HackDig : Dig high-quality web security articles for hackers

Juniper Networks addressed many issues in its products

Juniper Networks addressed several vulnerabilities in its firewalls, most of them can be exploited by attackers for denial-of-service (DoS) attacks. Juniper Networks addressed several vulnerabilities in its products, most of them can be exploited by attackers for denial-of-service (DoS) attacks. Half a dozen of the flaws are DoS issues that have been rate
Publish At:2020-07-10 17:15 | Read:77 | Comments:0 | Tags:Breaking News Hacking DOS hacking news information security

KingComposer fixes a reflected XSS impacting 100,000 WordPress sites

An XSS vulnerability in the KingComposer page builder for WordPress impacts 100,000 websites using the WordPress plugin.  Researchers at Wordfence Threat Intelligence team discovered a reflected cross-site scripting (XSS) vulnerability, tracked as CVE-2020-15299, in the KingComposer WordPress plugin that potentially impacts 100,000 websites.  KingCompo
Publish At:2020-07-10 09:25 | Read:87 | Comments:0 | Tags:Breaking News Hacking Security information security news IT

Researchers found allegedly intentional backdoors in FTTH devices from Chinese vendor C-Data

Two security researchers have found undocumented Telnet admin account accounts in 29 FTTH devices from Chinese vendor C-Data. Two security researchers have discovered undocumented Telnet admin account accounts in 29 Fiber-To-The-Home (FTTH) devices from Chinese vendor C-Data. The CDATA OLTs are sold under different brands, including Cdata, OptiLink, V-
Publish At:2020-07-10 09:25 | Read:109 | Comments:0 | Tags:Breaking News Hacking CDATA DOS hacking news information sec

Pre-Installed malware spotted on other Android phones sold in US

Researchers from Malwarebytes have found yet another phone with pre-installed malware via the Lifeline Assistance program sold in the United States. Researchers at Malwarebytes have found malware pre-installed on smartphones sold in the United States, this is the second time as documented in a report published in January. In January, Malwarebytes resea
Publish At:2020-07-10 05:40 | Read:135 | Comments:0 | Tags:Breaking News Malware Mobile Android Hacking hacking news in

Zoom is working on a patch for a zero-day in Windows client

Researchers from cyber-security firm ACROS Security have disclosed a zero-day vulnerability in the Windows client of the popular Zoom video conferencing platform. Researchers from cyber-security firm ACROS Security have disclosed a zero-day vulnerability in the Windows client of the video conferencing software Zoom. The vulnerability is a remote code e
Publish At:2020-07-09 21:56 | Read:133 | Comments:0 | Tags:Breaking News Hacking information security news IT Informati

15 billion credentials available in the cybercrime marketplaces

More than 15 billion username and passwords are available on cybercrime marketplaces, including over 5 billion unique credentials, states the experts. A report published by security firm Digital Shadows revealed the availability of more than 15 billion credentials shared on cybercrime marketplaces, paste sites, file sharing services, and code sharing webs
Publish At:2020-07-09 10:21 | Read:130 | Comments:0 | Tags:Breaking News Cyber Crime Data Breach Deep Web Hacking ATO B

Palo Alto Networks addresses another high severity issue in PAN-OS devices

Palo Alto Networks addressed a new severe vulnerability in the PAN-OS GlobalProtect portal that impacts PAN next-generation firewalls. Recently Palo Alto Network addressed a critical vulnerability, tracked as CVE-2020-2021, affecting the PAN-OS operating system that powers its next-generation firewall. The flaw could allow unauthenticated network-based at
Publish At:2020-07-09 05:40 | Read:149 | Comments:0 | Tags:Breaking News Hacking hacking news information security news

