The Hacker News3h
Experts Uncover 70,000 Hijacked Domains in Widespread 'Sitting Ducks' Attack Scheme
Cybercriminals exploit 'Sitting Ducks' attacks, hijacking thousands of domains for phishing and fraud, Infoblox reports.
The Hacker News21h
An Agent's Identity: Is Your Authentication AI-Proof?
AI agents challenge access control. Discover why new authentication frameworks are essential for secure, dynamic agent use ...
The Hacker News21h
Google Warns of Rising Cloaking Scams, AI-Driven Fraud, and Crypto Schemes
Google has revealed that bad actors are leveraging techniques like landing page cloaking to conduct scams by impersonating ...
The Hacker News11h
New RustyAttr Malware Targets macOS Through Extended Attribute Abuse
North Korean Lazarus Group uses extended macOS file attributes to deliver RustyAttr malware to unsuspecting users ...
The Hacker News10h
TikTok Pixel Privacy Nightmare: A New Case Study
Advertising on TikTok is the obvious choice for any company trying to reach a young market, and especially so if it happens ...
The Hacker News14h
Russian Hackers Exploit New NTLM Flaw to Deploy RAT Malware via Phishing Emails
The vulnerability in question, CVE-2024-43451 (CVSS score: 6.5), refers to an NTLM hash disclosure spoofing vulnerability ...
The Hacker News1d
Hamas-Affiliated WIRTE Employs SameCoin Wiper in Disruptive Attacks Against Israel
SameCoin is a bespoke wiper that was uncovered in February 2024 as used by a Hamas-affiliated threat actor to sabotage ...
The Hacker News1d
Microsoft Fixes 90 New Flaws, Including Actively Exploited NTLM and Task Scheduler Bugs
Microsoft’s November Patch Tuesday addresses 90 security flaws, including actively exploited NTLM and Task Scheduler ...
The Hacker News1d
Free Decryptor Released for BitLocker-Based ShrinkLocker Ransomware Victims
Romanian cybersecurity company Bitdefender has released a free decryptor to help victims recover data encrypted using the ...
The Hacker News1d
Comprehensive Guide to Building a Strong Browser Security Program
As a result, the browser also becomes a vulnerability that needs to be protected. LayerX has released a comprehensive guide ...
The Hacker News1d
OvrC Platform Vulnerabilities Expose IoT Devices to Remote Attacks and Code Execution
Snap One's OvrC, pronounced "oversee," is advertised as a "revolutionary support platform" that enables homeowners and ...
The Hacker News2d
State of SaaS Security Report: Bold Moves Required to Secure SaaS in 2024 and Beyond
Discover key SaaS security risks from unauthorized apps, AI adoption, and MFA gaps in the 2024 SaaS Security Report.