Lastpass- the password management solution which had the beliefs of thousands of users suddenly faced criticism on account of its security incident last month. Lastpass has a record of security incidents in 2011, 2015, 2016,2019,2021,2022.
Millions of Android devices are vulnerable to remote spying due to critical chipset bugs
An adversary could gain remote access to media and audio conversations from affected mobile devices if three security vulnerabilities are not addressed in audio decoders of Qualcomm and MediaTek chips. The Israeli cybersecurity company Check Point ...
A deep dive analysis of the PYSA ransomware group is released by researchers
The PYSA ransomware operation has been examined for 18 months and revealed that the cybercrime cartel adopted five stages of software development to increase the efficiency of its workflows. A convenient user-friendly tool like a full-text search ...
This new SolarMarker variant uses updated techniques to stay undetected
Security researchers have revealed a new version of the SolarMarker malware that updates its defense evasion abilities to stay under the radar. Researchers from Palo Alto Networks Unit 42 wrote in a report published this month that the latest vers ...
The Lazarus Group is responsible for the $540 million Axie Infinity crypto hack and other attacks on the chemical industry
According to a statement from the US Treasury Department, the North Korean-backed Lazarus Group (aka Hidden Cobra) is responsible for the theft of $540 million from the Ronin Network of the video game Axie Infinity. Treasury officials linked the E ...
Dozens of organizations were breached by hackers using stolen OAuth tokens, GitHub reports
GitHub announced on Friday that it had discovered evidence that an unidentified adversary had exploited stolen OAuth user tokens to unauthorized download data from multiple organizations. GitHub's Mike Hanley disclosed in a report that an attacker ...
Bug in VMware Cloud Director could allow hackers to takeover entire cloud infrastructure
VMWare, a leader in cloud computing and virtualization, rolled out an update on Thursday that addresses a critical security hole in its Cloud Director product that could be weaponized to launch remote code execution attacks. A CVSS score of 9.1 ou ...
Zingostealer Malware given to other cybercriminals for free by Haskers Gang
The Haskers Gang which is a crimeware-related threat actor has released ZingoStealer for free on the Web. Other criminal groups can use the malware for nefarious purposes. In a report shared with The Hacker News, Cisco Talos researchers Edmund Bru ...
The Ethereum developer jailed for 63 months for helping North Korea evade sanctions
Virgil Griffith, a former Ethereum developer, has been sentenced to five years and three months in prison and must pay a $100,000 fine for conspiring with North Korea to use cryptocurrencies to circumvent sanctions imposed on the country. The regi ...
In a global operation, Microsoft disrupts the ZLoader cybercrime botnet
The ZLoader botnet was disrupted by Microsoft and a consortium of cybersecurity companies that gained control of 65 domains used for control and communication. Microsoft's Digital Crimes Unit (DCU) general manager Amy Hogan-Burney said that the ZL ...