Hacking Archives - Page 455 of 976

Pierluigi Paganini February 27, 2020

Threat actors scan Internet for Vulnerable Microsoft Exchange Servers

Experts warn that hackers are actively scanning the Internet for Microsoft Exchange Servers vulnerable in the attempt to exploit the CVE-2020-0688 RCE. Hackers are actively scanning the Internet for Microsoft Exchange Servers affected by the CVE-2020-0688 remote code execution flaw. The vulnerability resides in the Exchange Control Panel (ECP) component, the root cause of the […]

Pierluigi Paganini February 26, 2020

Kr00k Wi-Fi Encryption flaw affects more than a billion devices

A high-severity hardware vulnerability, dubbed Kr00k, in Wi-Fi chips manufactured by Broadcom and Cypress expose over a billion devices to hack. Cybersecurity researchers from ESET have discovered a new high-severity hardware vulnerability, dubbed Kr00k, that affects Wi-Fi chips manufactured by Broadcom and Cypress. The vulnerability could have a severe impact on the IT sector, the […]

Pierluigi Paganini February 26, 2020

Reading Municipal Light Department, an electric utility in Massachusetts, hit by ransomware

The Reading Municipal Light Department (RMLD), an electric utility in Massachusetts, announced it was hit by a ransomware attack. This week, the Reading Municipal Light Department (RMLD), an electric utility in Massachusetts, announced it was hit by a ransomware attack. Reading Municipal Light Department provides electricity to over 68,000 citizens that live in the towns […]

Pierluigi Paganini February 25, 2020

Zyxel addresses Zero-Day vulnerability in NAS devices

Tech vendor Zyxel addresses a critical vulnerability in several network-attached storage (NAS) devices that is already being exploited in the wild. Zyxel has released security patches to address a critical remote code execution vulnerability, tracked as CVE-2020-9054, that affects several NAS devices. The flaw can be exploited by an unauthenticated attacker, it resides in the weblogin.cgi CGI executable […]

Pierluigi Paganini February 25, 2020

Experts discovered a new critical OpenSMTPD RCE flaw exploited in the wild

Experts discovered a new critical remote code execution vulnerability in the OpenSMTPD that could allow hacking email servers running BSD or Linux. A new critical remote code execution vulnerability was discovered in the OpenSMTPD that could be exploited by attackers to take complete control over email servers running BSD or Linux operating systems. OpenSMTPD is an […]

Pierluigi Paganini February 25, 2020

Google fixes Chrome zero-day flaw exploited in the wild

Google has released Chrome 80 update that addresses three high-severity vulnerabilities, one of them has been exploited in the wild. Google has released Chrome 80 update (version 80.0.3987.122) that addresses three high-severity vulnerabilities, including a zero-day issue (CVE-2020-6418) that has been exploited in the wild. The CVE-2020-6418 vulnerability is a type confusion issue that affects […]

Pierluigi Paganini February 25, 2020

Hacking campaign targets sites running popular Duplicator WordPress plugin

Security experts are warning of a new wave of attacks targeting a zero-day vulnerability in the popular Duplicator WordPress Plugin. Last week the development team behind the popular Duplicator WordPress plugin, the Snap Creek, addressed a zero-day vulnerability that affected at least 1 million websites. Now researchers at security firm WordFence are warning of a […]

Pierluigi Paganini February 24, 2020

Slickwraps discloses data leak that impacted 850,000 user accounts

Slickwraps has disclosed a data breach that impacted over 850,000 user accounts, data were accidentally exposed due to security vulnerabilities. Slickwraps is an online store that offers for sale skins mobile devices, laptops, smartphones, tablets, and gaming consoles. The data leak was disclosed last week, on February 21 the company that customer records were accidentally exposed […]

Pierluigi Paganini February 24, 2020

FireEye Mandiant M-Trends 2020 report: 500+ new Malware strains in 2019

FireEye’s report revealed that the incident response division Mandiant observed more than 500 new malware families in 2019. According to the FireEye Mandiant M-Trends 2020 report, FireEye analyzed 1.1 million malware samples per day in 2019 and identified 1,268 malware families. The most worrisome figure is related to the number of previously unseen malware families […]

Pierluigi Paganini February 23, 2020

ObliqueRAT, a new malware employed in attacks on government targets in Southeast Asia

Cisco Talos researchers discovered a new malware, tracked as ObliqueRAT, that was employed targeted attacks against organizations in Southeast Asia. Experts from Cisco Talos discovered a new malware, tracked as ObliqueRAT, that appears a custom malware developed by a threat actor focused on government and diplomatic targets. The malware was employed in targeted attacks against […]

Hacking

Threat actors scan Internet for Vulnerable Microsoft Exchange Servers

Kr00k Wi-Fi Encryption flaw affects more than a billion devices

Reading Municipal Light Department, an electric utility in Massachusetts, hit by ransomware

Zyxel addresses Zero-Day vulnerability in NAS devices

Experts discovered a new critical OpenSMTPD RCE flaw exploited in the wild

Google fixes Chrome zero-day flaw exploited in the wild

Hacking campaign targets sites running popular Duplicator WordPress plugin

Slickwraps discloses data leak that impacted 850,000 user accounts

FireEye Mandiant M-Trends 2020 report: 500+ new Malware strains in 2019

ObliqueRAT, a new malware employed in attacks on government targets in Southeast Asia

newsletter

Subscribe to my email list and stay
up-to-date!

recent articles

Jabber Zeus developer ‘MrICQ’ extradited to US from Italy

Chrome 142 Released: Two high-severity V8 flaws fixed, $100K in rewards paid

Android Apps misusing NFC and HCE to steal payment data on the rise

Conduent January 2025 breach impacts 10M+ people

SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 69

QUICK LINKS

Hacking

newsletter

Subscribe to my email list and stay up-to-date!

recent articles

Subscribe to my email list and stay
up-to-date!