The Hacker News29m
Chinese Hackers Use CloudScout Toolset to Steal Session Cookies from Cloud Services
ESET said the CloudScout modules are designed to hijack authenticated sessions in the web browser by stealing the cookies and ...
The Hacker News4h
BeaverTail Malware Resurfaces in Malicious npm Packages Targeting Developers
Contagious Interview refers to a yearlong-campaign undertaken by the Democratic People's Republic of Korea (DPRK) that ...
The Hacker News3h
Russian Espionage Group Targets Ukrainian Military with Malware via Telegram
A suspected Russian hybrid espionage and influence operation has been observed delivering a mix of Windows and Android ...
The Hacker News7h
Sailing the Seven Seas Securely from Port to Port – OT Access Security for Ships and Cranes
Operational Technology (OT) security has affected marine vessel and port operators, since both ships and industrial cranes ...
The Hacker News6h
Cybercriminals Use Webflow to Deceive Users into Sharing Sensitive Login Credentials
What makes Webflow a lot more appealing than Cloudflare R2 or Microsoft Sway is that it allows users to create custom ...
The Hacker News6h
THN Cybersecurity Recap: Top Threats, Tools and News (Oct 21 - Oct 27)
AI manipulation, cloud storage flaws, and a major AWS vulnerability - this week's cybersecurity recap is packed!
The Hacker News12h
Researchers Uncover OS Downgrade Vulnerability Targeting Microsoft Windows Kernel
ItsNotASecurityBoundary was first documented by Elastic Security Labs researcher Gabriel Landau in July 2024 alongside ...
The Hacker News2d
Four REvil Ransomware Members Sentenced in Rare Russian Cybercrime Convictions
Russian news publication Kommersant reported that a court in St. Petersburg found Artem Zaets, Alexei Malozemov, Daniil ...
The Hacker News2d
Notorious Hacker Group TeamTNT Launches New Cloud Attacks for Crypto Mining
TeamTNT launches new attacks on cloud environments, exploiting Docker vulnerabilities to mine cryptocurrency and rent out ...
The Hacker News4d
AWS Cloud Development Kit Vulnerability Exposes Users to Potential Account Takeover Risks
"On July 12, 2024, AWS released an update to the AWS Cloud Development Kit (AWS CDK) CLI that implemented additional security ...
The Hacker News2d
SEC Charges 4 Companies Over Misleading SolarWinds Cyber Attack Disclosures
SEC charges four companies for misleading disclosures regarding the SolarWinds cyberattack, imposing fines totaling $6 ...
The Hacker News5d
Ransomware Gangs Use LockBit's Fame to Intimidate Victims in Latest Attacks
"Attempts were made to disguise the Golang ransomware as the notorious LockBit ransomware," Trend Micro researchers Jaromir ...