The Hacker News21h
PAN-OS Firewall Vulnerability Under Active Exploitation – IoCs Released
Palo Alto Networks confirms active exploitation of a critical zero-day in PAN-OS firewalls; users urged to secure interfaces ...
The Hacker News22h
Warning: DEEPDATA Malware Exploiting Unpatched Fortinet Flaw to Steal VPN Credentials
BrazenBamboo exploits an unpatched FortiClient flaw to steal VPN credentials using DEEPDATA malware. Fortinet users advised ...
The Hacker News1d
Bitfinex Hacker Sentenced to 5 Years, Guilty of Laundering $10.5 Billion in Bitcoin
Ilya Lichtenstein, who pleaded guilty to the 2016 hack of cryptocurrency stock exchange Bitfinex, has been sentenced to five ...
The Hacker News1d
CISA Flags Two Actively Exploited Palo Alto Flaws; New RCE Attack Confirmed
Palo Alto Networks addressed these shortcomings as part of security updates released on October 9, 2024. The company has ...
The Hacker News1d
Iranian Hackers Deploy WezRat Malware in Attacks Targeting Israeli Organizations
WezRat is assessed to be the work of Cotton Sandstorm, an Iranian hacking group that's better known under the cover names ...
The Hacker News1d
High-Severity Flaw in PostgreSQL Allows Hackers to Exploit Environment Variables
Cybersecurity researchers have disclosed a high-severity security flaw in the PostgreSQL open-source database system that ...
The Hacker News2d
Russian Hackers Exploit New NTLM Flaw to Deploy RAT Malware via Phishing Emails
The vulnerability in question, CVE-2024-43451 (CVSS score: 6.5), refers to an NTLM hash disclosure spoofing vulnerability ...
The Hacker News1d
How AI Is Transforming IAM and Identity Security
AI revolutionizes IAM by enabling real-time monitoring, anomaly detection, and adaptive governance for better security.
The Hacker News2d
New RustyAttr Malware Targets macOS Through Extended Attribute Abuse
North Korean Lazarus Group uses extended macOS file attributes to deliver RustyAttr malware to unsuspecting users ...
The Hacker News3d
Microsoft Fixes 90 New Flaws, Including Actively Exploited NTLM and Task Scheduler Bugs
Microsoft’s November Patch Tuesday addresses 90 security flaws, including actively exploited NTLM and Task Scheduler ...
The Hacker News2d
An Agent's Identity: Is Your Authentication AI-Proof?
AI agents challenge access control. Discover why new authentication frameworks are essential for secure, dynamic agent use ...
The Hacker News2d
Experts Uncover 70,000 Hijacked Domains in Widespread 'Sitting Ducks' Attack Scheme
Cybercriminals exploit 'Sitting Ducks' attacks, hijacking thousands of domains for phishing and fraud, Infoblox reports.