The Hacker News2h
Helping Your Clients Achieve NIST Compliance: A Step by Step Guide for Service Providers
As the cybersecurity landscape evolves, service providers play an increasingly vital role in safeguarding sensitive data and maintaining compliance with industry regulations. The National Institute of ...
The Hacker News3h
Outlaw Group Uses SSH Brute-Force to Deploy Cryptojacking Malware on Linux Servers
"Outlaw is a Linux malware that relies on SSH brute-force attacks, cryptocurrency mining, and worm-like propagation to infect and maintain control over systems," Elastic Security Labs said in a new ...
The Hacker News3h
How SSL Misconfigurations Impact Your Attack Surface
When assessing an organization's external attack surface, encryption-related issues (especially SSL misconfigurations) ...
The Hacker News7h
FIN7 Deploys Anubis Backdoor to Hijack Windows Systems via Compromised SharePoint Sites
FIN7, also called Carbon Spider, ELBRUS, Gold Niagara, Sangria Tempest, and Savage Ladybug, is a Russian cybercrime group known for its ever-evolving and expanding set of malware families for ...
The Hacker News7h
New Malware Loaders Use Call Stack Spoofing, GitHub C2, and .NET Reactor for Stealth
"While SmokeLoader has historically leveraged packers like Themida, Enigma Protector, and custom crypters, the use of .NET ...
The Hacker News20h
Over 1,500 PostgreSQL Servers Compromised in Fileless Cryptocurrency Mining Campaign
Over 1,500 PostgreSQL servers compromised via weak credentials and SQL abuse, enabling fileless crypto mining.
The Hacker News22h
Enterprise Gmail Users Can Now Send End-to-End Encrypted Emails to Any Platform
On the 21st birthday of Gmail, Google has announced a major update that allows enterprise users to send end-to-end encrypted ...
The Hacker News23h
Lucid PhaaS Hits 169 Targets in 88 Countries Using iMessage and RCS Smishing
A new sophisticated phishing-as-a-service (PhaaS) platform called Lucid has targeted 169 entities in 88 countries using ...