29 18:10 | Read:210 | Comments:0 | Tags:Breaking News Cyber Crime Data Breach Cybersecurity cybersec

Israel cut cyber export list, excluding totalitarian regimes

Israel’s Ministry of Defense bans the sale of surveillance software and offensive hacking tools to tens of countries. Israel’s Ministry of Defense has cut the list of countries to which Israeli surveillance and cybersecurity firms could sell their products and services. 65 countries have been excluded from the export list, which now includ
Publish At:2021-11-29 06:22 | Read:305 | Comments:0 | Tags:Breaking News Laws and regulations Cybersecurity cybersecuri

French court indicted Nexa Technologies for complicity in acts of torture

Nexa Technologies was indicted for complicity in acts of torture, the French firm is accused of having sold surveillance equipment to the Egypt. Nexa Technologies offers a range of solutions for homeland security, including surveillance solutions. Now the French company was accused of having sold surveillance software to the Egyptian regime. The cybers
Publish At:2021-11-28 20:10 | Read:321 | Comments:0 | Tags:Breaking News Intelligence Laws and regulations Cybersecurit

Security Affairs newsletter Round 342

A new round of the weekly Security Affairs newsletter arrived! Every week the best security articles from Security Affairs free for you in your email box. If you want to also receive for free the newsletter with the international press subscribe here. Italy’s Antitrust Agency fines Apple and Google for aggressive practices of data acquisitionHAEICH
Publish At:2021-11-28 10:18 | Read:275 | Comments:0 | Tags:Breaking News Cybersecurity cybersecurity news Hacking hacki

Announce

Share high-quality web security related articles with you:)
Tell me why you support me <3