@HackReports profile picture
Hack Reports @HackReports
Joined July 2012
  • Tweets 1,590
  • Following 168
  • Followers 256
Photos and videos
Pinned Tweet
Hack Reports@HackReports
13 May 2020
For latest & most reliable news on #Hacking, #Cybersecurity, #DataBreach, #Malware, #Vulnerabilities, #Exploits and more from #TechWorld Join Telegram: t.me/hackreports We Promise: Genuine, In-Depth, Authentic Content No-Spam!!! #telegram #infosec #technologynews

ALT Join us on Telegram - Hack Reports

1
2
"Don't let admin credentials put your system at risk! Even though PAM solutions in theory make sense, they're often projects that take years to complete. Make sure to properly protect your accounts!" #Security #PAM #IdentityThreats thehackernews.com/2023/04/it…

"It's The Service Accounts, Stupid": Why Do PAM Deployments Take (almost) Forever To Complete?

Struggling with PAM deployments taking forever? Service accounts are the key obstacle! Discover how Silverfort streamlines the process, protecting you

thehackernews.com
54
Microsoft patches misconfigured Azure Active Directory service, which exposed high-impact apps, incl. the CMS powering Bing. Attackers could have launched XSS attacks on Bing users. #cybersecurity #Azure #Microsoft #CloudSecurity thehackernews.com/2023/04/mi…

Microsoft Fixes New Azure AD Vulnerability Impacting Bing Search and Major Apps

Microsoft patches Azure Active Directory misconfiguration issue, which exposed high-impact apps to unauthorized access.

thehackernews.com
79
Yikes! Critical security flaws in #Cacti, #Realtek, and #IBMAsperaFaspex are being exploited to deliver #MooBot and #ShellBot. CVE-2022-46169 and CVE-2021-35394 have high CVSS scores of 9.8. Patch now to stay safe! #CyberSecurity #hacking thehackernews.com/2023/04/ca…

Cacti, Realtek, and IBM Aspera Faspex Vulnerabilities Under Active Exploitation

Critical security flaws in Cacti, Realtek, and IBM Aspera Faspex are being exploited by hackers! Unpatched systems are at risk.

thehackernews.com
70
Woah! Heads up webmasters - threat actors are exploiting a security vulnerability in Elementor Pro v3.11.6 & earlier. Update to v3.11.7 immediately to improve code security & protect your site! #WordPress #security #HackAlert #ElementorPro thehackernews.com/2023/04/ha…

Hackers Exploiting WordPress Elementor Pro Vulnerability: Millions of Sites at Risk!

A recently patched security vulnerability in the Elementor Pro website builder plugin for WordPress is being exploited.

thehackernews.com
35
Check it out: APT actor Winter Vivern is still targetting gov't entities in Europe & US. They've been using an unpatched Zimbra vulnerability to gain access to their email mailboxes since Feb 2023. #CyberSecurity #CyberEspionage #WinterVivern thehackernews.com/2023/03/wi…

Winter Vivern APT Targets European Government Entities with Zimbra Vulnerability

Cyber espionage group Winter Vivern targets officials in Europe & US. The threat actor, known as TA473, exploits unpatched Zimbra vulnerabilities in g

thehackernews.com
39
"Big news! Cyber Police of #Ukraine & police from #Czechia have arrested 12 cybercriminals responsible for over 100 phishing sites targeting European users. #cybersecurity #dataprotection #crime" thehackernews.com/2023/03/cy…

Cyber Police of Ukraine Busted Phishing Gang Responsible for $4.33 Million Scam

Ukraine's Cyber Police and Czechia's law enforcement officials for working together to bust a phishing gang that targeted European users.

thehackernews.com
70
Don't be caught unaware of a security incident! Join the upcoming SANS Institute webinar and learn the 6 components of an effective incident response plan. #Security #IncidentResponse #SANSWebinar thehackernews.com/2023/03/de…

Deep Dive Into 6 Key Steps to Accelerate Your Incident Response

Deep Dive Into 6 Key Steps to Accelerate Your Incident Response | Read more hacking news on The Hacker News cybersecurity news website and learn how to protect against cyberattacks and software...

thehackernews.com
27
Oh no! #3CX has confirmed multiple versions of its desktop app for Windows & macOS were affected by a #supplychain attack. The company is engaging the services of Mandiant to investigate - keep an eye out for updates! #security #cybersecurity thehackernews.com/2023/03/3c…

3CX Supply Chain Attack — Here's What We Know So Far

3CX, has confirmed that multiple versions of its desktop app for Windows and macOS have been affected by a supply chain attack.

thehackernews.com
56
RedGolf, a Chinese state-sponsored threat actor group, has been discovered using a custom Windows/Linux backdoor called KEYPLUG to attack a range of industries. Keep an eye out for suspicious activity to protect your data! #Cybersecurity #DataSafety thehackernews.com/2023/03/ch…

Chinese RedGolf Group Targeting Windows and Linux Systems with KEYPLUG Backdoor

RedGolf, a highly-likely Chinese state-sponsored threat group, is using a new custom backdoor called KEYPLUG to target multiple sectors.

thehackernews.com
1
53
Oh no! Researchers have uncovered a design flaw in the #IEEE802.11 Wi-Fi protocol standard, impacting Linux, FreeBSD, Android and iOS. Attackers can hijack TCP connections or intercept traffic. #cybersecurity #cyberattack #infosec thehackernews.com/2023/03/ne…

