The Hacker News11h
Thai Officials Targeted in Yokai Backdoor Campaign Using DLL Side-Loading Techniques
DLL side-loading delivers Yokai backdoor targeting Thai officials, leveraging spear-phishing lures and persistent malware ...
The Hacker News9h
Germany Disrupts BADBOX Malware on 30,000 Devices Using Sinkhole Action
Germany's BSI disrupts BADBOX malware targeting 30,000 devices, halting ad fraud, data theft, and proxy misuse.
The Hacker News11h
New Linux Rootkit PUMAKIT Uses Advanced Stealth Techniques to Evade Detection
PUMAKIT, a stealthy Linux rootkit, uses syscall hooking, memory-resident execution, and advanced privilege escalation ...
The Hacker News11h
FBI Busts Rydox Marketplace with 7,600 PII Sales, Cryptocurrency Worth $225K Seized
"The Rydox marketplace has conducted over 7,600 sales of personally identifiable information (PII), stolen access devices, ...
The Hacker News11h
390,000+ WordPress Credentials Stolen via Malicious GitHub Repository Hosting PoC Exploits
The yawpp GitHub project is said to have enabled the exfiltration of over 390,000 credentials, likely for WordPress accounts, ...
The Hacker News1d
DoJ Indicts 14 North Koreans for $88M IT Worker Fraud Scheme Over Six Years
The U.S. Department of Justice (DoJ) has indicted 14 nationals belonging to the Democratic People's Republic of Korea (DPRK ...
The Hacker News1d
Iran-Linked IOCONTROL Malware Targets SCADA and Linux-Based IoT Platforms
The malware has been codenamed IOCONTROL by OT cybersecurity company Claroty, highlighting its ability to attack IoT and ...
The Hacker News1d
Critical OpenWrt Vulnerability Exposes Devices to Malicious Firmware Injection
The vulnerability, tracked as CVE-2024-54143, carries a CVSS score of 9.3 out of a maximum of 10, indicating critical ...
The Hacker News2d
SaaS Budget Planning Guide for IT Professionals
SaaS budgets are wasted, costing $1,000–$3,500 per employee. Reclaim costs, boost ROI, and plan for 2025 effectively.
The Hacker News2d
Researchers Uncover Symlink Exploit Allowing TCC Bypass in iOS and macOS
Apple patches CVE-2024-44131, a TCC bypass vulnerability enabling malicious apps to access sensitive data via symlink ...
The Hacker News2d
U.S. Charges Chinese Hacker for Exploiting Zero-Day in 81,000 Sophos Firewalls
Chinese hacker charged for exploiting Sophos firewalls via CVE-2020-12271; U.S. sanctions cybersecurity firm Sichuan Silence.
The Hacker News1d
Europol Dismantles 27 DDoS Attack Platforms Across 15 Nations; Admins Arrested
PowerOFF dismantles 27 DDoS stresser services, arrests administrators, and exposes CDN/WAF misconfiguration risks.