The Hacker News6h
Muhstik Botnet Exploiting Apache RocketMQ Flaw to Expand DDoS Attacks
Muhstik DDoS botnet is exploiting a critical vulnerability (CVE-2023-33246) in Apache RocketMQ to infect servers.
The Hacker News9h
Hackers Exploit Legitimate Packer Software to Spread Malware Undetected
Threat actors are now exploiting legitimate packer software to distribute malware. Learn how BoxedApp is being abused to ...
The Hacker News14h
Hackers Target Python Developers with Fake "Crytic-Compilers" Package on PyPI
Attention Python developers! A malicious package named "crytic-compilers" was found on PyPI, delivering the Lumma information ...
The Hacker News9h
Prevent Account Takeover with Better Password Security
This is a common account takeover scenario where malicious attackers gain unauthorized access to the organization's systems, ...
The Hacker News12h
Google Maps Timeline Data to be Stored Locally on Your Device for Privacy
Google has announced plans to store Maps Timeline data locally on users' devices instead of their Google account effective ...
The Hacker News1d
Zyxel Releases Patches for Firmware Vulnerabilities in EoL NAS Models
Critical updates released for NAS326 and NAS542 devices address severe vulnerabilities that could allow unauthenticated ...
The Hacker News1d
Rebranded Knight Ransomware Targeting Healthcare and Businesses Worldwide
Knight (aka Cyclops 2.0) ransomware first arrived in May 2023, employing double extortion tactics to steal and encrypt ...
The Hacker News1d
Chinese State-Backed Cyber Espionage Targets Southeast Asian Government
An unnamed high-profile government organization in Southeast Asia emerged as the target of a "complex, long-running" Chinese ...
The Hacker News1d
Celebrity TikTok Accounts Compromised Using Zero-Click Attack via DMs
A bug in TikTok allowed hackers to take control of high-profile accounts through a zero-click account takeover exploit.
The Hacker News2d
Oracle WebLogic Server OS Command Injection Flaw Under Active Attack
The U.S. cybersecurity agency has added Oracle WebLogic Server Vulnerability CVE-2017-3506 to its Known Exploited ...
The Hacker News2d
Snowflake Warns: Targeted Credential Theft Campaign Hits Cloud Customers
While a report from cybersecurity firm Hudson Rock previously implied that the breach of Ticketmaster and Santander Bank may ...
The Hacker News3d
Researcher Uncovers Flaws in Cox Modems, Potentially Impacting Millions
Researchers discovered authorization bypass vulnerabilities in Cox modems that could have allowed hackers to access and ...