New Wi-Fi Protocol Security Flaw Affecting Linux, Android and iOS Devices

A group of academics has discovered a fundamental flaw in the IEEE 802.11 Wi-Fi protocol standard affecting Linux, FreeBSD, Android, and iOS.

thehackernews.com
1
2
107
"Multi-cloud by design" & the supercloud is an ecosystem of coordinated cloud systems providing benefits like increased scale & resiliency. Even security teams can now jump on board! #MultiCloudStorage #Security #DataManagement thehackernews.com/2023/03/cy…

Cyberstorage: Leveraging the Multi-Cloud to Combat Data Exfiltration

Worried about data security in a multi-cloud environment? Cyberstorage could be the solution you've been looking for.

thehackernews.com
19
Heads up #cybersec pros! Keep an eye out for AlienFox, a new "comprehensive toolset" being spread on Telegram used to harvest creds from cloud service providers. Don't let it enable & expand malicious campaigns! #security #cyberattack #APISecurity thehackernews.com/2023/03/al…

AlienFox Malware Targets API Keys and Secrets from AWS, Google, and Microsoft Cloud Services

AlienFox, a highly modular & constantly evolving toolset distributed on Telegram, enables attackers to harvest API keys & secrets from cloud services.

thehackernews.com
46
Calling all #cybersecurity experts! 3CX is working on an update to protect against an active supply chain attack targeting downstream customers using digitally signed installers. Stay safe and stay informed! #cyberattack #security thehackernews.com/2023/03/3c…

3CX Desktop App Supply Chain Attack Leaves Millions at Risk - Urgent Update on the Way!

Active supply chain attack targets popular voice & video conferencing software 3CX Desktop App, affecting hundreds of well-known brands.

thehackernews.com
79
Woah! #TAG just revealed two highly targeted campaigns using zero-day vulnerabilities to target Android & iOS devices. Watch out for unpatched devices to protect your data! #security #zeroday #Android #iOS thehackernews.com/2023/03/sp…

Spyware Vendors Caught Exploiting Zero-Day Vulnerabilities on Android and iOS Devices

Google's TAG reveals commercial spyware vendors exploited zero-day vulnerabilities to target Android and iOS devices

thehackernews.com
34
Uh oh! A new #malware called Mélofée has been linked to a Chinese state-sponsored hacking group & is capable of dropping a kernel-mode rootkit. It's been found on Linux servers since early 2022. #CyberSecurity #Hacking #Linux #Rootkit #MalwareAlert thehackernews.com/2023/03/me…

Mélofée: Researchers Uncover New Linux Malware Linked to Chinese APT Groups

A new Chinese state-sponsored hacking group is targeting Linux servers with novel malware called Mélofée.

thehackernews.com
56
API use has skyrocketed in the auto industry, making them a highly vulnerable target for attackers. 90% of web app attack surfaces come from APIs - smart mobility is no exception. #APISecurity #SmartMobility thehackernews.com/2023/03/sm…

Smart Mobility has a Blindspot When it Comes to API Security

Smart mobility services are seeing a surge in API-based incidents, with a 380% increase in 2022 compared to 2021, according to a recent report.

thehackernews.com
18
Protect your data and reduce laborious tasks with these 4 ways to create a reverse malware analysis lab! Discover #security tips and tricks to keep your environment safe and secure. #MalwareAnalysis #ReverseMalwareAnalysis thehackernews.com/2023/03/ho…

4 Steps to Creating a Powerful Research Lab for Reverse Engineering

Creating a malware analysis lab doesn't have to be complicated or expensive. Explore different options like virtualization, dedicated hardware.

thehackernews.com
26
Check out this phishing campaign linked to APT group SideCopy! It's targeting the Defence Research and Development Organization (DRDO) of India, delivering the dangerous Action RAT. Stay safe & vigilant! #APT #DRDO #India #CyberSecurity #CyberAwareness thehackernews.com/2023/03/pa…

Pakistan-Origin SideCopy Linked to New Cyberattack on India's Ministry of Defence

APT group SideCopy, known for targeting India & Afghanistan, has launched a new phishing campaign delivering Action RAT.

thehackernews.com
112
Watch out! Cybercriminals have been spotted using two new variants of the IcedID malware with reduced abilities - it can still deliver ransomware though, so stay vigilant! #IcedID #CyberSecurity #Ransomware thehackernews.com/2023/03/ic…

IcedID Malware Shifts Focus from Banking Fraud to Ransomware Delivery

New IcedID Lite and Forked malware variants discovered! Threat actors pivot away from banking fraud functionality to focus on payload delivery.

thehackernews.com
62
Malicious actors are leveraging AI & ML to quickly adapt to changing political, technological, & regulatory environments. Organizations should be aware of these emerging threats for better security. #CyberSecurity #DataSecurity #AI #ML #EmergingThreats thehackernews.com/2023/03/br…

Breaking the Mold: Pen Testing Solutions That Challenge the Status Quo

Emerging cyber threats you need to be aware of: AI & ML automation, cloud-based tech exploitation, rising ransomware & phishing attacks, IoT attacks,

thehackernews.com
1
25
Load more