TECHZONE™
الذهاب إلى القناة على Telegram
TECHZONE CYBERNEWS && UPDATES Wᴇʟᴄᴏᴍᴇ Tᴏ TECHZONE™ ✔️Infosec Facts ✔️Cheatsheets ✔️Free Courses ✔️Open source tools ✔️Tech news
إظهار المزيد594
المشتركون
لا توجد بيانات24 ساعات
لا توجد بيانات7 أيام
-630 أيام
أرشيف المشاركات
594
Apple Expands Spyware Alert System to Warn Users of Mercenary Attacks
https://thehackernews.com/2024/04/apple-expands-spyware-alert-system-to.html
Apple on Wednesday revised its documentation pertaining to its mercenary spyware threat notification system to mention that it alerts users when they may have been individually targeted by such attacks.
It also specifically called out companies like NSO Group for developing commercial surveillance tools such as Pegasus that are used by state actors to pull off "individually targeted
594
Fortinet Rolls Out Critical Security Patches for FortiClientLinux Vulnerability
https://thehackernews.com/2024/04/fortinet-has-released-patches-to.html
Fortinet has released patches to address a critical security flaw impacting FortiClientLinux that could be exploited to achieve arbitrary code execution.
Tracked as CVE-2023-45590, the vulnerability carries a CVSS score of 9.4 out of a maximum of 10.
"An Improper Control of Generation of Code ('Code Injection') vulnerability [CWE-94] in FortiClientLinux may allow an unauthenticated attacker to
594
'eXotic Visit' Spyware Campaign Targets Android Users in India and Pakistan
https://thehackernews.com/2024/04/exotic-visit-spyware-campaign-targets.html
An active Android malware campaign dubbed eXotic Visit has been primarily targeting users in South Asia, particularly those in India and Pakistan, with malware distributed via dedicated websites and Google Play Store.
Slovak cybersecurity firm said the activity, ongoing since November 2021, is not linked to any known threat actor or group. It's tracking the group behind the operation under the
594
Raspberry Robin Returns: New Malware Campaign Spreading Through WSF Files
https://thehackernews.com/2024/04/raspberry-robin-returns-new-malware.html
Cybersecurity researchers have discovered a new Raspberry Robin campaign wave that propagates the malware through malicious Windows Script Files (WSFs) since March 2024.
"Historically, Raspberry Robin was known to spread through removable media like USB drives, but over time its distributors have experimented with other initial infection vectors," HP Wolf Security said in a report
594
Beware: GitHub's Fake Popularity Scam Tricking Developers into Downloading Malware
https://thehackernews.com/2024/04/beware-githubs-fake-popularity-scam.html
Threat actors are now taking advantage of GitHub's search functionality to trick unsuspecting users looking for popular repositories into downloading spurious counterparts that serve malware.
The latest assault on the open-source software supply chain involves concealing malicious code within Microsoft Visual Code project files that's designed to download next-stage payloads from a remote URL,
594
Hands-on Review: Cynomi AI-powered vCISO Platform
https://thehackernews.com/2024/04/hands-on-review-cynomi-ai-powered-vciso.html
The need for vCISO services is growing. SMBs and SMEs are dealing with more third-party risks, tightening regulatory demands and stringent cyber insurance requirements than ever before. However, they often lack the resources and expertise to hire an in-house security executive team. By outsourcing security and compliance leadership to a vCISO, these organizations can more easily obtain
594
Researchers Uncover First Native Spectre v2 Exploit Against Linux Kernel
https://thehackernews.com/2024/04/researchers-uncover-first-native.html
Cybersecurity researchers have disclosed what they say is the "first native Spectre v2 exploit" against the Linux kernel on Intel systems that could be exploited to read sensitive data from the memory.
The exploit, called Native Branch History Injection (BHI), can be used to leak arbitrary kernel memory at 3.5 kB/sec by bypassing existing Spectre v2/BHI mitigations, researchers from Systems and
594
Webinar: Learn How to Stop Hackers from Exploiting Hidden Identity Weaknesses
https://thehackernews.com/2024/04/webinar-learn-how-to-stop-hackers-from.html
We all know passwords and firewalls are important, but what about the invisible threats lurking beneath the surface of your systems?
Identity Threat Exposures (ITEs) are like secret tunnels for hackers – they make your security way more vulnerable than you think.
Think of it like this: misconfigurations, forgotten accounts, and old settings are like cracks in your digital fortress walls. Hackers
594
Microsoft Fixes 149 Flaws in Huge April Patch Release, Zero-Days Included
https://thehackernews.com/2024/04/microsoft-fixes-149-flaws-in-huge-april.html
Microsoft has released security updates for the month of April 2024 to remediate a record 149 flaws, two of which have come under active exploitation in the wild.
Of the 149 flaws, three are rated Critical, 142 are rated Important, three are rated Moderate, and one is rated Low in severity. The update is aside from 21 vulnerabilities that the company addressed in its
594
Critical 'BatBadBut' Rust Vulnerability Exposes Windows Systems to Attacks
https://thehackernews.com/2024/04/critical-batbadbut-rust-vulnerability.html
A critical security flaw in the Rust standard library could be exploited to target Windows users and stage command injection attacks.
