Hacking Archives - Page 426 of 957

Pierluigi Paganini April 06, 2020

Hackers target Docker servers to deploy the new Kinsing cryptocurrency miner

Experts uncovered a hacking campaign that is breaching Docker clusters to deploy a new crypto-mining malware tracked as Kinsing. Cloud security firm Aqua Security uncovered a hacking campaign carried out during the past months, hackers are scanning the Internet for Docker servers running API ports exposed without a password. Then the attackers break into the […]

Pierluigi Paganini April 05, 2020

Popular OGUsers hacking forum breached for the second time in a year

OGUsers, one of the most popular hacking forums, was hacked again, it is the second security breach it has suffered in a year. The popular hacking forum OGUsers was hacked again, it is the second security breach it has suffered in a year, the news was first reported by ZDNet. OGUsers is a black marketplace […]

Pierluigi Paganini April 05, 2020

Experts uncovered hidden behavior in thousands of Android Apps

A group of security researchers has found thousands of Android apps containing hidden backdoors and blacklists. Researchers from The Ohio State University, New York University, and CISPA Helmholtz Center for Information Security analyzed thousands of mobile applications for Android and discovered dangerous behavior, including backdoors and blacklists. “While these apps have rich and useful functionality […]

Pierluigi Paganini April 05, 2020

Coronavirus-themed attacks March 29 – April 04, 2020

In this post, I decided to share the details of the Coronavirus-themed attacks launched from March 29 to April 04, 2020. Threat actors exploit the interest in the COVID19 outbreak while infections increase worldwide, experts are observing new campaigns on a daily bases. Below a list of attacks detected this week. March 30, 2020 – […]

Pierluigi Paganini April 05, 2020

Security Affairs newsletter Round 258

A new round of the weekly newsletter arrived! The best news of the week with Security Affairs Coronavirus-themed attacks March 22 – March 28, 2020 FIN7 hackers target enterprises with weaponized USB drives via USPS Source code of Dharma ransomware now surfacing on public hacking forums Crooks leverage Zooms popularity in Coronavirus outbreak to serve […]

Pierluigi Paganini April 04, 2020

New Coronavirus-themed campaign spread Lokibot worldwide

Researchers spotted a new Coronavirus-themed attack, the messages pretend to be sent from the World Health Organization to deliver Lokibot infostealer. Security experts at FortiGuard Labs discovered a new Coronavirus-themed campaign using alleged messages from the World Health Organization (WHO) to deliver the LokiBot trojan. The campaign was uncovered on March 27 when the researchers […]

Pierluigi Paganini April 04, 2020

Microsoft’s case study: Emotet took down an entire network in just 8 days

Microsoft declared that an Emotet attack took down an organization’s network by overheating all the computers and bringing its Internet access down. Microsoft shared details of the Emotet attack suffered by an organization named Fabrikam in the Microsoft’s Detection and Response Team (DART) Case Report 002, where Fabrikam is a fake name the IT giant […]

Pierluigi Paganini April 03, 2020

Hacking iPhone or MacBook devices by tricking into visiting a site

Bad news for Apple iPhone or MacBook users, attackers could hack their device’s camera by tricking them into visiting a website. The ethical hacker Ryan Pickren demonstrated that it is possible to hack Apple iPhone or MacBook users by simply tricking them into visiting a website with the Safari browser. Pickren reported seven vulnerabilities to Apple […]

Pierluigi Paganini April 03, 2020

Magecart group 7 use new e-skimmer to steal payment data

RiskIQ researchers spotted a new ongoing Magecart campaign that already compromised at least 19 different e-commerce websites. Researchers from security firm RiskIQ have uncovered a new ongoing Magecart campaign that already compromised at least 19 different e-commerce websites to steal customers’ payment card data. The experts discovered a new software skimmer, dubbed “MakeFrame,” that injects […]

Pierluigi Paganini April 03, 2020

100,000 WordPress sites using the Contact Form 7 Datepicker plugin are exposed to hack

An authenticated stored cross-site scripting (XSS) vulnerability could allow attackers to create rogue admins on WordPress sites using Contact Form 7 Datepicker plugin. Administrators of WordPress sites using the Contact Form 7 Datepicker plugin are recommended to remove or deactivate it to prevent attackers from exploiting a stored cross-site scripting (XSS) vulnerability to create rogue […]

Hacking

Hackers target Docker servers to deploy the new Kinsing cryptocurrency miner

Popular OGUsers hacking forum breached for the second time in a year

Experts uncovered hidden behavior in thousands of Android Apps

Coronavirus-themed attacks March 29 – April 04, 2020

Security Affairs newsletter Round 258

New Coronavirus-themed campaign spread Lokibot worldwide

Microsoft’s case study: Emotet took down an entire network in just 8 days

Hacking iPhone or MacBook devices by tricking into visiting a site

Magecart group 7 use new e-skimmer to steal payment data

100,000 WordPress sites using the Contact Form 7 Datepicker plugin are exposed to hack

newsletter

Subscribe to my email list and stay
up-to-date!

recent articles

Cisco confirms active exploitation of ISE and ISE-PIC flaws

SharePoint under fire: new ToolShell attacks target enterprises

CrushFTP zero-day actively exploited at least since July 18

Hardcoded credentials found in HPE Aruba Instant On Wi-Fi devices

MuddyWater deploys new DCHSpy variants amid Iran-Israel conflict

QUICK LINKS

Hacking

newsletter

Subscribe to my email list and stay up-to-date!

recent articles

Subscribe to my email list and stay
up-to-date!