The Hacker News1d
U.S. Sanctions Chinese Cybersecurity Firm Over Treasury Hack Tied to Silk Typhoon
The U.S. Treasury Department's Office of Foreign Assets Control (OFAC) has imposed sanctions against a Chinese cybersecurity ...
The Hacker News1d
New 'Sneaky 2FA' Phishing Kit Targets Microsoft 365 Accounts with 2FA Code Bypass
New Sneaky 2FA phishing kit targets Microsoft 365 accounts, bypassing 2FA using QR codes and anti-analysis measures.
The Hacker News1d
How to Bring Zero Trust to Wi-Fi Security with a Cloud-based Captive Portal?
Discover how cloud-captive portal solutions improve Wi-Fi security by bringing the Zero Trust framework. Learn to implement ...
The Hacker News1d
Critical Flaws in WGS-804HPT Switches Enable RCE and Network Exploitation
Three critical vulnerabilities in WGS-804HPT switches, including two CVSS 9.8 flaws, allow remote code execution.
The Hacker News1d
Python-Based Bots Exploiting PHP Servers Fuel Gambling Platform Proliferation
Millions of PHP servers compromised by Python bots using GSocket to target Indonesian users with gambling redirects.
The Hacker News1d
U.S. Sanctions North Korean IT Worker Network Supporting WMD Programs
The U.S. Treasury Department's Office of Foreign Assets Control (OFAC) sanctioned two individuals and four entities for their ...
The Hacker News2d
Critical SimpleHelp Flaws Allow File Theft, Privilege Escalation, and RCE Attacks
Patch critical SimpleHelp vulnerabilities, including CVE-2024-57727 and CVE-2024-57728, to prevent admin credential theft and ...
The Hacker News2d
European Privacy Group Sues TikTok and AliExpress for Illicit Data Transfers to China
Noyb files GDPR complaints against TikTok, AliExpress, and others for illegal EU-China data transfers, citing risks of Chinese government access.
The Hacker News2d
Russian Star Blizzard Targets WhatsApp Accounts in New Spear-Phishing Campaign
Star Blizzard shifts to WhatsApp spear-phishing, using QR codes to target diplomats and Ukraine aid. Campaign ended November 2024.
The Hacker News2d
Researchers Find Exploit Allowing NTLMv1 Despite Active Directory Restrictions
Misconfigured on-prem applications bypass Microsoft's NTLMv1 block in Active Directory, exposing sensitive data risks.
The Hacker News2d
Zero Trust Security, Why It's Essential In Today's Threat Landscape
Zero Trust prevents breaches with direct-to-app access and contextual policies, enabling secure digital transformation.
The Hacker News2d
Ready to Simplify Trust Management? Join Free Webinar to See DigiCert ONE in Action
Simplify trust management with DigiCert ONE: centralize control, automate operations, and ensure compliance in hybrid ...