The vulnerability, tracked as CVE-2024-24576, has a CVSS score of 10.0, indicating maximum severity. That said, it only impacts scenarios where batch files are invoked on Windows with untrusted arguments.
"The Rust standard library did not properly escape
594
10-Year-Old 'RUBYCARP' Romanian Hacker Group Surfaces with Botnet
https://thehackernews.com/2024/04/10-year-old-rubycarp-romanian-hacker.html
A threat group of suspected Romanian origin called RUBYCARP has been observed maintaining a long-running botnet for carrying out crypto mining, distributed denial-of-service (DDoS), and phishing attacks.
The group, believed to be active for at least 10 years, employs the botnet for financial gain, Sysdig said in a report shared with The Hacker News.
"Its primary method of operation
594
Hackers Targeting Human Rights Activists in Morocco and Western Sahara
https://thehackernews.com/2024/04/hackers-targeting-human-rights.html
Human rights activists in Morocco and the Western Sahara region are the targets of a new threat actor that leverages phishing attacks to trick victims into installing bogus Android apps and serve credential harvesting pages for Windows users.
Cisco Talos is tracking the activity cluster under the name Starry Addax, describing it as primarily singling out activists associated with
594
Researchers Discover LG Smart TV Vulnerabilities Allowing Root Access
https://thehackernews.com/2024/04/researchers-discover-lg-smart-tv.html
Multiple security vulnerabilities have been disclosed in LG webOS running on its smart televisions that could be exploited to bypass authorization and gain root access on the devices.
The findings come from Romanian cybersecurity firm Bitdefender, which discovered and reported the flaws in November 2023. The issues were fixed by LG as part of updates released on March 22, 2024.
The
594
CL0P's Ransomware Rampage - Security Measures for 2024
https://thehackernews.com/2024/04/cl0ps-ransomware-rampage-security.html
2023 CL0P Growth
Emerging in early 2019, CL0P was first introduced as a more advanced version of its predecessor the ‘CryptoMix’ ransomware, brought about by its owner CL0P ransomware, a cybercrime organisation. Over the years the group remained active with significant campaigns throughout 2020 to 2022. But in 2023 the CL0P ransomware gang took itself to new heights and became one of the
594
Attackers Using Obfuscation Tools to Deliver Multi-Stage Malware via Invoice Phishing
https://thehackernews.com/2024/04/attackers-using-obfuscation-tools-to.html
Cybersecurity researchers have discovered an intricate multi-stage attack that leverages invoice-themed phishing decoys to deliver a wide range of malware such as Venom RAT, Remcos RAT, XWorm, NanoCore RAT, and a stealer that targets crypto wallets.
The email messages come with Scalable Vector Graphics (SVG) file attachments that, when clicked, activate the infection sequence, Fortinet
594
Critical Flaws Leave 92,000 D-Link NAS Devices Vulnerable to Malware Attacks
https://thehackernews.com/2024/04/critical-flaws-leave-92000-d-link-nas.html
Threat actors are actively scanning and exploiting a pair of security flaws that are said to affect as many as 92,000 internet-exposed D-Link network-attached storage (NAS) devices.
Tracked as CVE-2024-3272 (CVSS score: 9.8) and CVE-2024-3273 (CVSS score: 7.3), the vulnerabilities impact legacy D-Link products that have reached end-of-life (EoL) status. D-Link, in
594
Google Chrome Adds V8 Sandbox - A New Defense Against Browser Attacks
https://thehackernews.com/2024/04/google-chrome-adds-v8-sandbox-new.html
Google has announced support for what's called a V8 Sandbox in the Chrome web browser in an effort to address memory corruption issues.
The sandbox, according to V8 Security technical lead Samuel Groß, aims to prevent "memory corruption in V8 from spreading within the host process."
The search behemoth has described V8 Sandbox as a lightweight, in-process sandbox
594
Watch Out for 'Latrodectus' - This Malware Could Be In Your Inbox
https://thehackernews.com/2024/04/watch-out-for-latrodectus-this-malware.html
Threat hunters have discovered a new malware called Latrodectus that has been distributed as part of email phishing campaigns since at least late November 2023.
"Latrodectus is an up-and-coming downloader with various sandbox evasion functionality," researchers from Proofpoint and Team Cymru said in a joint analysis published last week, adding it's designed to retrieve
594
The Drop in Ransomware Attacks in 2024 and What it Means
https://thehackernews.com/2024/04/the-drop-in-ransomware-attacks-in-2024.html
The ransomware industry surged in 2023 as it saw an alarming 55.5% increase in victims worldwide, reaching a staggering 5,070. But 2024 is starting off showing a very different picture. While the numbers skyrocketed in Q4 2023 with 1309 cases, in Q1 2024, the ransomware industry was down to 1,048 cases. This is a 22% decrease in ransomware attacks compared to Q4 2023.
Figure
594
Cybercriminals Targeting Latin America with Sophisticated Phishing Scheme
https://thehackernews.com/2024/04/cybercriminals-targeting-latin-america.html
A new phishing campaign has set its eyes on the Latin American region to deliver malicious payloads to Windows systems.
"The phishing email contained a ZIP file attachment that when extracted reveals an HTML file that leads to a malicious file download posing as an invoice," Trustwave SpiderLabs researcher Karla Agregado said.
The email message, the company said, originates from an email
