hacking news – Page 991

From The Hacker News – New Magecart Campaign Alters 404 Error Pages to Steal Shoppers’ Credit Cards

A sophisticated Magecart campaign has been observed manipulating websites' default 404 error page to conceal malicious code in what's been described as the latest evolution of the attacks. The activity, per Akamai, targets Magento and WooCommerce websites, with some of the victims belonging to large organizations in the food and retail industries. "In this campaign, all the victim websites we

Samir K October 10, 2023

News

From The Hacker News – libcue Library Flaw Opens GNOME Linux Systems Vulnerable to RCE Attacks

A new security flaw has been disclosed in the libcue library impacting GNOME Linux systems that could be exploited to achieve remote code execution (RCE) on affected hosts. Tracked as CVE-2023-43641 (CVSS score: 8.8), the issue is described as a case of memory corruption in libcue, a library designed for parsing cue sheet files. It impacts versions 2.2.1 and prior. libcue is incorporated into

Samir K October 10, 2023

Toolkit

From Cyber Security News – HackerGPT: A ChatGPT Empowered Penetration Testing Tool

HackerGPT is a ChatGPT-enabled penetrating testing tool that can help with network hacking, mobile hacking, different hacking tactics, and other specific tasks. The main foundation of HackerGPT is the training…

Samir K October 10, 2023

News

From The Hacker News – Citrix Devices Under Attack: NetScaler Flaw Exploited to Capture User Credentials

A recently disclosed critical flaw in Citrix NetScaler ADC and Gateway devices is being exploited by threat actors to conduct a credential harvesting campaign. IBM X-Force, which uncovered the activity last month, said adversaries exploited "CVE-2023-3519 to attack unpatched NetScaler Gateways to insert a malicious script into the HTML content of the authentication web page to capture user

Samir K October 10, 2023

News

From Dark Reading – Hacktivists Enter Fray Following Hamas Strikes Against Israel

Killnet, Anonymous Sudan, along with other groups, pick up up their Middle East activities as war breaks out. Read More

Samir K October 9, 2023

News

From Dark Reading – ‘Looney Tunables’ Linux Flaw Sees Snowballing Proof-of-Concept Exploits

Following the publication of the critical Linux security vulnerability, security specialists released PoC exploits to test the implications of CVE-2023-4911. Read More

Samir K October 9, 2023

News

From Cyber Security News – ConnectedIO’s 3G/4G Routers Vulnerability Let Hackers Execute Malicious Code

Critical issues in ConnectedIO’s ER2000 edge routers have been discovered, and an attacker can leverage them to compromise the cloud infrastructure completely, remotely execute malicious code, and expose all user…

Samir K October 9, 2023

Research

From Cyber Security News – Snake Keylogger Steals victim Logins, Keystrokes, & Capture Screen

Emails are extremely common in today’s digital communication landscape, with billions sent daily for personal, professional, and promotional purposes. While most emails are harmless, there is a risk associated with…

Samir K October 9, 2023

News

From Cybercrime Magazine – How Reality TV Star Mishel Karen Lost $160,000 In Double Whammy

Romance and investment scams overwhelmed Australian Married at First Sight contestant and OnlyFans content creator – David Braue Melbourne, Australia – Oct. 9, 2023 She hoped they would help her…

Samir K October 9, 2023

News

From Cyber Security News – Webwyrm Malware Affects More Than 100,000 Users in 50 Countries

Threat actors are evolving their Tactics, Techniques, and Procedures (TTPs) at an alarming rate. With technological advancements and increased awareness of cybersecurity measures, they continually adapt to exploit vulnerabilities and…

Samir K October 9, 2023

Toolkit

From The Hacker News – Cybercriminals Using EvilProxy Phishing Kit to Target Senior Executives in U.S. Firms

Senior executives working in U.S.-based organizations are being targeted by a new phishing campaign that leverages a popular adversary-in-the-middle (AiTM) phishing toolkit named EvilProxy to conduct credential harvesting and account takeover attacks. Menlo Security said the activity started in July 2023, primarily singling out banking and financial services, insurance, property management and

Samir K October 9, 2023

Research

From Cyber Security News – OpenAI is Reportedly Developing its Own AI chips

The maker of ChatGPT, OpenAI, is looking at making its own artificial intelligence chips, which are necessary for operating the highly popular chatbot. Those acquainted with the company’s ambitions claim…

Samir K October 9, 2023

News

From The Hacker News – “I Had a Dream” and Generative AI Jailbreaks

"Of course, here's an example of simple code in the Python programming language that can be associated with the keywords "MyHotKeyHandler," "Keylogger," and "macOS," this is a message from ChatGPT followed by a piece of malicious code and a brief remark not to use it for illegal purposes. Initially published by Moonlock Lab, the screenshots of ChatGPT writing code for a keylogger malware is yet

Samir K October 9, 2023

Breaches

From Cyber Security News – MGM Resorts Refused to Pay Hackers’ Ransom Demand in Cyberattack

In recent news, MGM Resorts International took a bold stance in the face of a cyberattack, refusing to give in to ransomware hackers who breached its systems. The incident led…

Samir K October 9, 2023

News

From Cyber Security News – GoldDigger Disguises as Fake Android App To Steal Banking Credentials

GoldDigger, a new Android Trojan, imitates a fraudulent Android application and has been discovered to spoof both a Vietnamese government portal and a local energy provider. Since at least June…

Samir K October 9, 2023