HackDig : Dig high-quality web security articles for hackers

Expert earns $100,000 for ‘Sign in with Apple’ authentication bypass bug

The expert Bhavuk Jain received an award of $100,000 for reporting a severe security issue in ‘Sign in with Apple’ authentication bypass bug that could allow the takeover of third-party user accounts.  The bug hunter Bhavuk Jain received an award of $100,000 by Apple, as part of its bug bounty program, for reporting a severe vulnerability that could allow
Publish At:2020-06-01 18:57 | Read:45 | Comments:0 | Tags:Breaking News Hacking Apple Bug Bounty information security

VMware addresses Fusion flaw introduced in the attempt to fix CVE-2020-3950 issue

VMware has released an update to address a privilege escalation flaw in VMware for the macOS version of Fusion that was introduced by a previous patch. In March, VMware patched a high-severity privilege escalation vulnerability (CVE-2020-3950) in Fusion, Remote Console (VMRC) and Horizon Client for Mac. The CVE-2020-3950 is a privilege escalation vuln
Publish At:2020-06-01 11:13 | Read:90 | Comments:0 | Tags:Breaking News Security CVE-2020-3950 Hacking IT Pierluigi Pa

KingNull leaks DB of Daniel’s Hosting dark web hosting provider

Earlier this year a hacker breached Daniel’s Hosting, the largest free web hosting provider for dark web hidden services and now leaked its DB. A threat actor has leaked the database of Daniel’s Hosting (DH), the largest free web hosting provider for dark web hidden services. The hacker has stolen the data in March when he breached the host
Publish At:2020-06-01 07:22 | Read:42 | Comments:0 | Tags:Breaking News Data Breach Deep Web Hacking Dark Web data lea

The team behind the Joomla CMS discloses a data breach

Maintainers at the Joomla open-source content management system (CMS) announced a security breach that took place last week. Last week a member of the Joomla Resources Directory (JRD) team left an unencrypted full backup of the JRD site (resources.joomla.org) on an unsecured Amazon Web Services S3 bucket operated by the company. The company did not re
Publish At:2020-06-01 07:22 | Read:53 | Comments:0 | Tags:Breaking News Data Breach data leak Hacking information secu

Anonymous demands justice for George Floyd and threatens attacks

The hacktivist collective group Anonymous demands justice for George Floyd and threatens to ‘expose the many crimes’ of Minneapolis Police. Anonymous demands justice for George Floyd and threatens to ‘expose the many crimes’ of Minneapolis Police. George Floyd was killed by a white police officer by kneeling on his neck for more than eight minutes. We
Publish At:2020-05-31 16:23 | Read:150 | Comments:0 | Tags:Breaking News Hacking Hacktivism Anonymous George Floyd it s

ENISA published “Proactive detection – Measures and information sources” report

EU Agency for Cybersecurity ENISA has published a new report of the proactive detection of incidents, including measures and information sources. The EU Agency for Cybersecurity ENISA has published a new report and accompanying repository on measures and information sources that could help security experts and operators of IT and critical infrastructure t
Publish At:2020-05-31 12:03 | Read:100 | Comments:0 | Tags:Breaking News Reports Security ENISA Hacking information sec

Coronavirus-themed attacks May 24 – May 30, 2020

This post includes the details of the Coronavirus-themed attacks launched from May 24 to May 30, 2020. Threat actors exploit the interest in the Coronavirus outbreak while infections increase worldwide, experts are observing new campaigns on a daily bases. Below a list of attacks detected this week. May 26 – Hangzhou could permanently adopt CO
Publish At:2020-05-31 07:55 | Read:135 | Comments:0 | Tags:Breaking News Cyber Crime Cyber warfare Hacking Malware coro