Google Tsunami vulnerability scanner is now open-source

Google announced that its Tsunami vulnerability scanner for large-scale enterprise networks is going to be open-sourced. Google has decided to release as open-source a vulnerability scanner for large-scale enterprise networks named Tsunami. “We have released the Tsunami security scanning engine to the open source communities. We hope t
Publish At:2020-07-09 04:30 | Read:133 | Comments:0 | Tags:Breaking News Hacking Google hacking news information securi

DOJ indicts Fxmsp hacker for selling access to hacked businesses

The US Department of Justice has indicted a hacker named Fxmsp for hacking over three hundred organizations worldwide and selling access to their networks. The US Department of Justice has indicted a hacker that goes online with the moniker Fxmsp for hacking over three hundred organizations worldwide and selling access to their networks. According to t
Publish At:2020-07-08 15:03 | Read:158 | Comments:0 | Tags:Breaking News Cyber Crime Hacking DoJ hacking news informati

Threat actors found a way to bypass mitigation F5 BIG-IP CVE-2020-5902 flaw

Researchers have found a way to bypass F5 Networks mitigation for the actively exploited BIG-IP vulnerability, and hackers already used it. Researchers have found a way to bypass one of the mitigations proposed by F5 Networks for the actively exploited BIG-IP vulnerability. Unfortunately, threat actors in the wild were already using the bypass technique b
Publish At:2020-07-08 10:25 | Read:217 | Comments:0 | Tags:Breaking News Hacking CVE-2020-5902 F5 BIG-IP hacking news i

Malicious app in Google Play used to deliver Cerberus Banking Trojan

Experts found a tainted app in the Google Play store that was downloaded by more than 10,000 users and that was delivering the Cerberus banking Trojan. Researchers from AVAST have discovered a currency converter application in the Google Play store that was downloaded by more than 10,000 users and that was designed to deliver the Cerberus banking Trojan.
Publish At:2020-07-08 07:20 | Read:144 | Comments:0 | Tags:Breaking News Cyber Crime Malware Android banking Cerberus b

SentinelOne released free decryptor for ThiefQuest ransomware

Good news for the victims of the ThiefQuest (EvilQuest) ransomware, they can recover their encrypted files for free. The victims of the ThiefQuest (EvilQuest) ransomware victims can recover their encrypted files without needing to pay the ransom due to the availability of a free decryptor. Early July, security expert K7 Lab malware researcher Dinesh De
Publish At:2020-07-08 03:28 | Read:179 | Comments:0 | Tags:Breaking News Malware Hacking hacking news information secur

Project Freta, a free service that allows finding malware in OS memory snapshots

Microsoft launched Project Freta, a free service that allows users to find malware, including rootkit, in operating system memory snapshots. Microsoft has unveiled a new project, dubbed Project Freta, for the discovery of malicious code in operating system memory snapshots. The Project Freta is a cloud-based service that allows users to collect forensi
Publish At:2020-07-07 16:21 | Read:209 | Comments:0 | Tags:Breaking News Hacking hacking news information security news

Unsecured Chinese companies leak users’ sensitive personal and business data

Researchers at Cybernews uncovered two unsecured databases, with millions of records, belonging to Chinese companies. The original post available here: https://cybernews.com/security/unsecured-chinese-companies-leak-users-sensitive-personal-and-business-data/ Our research uncovered two unsecured databases, with millions of records, belonging to compani
Publish At:2020-07-07 04:18 | Read:110 | Comments:0 | Tags:Breaking News Data Breach Hacking hacking news information s

Ransomware infected systems at Xchanging, a DXC subsidiary

Systems at Xchanging, a subsidiary of Global IT services and solutions provider DXC Technology was hit by ransomware over the weekend. Global IT services and solutions provider DXC Technology disclosed a ransomware attack that infected systems at its Xchanging subsidiary. Xchanging is a business process and technology services provider and integrator,
Publish At:2020-07-07 04:18 | Read:203 | Comments:0 | Tags:Breaking News Cyber Crime Hacking hacking news information s

Announce

Share high-quality web security related articles with you:)

Tools