The Hacker News

Most trusted, widely-read independent cybersecurity news source for everyone; supported by hackers and IT professionals.

  • Deadglyph: New Advanced Backdoor with Distinctive Malware Tactics
    by info@thehackernews.com (The Hacker News) on September 23, 2023 at 11:10 am

    Cybersecurity researchers have discovered a previously undocumented advanced backdoor dubbed Deadglyph employed by a threat actor known as Stealth Falcon as part of a cyber espionage campaign. “Deadglyph’s architecture is unusual as it consists of cooperating components – one a native x64 binary, the other a .NET assembly,” ESET said in a new report shared with The Hacker News. “This combination

  • New Apple Zero-Days Exploited to Target Egyptian ex-MP with Predator Spyware
    by info@thehackernews.com (The Hacker News) on September 23, 2023 at 6:12 am

    The three zero-day flaws addressed by Apple on September 21, 2023, were leveraged as part of an iPhone exploit chain in an attempt to deliver a spyware strain called Predator targeting former Egyptian member of parliament Ahmed Eltantawy between May and September 2023. “The targeting took place after Eltantawy publicly stated his plans to run for President in the 2024 Egyptian elections,” the

  • New Variant of Banking Trojan BBTok Targets Over 40 Latin American Banks
    by info@thehackernews.com (The Hacker News) on September 22, 2023 at 2:48 pm

    An active malware campaign targeting Latin America is dispensing a new variant of a banking trojan called BBTok, particularly users in Brazil and Mexico. “The BBTok banker has a dedicated functionality that replicates the interfaces of more than 40 Mexican and Brazilian banks, and tricks the victims into entering its 2FA code to their bank accounts or into entering their payment card number,”

  • How to Interpret the 2023 MITRE ATT&CK Evaluation Results
    by info@thehackernews.com (The Hacker News) on September 22, 2023 at 10:50 am

    Thorough, independent tests are a vital resource for analyzing provider’s capabilities to guard against increasingly sophisticated threats to their organization. And perhaps no assessment is more widely trusted than the annual MITRE Engenuity ATT&CK Evaluation.  This testing is critical for evaluating vendors because it’s virtually impossible to evaluate cybersecurity vendors based on their own

  • Iranian Nation-State Actor OilRig Targets Israeli Organizations
    by info@thehackernews.com (The Hacker News) on September 22, 2023 at 9:25 am

    Israeli organizations were targeted as part of two different campaigns orchestrated by the Iranian nation-state actor known as OilRig in 2021 and 2022. The campaigns, dubbed Outer Space and Juicy Mix, entailed the use of two previously documented first-stage backdoors called Solar and Mango, which were deployed to collect sensitive information from major browsers and the Windows Credential

Security Magazine

Security magazine provides security industry news and trends on video surveillance, cyber security, physical security, security guards, access management and more for security executives and the security industry.

Threatpost

The first stop for security news.

Security Weekly

Connecting the Security Industry with the Security Community