hacking news

Pierluigi Paganini December 12, 2019
Massive Magecart campaign targets sites offering counterfeit sneakers

Crooks are targeting these hundreds of sites offering counterfeit sneakers to install malicious Magecart scripts and steal payment credit card data. While sneakers are becoming even more popular, the number of sites offering counterfeit sneakers is rapidly increasing and crooks want to monetize this trend by compromising them. Researchers at Malwarebytes reported that hackers are […]

Pierluigi Paganini December 12, 2019
Zeppelin Ransomware targets Tech and Health Companies

Experts found a new variant of the Vega ransomware, dubbed Zeppelin, targeting technology and healthcare companies across Europe, the US, and Canada. Experts from BlackBerry Cylance found a new variant of the Vega RaaS, dubbed Zeppelin, that was recently involved in attacks aimed at technology and healthcare companies across Europe, the United States, and Canada. Zeppelin was […]

Pierluigi Paganini December 11, 2019
Iran announced it foiled ‘really massive’ foreign cyber attack

Iran telecommunications minister announced that the Islamic republic had recently thwarted a “highly organized cyber attack” targeting government infrastructure. The Iranian telecommunications minister Mohammad Javad Azari Jahromi, announced today that the Islamic Republic had recently thwarted a “highly organized cyber attack” targeting its government infrastructure. The news was reported by both the ISNA and Mehr […]

Pierluigi Paganini December 11, 2019
PlunderVolt attack hijacks Intel SGX Enclaves by tweaking CPU Voltage

A team of researchers devised a new attack technique, dubbed PlunderVolt, to hijack Intel SGX enclave by tweaking CPU voltage. A group of security researchers (Kit Murdock, David Oswald, Flavio D Garcia (The University of Birmingham), Jo Van Bulck, Frank Piessens (imec-DistriNet, KU Leuven), Daniel Gruss (Graz University of Technology)) demonstrated a new attack technique, dubbed PlunderVolt, to […]

Pierluigi Paganini December 11, 2019
Microsoft fixes CVE-2019-1458 Windows Zero-Day exploited in NK-Linked attacks

Microsoft’s December 2019 Patch Tuesday updates fix a total of 36 flaws, including CVE-2019-1458 Windows zero-day exploited in North Korea-linked attacks Microsoft’s December 2019 Patch Tuesday updates address a total of 36 flaws, including a Windows zero-day, tracked as CVE-2019-1458 exploited in attacks linked to North Korea. The vulnerability could be exploited to execute arbitrary […]

Pierluigi Paganini December 10, 2019
More than 44 million Microsoft user accounts are exposed to hack

Microsoft revealed that 44 million Microsoft Azure AD and Microsoft Services accounts were vulnerable to account hijacking. Microsoft discovered that 44 million Microsoft Azure AD and Microsoft Services accounts were vulnerable to account hijacking because of using of compromised passwords. Experts from the Microsoft threat research team analyzed a database containing 3 billion leaked credentials […]

Pierluigi Paganini December 10, 2019
Snatch Ransomware force systems to Windows Safe Mode to bypass security solutions

Experts spotted a new piece of the Snatch ransomware that reboots computers it infects into Safe Mode to bypass resident security solutions. Researchers discovered a new strain of the Snatch ransomware that reboots computers it infects into Safe Mode to bypass resident security solutions and encrypt files on the system. The malware attempts to exploit […]

Pierluigi Paganini December 10, 2019
City of Pensacola hit by a cyberattack few days after military base shooting

The city of Pensacola, Florida, had been hit by a cyberattack, just days after a Saudi officer killed three American sailors at the city’s naval base. The city of Pensacola has been hit by a cyber attack over the weekend, the incident took place around 1:30 a.m. on Saturday. City IT staff has been working to restore […]

Pierluigi Paganini December 09, 2019
A bug in the decryptor for the Ryuk ransomware could cause data loss

Emsisoft warns that a bug in the decrypter app of the Ryuk ransomware could damage large files making it impossible to decrypt them. Experts from Antivirus maker Emsisoft discovered a bug in the decrypter app of the infamous Ryuk ransomware. The app is provided by Ryuk operators to victims to recover their files once they […]

Pierluigi Paganini December 09, 2019
New ‘PyXie’ Python RAT targets multiple industries

Researchers discovered a new Python-based RAT dubbed PyXie that has been used in campaigns targeting a wide range of industries. Experts at BlackBerry Cylance have spotted a new Python-based remote access Trojan (RAT) that has been used in campaigns targeting a wide range of industries. PyXie has been first observed in the wild in 2018, […]