The Hacker News-- Even as Visa issued a warning about a new JavaScript web skimmer known as Baka, cybersecurity researchers have uncovered a new flaw in the company's EMV enabled cards that enable cybercriminals to obtain funds and defraud cardholders as well as merchants illicitly. The research, published by a group of academics from the … Continue reading New PIN Verification Bypass Flaw Affects Visa Contactless Payments
Tag: The Hacker News
SMB Cybersecurity Catching Up to Enterprise… But the Human Element Still a Major Concern
The Hacker News-- Cyberattacks on small to medium-sized businesses (SMBs) are continuing at a relentless pace, with the vast majority of data breaches coming from outside the organization. Some believe hackers are aggressively targeting these smaller firms because they believe SMBs lack adequate resources and enterprise-grade security tools, making them easier prey than larger businesses. … Continue reading SMB Cybersecurity Catching Up to Enterprise… But the Human Element Still a Major Concern
Evilnum hackers targeting financial firms with a new Python-based RAT
The Hacker News-- An adversary known for targeting the fintech sector at least since 2018 has switched up its tactics to include a new Python-based remote access Trojan (RAT) that can steal passwords, documents, browser cookies, email credentials, and other sensitive information. In an analysis published by Cybereason researchers yesterday, the Evilnum group has not … Continue reading Evilnum hackers targeting financial firms with a new Python-based RAT
(Live) Webinar – XDR and Beyond with Autonomous Breach Protection
The Hacker News-- Anyone paying attention to the cybersecurity technology market has heard the term XDR - Extended Detection and Response. XDR is a new technology approach that combines multiple protection technologies into a single platform. All the analyst firms are writing about it, and many of the top cybersecurity companies are actively moving into … Continue reading (Live) Webinar – XDR and Beyond with Autonomous Breach Protection
Cisco Jabber Bug Could Let Hackers Target Windows Systems Remotely
The Hacker News-- Networking equipment maker Cisco has released a new version of its Jabber video conferencing and messaging app for Windows that includes patches for multiple vulnerabilities—which, if exploited, could allow an authenticated, remote attacker to execute arbitrary code. The flaws, which were uncovered by Norwegian cybersecurity firm Watchcom during a pentest, affect all … Continue reading Cisco Jabber Bug Could Let Hackers Target Windows Systems Remotely
New Web-Based Credit Card Stealer Uses Telegram Messenger to Exfiltrate Data
The Hacker News-- Cybercriminal groups are constantly evolving to find new ways to pilfer financial information, and the latest trick in their arsenal is to leverage the messaging app Telegram to their benefit. In what's the latest tactic adopted by Magecart groups, the encrypted messaging service is being used to send stolen payment details from … Continue reading New Web-Based Credit Card Stealer Uses Telegram Messenger to Exfiltrate Data
Maximum Lifespan of SSL/TLS Certificates is 398 Days Starting Today
The Hacker News-- Starting today, the lifespan of new TLS certificates will be limited to 398 days, a little over a year, from the previous maximum certificate lifetime of 27 months (825 days). In a move that's meant to boost security, Apple, Google, and Mozilla are set to reject publicly rooted digital certificates in their … Continue reading Maximum Lifespan of SSL/TLS Certificates is 398 Days Starting Today
Cisco Issues Warning Over IOS XR Zero-Day Flaw Being Targeted in the Wild
The Hacker News-- Cisco has warned of an active zero-day vulnerability in its router software that's being exploited in the wild and could allow a remote, authenticated attacker to carry out memory exhaustion attacks on an affected device. "An attacker could exploit these vulnerabilities by sending crafted IGMP traffic to an affected device," Cisco said … Continue reading Cisco Issues Warning Over IOS XR Zero-Day Flaw Being Targeted in the Wild
Iranian Hackers Pose as Journalists to Trick Victims Into Installing Malware
The Hacker News-- An Iranian cyberespionage group known for targeting government, defense technology, military, and diplomacy sectors is now impersonating journalists to approach targets via LinkedIn and WhatsApp and infect their devices with malware. Detailing the new tactics of the "Charming Kitten" APT group, Israeli firm Clearsky said, "starting July 2020, we have identified a … Continue reading Iranian Hackers Pose as Journalists to Trick Victims Into Installing Malware
QakBot Banking Trojan Returned With New Sneaky Tricks to Steal Your Money
The Hacker News-- A notorious banking trojan aimed at stealing bank account credentials and other financial information has now come back with new tricks up its sleeve to target government, military, and manufacturing sectors in the US and Europe, according to new research. In an analysis released by Check Point Research today, the latest wave … Continue reading QakBot Banking Trojan Returned With New Sneaky Tricks to Steal Your Money
Hacker's Directory 