The Hacker News
Most trusted, widely-read independent cybersecurity news source for everyone; supported by hackers and IT professionals.
- U.S. Court Orders NSO Group to Hand Over Pegasus Spyware Code to WhatsAppby firstname.lastname@example.org (The Hacker News) on March 2, 2024 at 6:23 am
A U.S. judge has ordered NSO Group to hand over its source code for Pegasus and other products to Meta as part of the social media giant’s ongoing litigation against the Israeli spyware vendor. The decision, which marks a major legal victory for Meta, which filed the lawsuit in October 2019 for using its infrastructure to distribute the spyware to approximately
- U.S. Charges Iranian Hacker, Offers $10 Million Reward for Captureby email@example.com (The Hacker News) on March 2, 2024 at 4:38 am
The U.S. Department of Justice (DoJ) on Friday unsealed an indictment against an Iranian national for his alleged involvement in a multi-year cyber-enabled campaign designed to compromise U.S. governmental and private entities. More than a dozen entities are said to have been targeted, including the U.S. Departments of the Treasury and State, defense contractors that support U.S. Department of
- New Phishing Kit Leverages SMS, Voice Calls to Target Cryptocurrency Usersby firstname.lastname@example.org (The Hacker News) on March 1, 2024 at 1:32 pm
A novel phishing kit has been observed impersonating the login pages of well-known cryptocurrency services as part of an attack cluster codenamed CryptoChameleon that’s designed to primarily target mobile devices. “This kit enables attackers to build carbon copies of single sign-on (SSO) pages, then use a combination of email, SMS, and voice phishing to trick the target into sharing
- 4 Instructive Postmortems on Data Downtime and Lossby email@example.com (The Hacker News) on March 1, 2024 at 11:08 am
More than a decade ago, the concept of the ‘blameless’ postmortem changed how tech companies recognize failures at scale. John Allspaw, who coined the term during his tenure at Etsy, argued postmortems were all about controlling our natural reaction to an incident, which is to point fingers: “One option is to assume the single cause is incompetence and scream at engineers to make them
- New BIFROSE Linux Malware Variant Using Deceptive VMware Domain for Evasionby firstname.lastname@example.org (The Hacker News) on March 1, 2024 at 10:56 am
Cybersecurity researchers have discovered a new Linux variant of a remote access trojan (RAT) called BIFROSE (aka Bifrost) that uses a deceptive domain mimicking VMware. “This latest version of Bifrost aims to bypass security measures and compromise targeted systems,” Palo Alto Networks Unit 42 researchers Anmol Maurya and Siddharth Sharma said. BIFROSE is one of the long-standing
Security magazine provides security industry news and trends on video surveillance, cyber security, physical security, security guards, access management and more for security executives and the security industry.
- Security leaders discuss ONCD’s call for memory-safe softwareon March 1, 2024 at 5:00 pm
Security leaders weigh in on the recent announcement by the ONCD, which encourages technological manufactures to develop software with memory safety in mind.
- Research finds that cybersecurity leaders are taking on multiple roleson March 1, 2024 at 1:00 pm
A new study shows trends in cybersecurity leader employment, compensation and retention.
- Security’s Top Cybersecurity Leaders 2024on March 1, 2024 at 12:00 pm
Security magazine’s Top Cybersecurity Leaders 2024 award program highlights the accomplishments of ten visionary information security leaders across sectors.
- How military-civilian cooperation is transforming space cybersecurityon March 1, 2024 at 5:00 am
Over the past decade, there has been a proliferation of space-based technology — and cybersecurity threats.
- Hao-Wei Chen | Top Cybersecurity Leaders 2024on March 1, 2024 at 5:00 am
Hao-Wei Chen, Information Security Director at Audible, discusses cybersecurity awareness and international collaboration.
The first stop for security news.
- Student Loan Breach Exposes 2.5M Recordsby Nate Nelson on August 31, 2022 at 12:57 pm
2.5 million people were affected, in a breach that could spell more trouble down the line.
- Watering Hole Attacks Push ScanBox Keyloggerby Nate Nelson on August 30, 2022 at 4:00 pm
- Tentacles of ‘0ktapus’ Threat Group Victimize 130 Firmsby Nate Nelson on August 29, 2022 at 2:56 pm
Over 130 companies tangled in sprawling phishing campaign that spoofed a multi-factor authentication system.
- Ransomware Attacks are on the Riseby Nate Nelson on August 26, 2022 at 4:44 pm
Lockbit is by far this summer’s most prolific ransomware group, trailed by two offshoots of the Conti group.
- Cybercriminals Are Selling Access to Chinese Surveillance Camerasby Nate Nelson on August 25, 2022 at 6:47 pm
Tens of thousands of cameras have failed to patch a critical, 11-month-old CVE, leaving thousands of organizations exposed.
Connecting the Security Industry with the Security Community