资讯

The Hacker News57 分钟
BaitTrap: Over 17,000 Fake News Websites Caught Fueling Investment Fraud Globally
A newly released report by cybersecurity firm CTM360 reveals a large-scale scam operation utilizing fake news websites—known ...
The Hacker News3 小时
Researchers Uncover Batavia Windows Spyware Stealing Documents from Russian Firms
Russian organizations have been targeted by Batavia spyware in a phishing attack, exfiltrating documents and system info.
The Hacker News6 小时
CISA Adds Four Critical Vulnerabilities to KEV Catalog Due to Active Exploitation
CISA adds four critical vulnerabilities to its KEV list, with active exploitation confirmed. Federal agencies must update by ...
The Hacker News18 小时
SEO Poisoning Campaign Targets 8,500+ SMB Users with Malware Disguised as AI Tools
According to data compiled by Kaspersky, small- and medium-sized businesses (SMBs) are being increasingly targeted by cyber ...
The Hacker News1 天
TAG-140 Deploys DRAT V2 RAT, Targeting Indian Government, Defense, and Rail Sectors
The activity has been attributed by Recorded Future's Insikt Group to a threat actor tracked as TAG-140, which it said ...
The Hacker News1 天
Manufacturing Security: Why Default Passwords Must Go
Default passwords like "1111" put critical infrastructure at risk. CISA urges manufacturers to fix this vulnerability.
The Hacker News1 天
Automation ≠ Autopilot: Rethinking AI in Corporate Security and Compliance
AI accelerates security but needs human oversight to prevent risks like misconfigurations and compliance errors. Ensure AI ...
The Hacker News2 天
Alert: Exposed JDWP Interfaces Lead to Crypto Mining, Hpingbot Targets SSH for DDoS
Threat actors leverage exposed JDWP interfaces for code execution and cryptocurrency mining, with global scanning activity ...
The Hacker News3 天
NightEagle APT Exploits Microsoft Exchange Flaw to Target China's Military and Tech Sectors
Cybersecurity researchers uncover NightEagle APT exploiting zero-day in Microsoft Exchange servers, targeting government, ...
The Hacker News3 天
Massive Android Fraud Operations Uncovered: IconAds, Kaleidoscope, SMS Malware, NFC Scams
It's worth noting that IconAds is a variant of a threat that's also tracked by other cybersecurity vendors under the names ...
The Hacker News5 天
Chinese Hackers Exploit Ivanti CSA Zero-Days in Attacks on French Government, Telecoms
Chinese hackers exploited Ivanti CSA zero-days, targeting French government, media, and telecom sectors in September 2024.
The Hacker News5 天
North Korean Hackers Target Web3 with Nim Malware and Use ClickFix in BabyShark Campaign
North Korean cyber group targets Web3 businesses with Nim-based malware, exploiting AppleScript and Telegram for persistent ...