LockBit Ransomware Extorts $91 Million from U.S. Companies
The threat actors behind the LockBit ransomware-as-a-service (RaaS) scheme have extorted $91 million following hundreds of attacks against numerous U.S. organizations since 2020. That’s according to a joint bulletin published by the U.S. Cybersecurity and Infrastructure Security Agency (CISA), Federal Bureau of Investigation (FBI), the Multi-State Information Sharing and Analysis Center (MS-ISAC
Microsoft fixes six critical vulnerabilities in June Patch Tuesday
It’s that time of the month again: We’re looking at June’s Patch Tuesday roundup. Microsoft has released its monthly update, and compared to previous months, it’s actually not so bad. No actively exploited zero-days and only six critical vulnerabilities. So, we’ll have the luxury of going over those in some more detail. The Common Vulnerabilities and […]
Update Chrome now! Google fixes critical vulnerability in Autofill payments
Google has released a Chrome update which includes five security fixes. One of these security fixes is for a critical vulnerability in Autofill payments. Google labels vulnerabilities as critical if they allow an attacker to run arbitrary code on the underlying platform with the user’s privileges in the normal course of browsing. How to protect yourself […]
Setting Strong and Unique Passwords: The First Line of Defense for PS5 Security
By Owais Sultan A strong password for your PS5 enhances security, thwarting unauthorized access and protecting your personal information and gaming… This is a post from HackRead.com Read the original post: Setting Strong and Unique Passwords: The First Line of Defense for PS5 Security
Windows Users Alert: Skuld Malware Steals Discord and Browser Data
By Deeba Ahmed Skuld malware, named after the Norse goddess associated with the future and fate employs sophisticated techniques to infiltrate… This is a post from HackRead.com Read the original post: Windows Users Alert: Skuld Malware Steals Discord and Browser Data
Chinese Hackers Exploit VMware Zero-Day to Backdoor Windows and Linux Systems
The Chinese state-sponsored group known as UNC3886 has been found to exploit a zero-day flaw in VMware ESXi hosts to backdoor Windows and Linux systems. The VMware Tools authentication bypass vulnerability, tracked as CVE-2023-20867 (CVSS score: 3.9), “enabled the execution of privileged commands across Windows, Linux, and PhotonOS (vCenter) guest VMs without authentication of guest credentials
Temporary Phone Number: An Essential Tool for Privacy Protection
By Owais Sultan In an era where our lives are increasingly interconnected with the digital world, safeguarding our privacy has become… This is a post from HackRead.com Read the original post: Temporary Phone Number: An Essential Tool for Privacy Protection
New “DoubleFinger” Malware Strikes Cryptocurrency Wallets
By Waqas DoubleFinger Malware: Two-Fold Attack on Crypto Wallets with GreetingGhoul Stealer. This is a post from HackRead.com Read the original post: New “DoubleFinger” Malware Strikes Cryptocurrency Wallets
Severe Vulnerabilities Reported in Microsoft Azure Bastion and Container Registry
Two “dangerous” security vulnerabilities have been disclosed in Microsoft Azure Bastion and Azure Container Registry that could have been exploited to carry out cross-site scripting (XSS) attacks. “The vulnerabilities allowed unauthorized access to the victim’s session within the compromised Azure service iframe, which can lead to severe consequences, including unauthorized data access,
New Golang-based Skuld Malware Stealing Discord and Browser Data from Windows PCs
A new Golang-based information stealer called Skuld has compromised Windows systems across Europe, Southeast Asia, and the U.S. “This new malware strain tries to steal sensitive information from its victims,” Trellix researcher Ernesto Fernández Provecho said in a Tuesday analysis. “To accomplish this task, it searches for data stored in applications such as Discord and web browsers; information