Over 100K+ WordPress sites using PageLayer plugin exposed to hack

Two security flaws in the PageLayer WordPress plugin can be exploited to potentially wipe the contents or take over WordPress sites. Security experts from WordFence discovered two high severity security vulnerabilities in the PageLayer WordPress plugin that could potentially allow attackers to wipe the contents or take over WordPress sites using vulnerabl
Publish At:2020-05-31 04:48 | Read:130 | Comments:0 | Tags:Breaking News Hacking hacking news it security it security a

A New York man was charged with stealing credit card data via SQL Injection attacks

The US DoJ announced that a New York City man was charged with hacking, credit card trafficking, and money laundering conspiracies. New York City man Vitalii Antonenko (28) was charged with hacking, credit card trafficking, and money laundering conspiracies, states the US DoJ. The man was arrested in March 2019 and detained after his arrival from Ukrai
Publish At:2020-05-30 16:46 | Read:105 | Comments:0 | Tags:Breaking News Cyber Crime credit card Hacking Information Se

API Security and Hackers: What’s the Need?

API Security – There is a considerable demand for data-centric projects, that is why companies have quickly opened their data to their ecosystem through REST or SOAP APIs. APIs work as doors for a company – closely guarding data of an organization. However, there are some challenges created: how do we hold the doors open to the world while simultane
Publish At:2020-05-30 16:46 | Read:88 | Comments:0 | Tags:Breaking News Hacking Security Cybersecurity information sec

NetWalker ransomware gang threatens to release Michigan State University files

Michigan State University is the last victim of the NetWalker ransomware, attackers threaten to leak stolen files if it will not pay the ransom in seven days. Michigan State University hit by ransomware gang, NetWalker ransomware operators are threatening to leak stolen files if the university will not pay the ransom in seven days. At the time of writi
Publish At:2020-05-30 16:45 | Read:113 | Comments:0 | Tags:Breaking News Cyber Crime Hacking Malware it security it sec

A new COVID-19-themed campaign targets Italian users

Security researchers uncovered a new COVID-19-themed campaign targeting users of the National Institute for Social Security (INPS). Security experts from D3Lab have uncovered a new COVID-19-themed phishing campaign that is targeting the users of the Italian National Institute for Social Security (INPS). Like a previous campaign observed in early Apri
Publish At:2020-05-30 16:45 | Read:126 | Comments:0 | Tags:Breaking News Cyber Crime Hacking Malware Mobile Android cor

ICT solutions provider NTT Com discloses security breach

NTT Communications (NTT Com), a subsidiary of tech giant NTT Corp, disclosed a data breach that impacted hundreds of customers. NTT Communications (NTT Com), a subsidiary of the tech giant NTT Corp, disclosed a data breach that impacted hundreds of customers. NTT Com provides network management, security and solution services[3] to consumers,
Publish At:2020-05-29 16:15 | Read:217 | Comments:0 | Tags:Breaking News Data Breach Hacking information security news

Steganography in targeted attacks on industrial enterprises in Japan and Europe

Threat actors targeted industrial suppliers in Japan and several European countries in sophisticated attacks, Kaspersky reported. Researchers from Kaspersky’s ICS CERT unit reported that threat actors targeted industrial suppliers in Japan and several European countries in sophisticated attacks. The experts first observed the attacks in early 2020, whi
Publish At:2020-05-29 06:01 | Read:97 | Comments:0 | Tags:Breaking News Hacking Malware hacking news industrial contro

An archive with 20 Million Taiwanese’ citizens leaked in the dark web

Security experts from Cyble discovered in the dark web a database containing details of over 20 Million Taiwanese citizens. A few weeks ago, threat intelligence firm Cyble discovered in the dark web a database containing details of over 20 Million Taiwanese citizens. According to the experts, the leak includes government data of an entire country, it w
Publish At:2020-05-29 06:01 | Read:120 | Comments:0 | Tags:Breaking News Cyber Crime Deep Web Hacking Dark Web informat

Announce

Share high-quality web security related articles with you:)

Tools

Tag Cloud