In The News

The ROI of Security Investments: How Cybersecurity Leaders Prove It The Hacker Newsinfo@thehackernews.com (The Hacker News)
November 11, 2024

Cyber threats are intensifying, and cybersecurity has become critical to business operations. As security budgets grow, CEOs and boardrooms are demanding concrete evidence that cybersecurity initiatives deliver value beyond regulation …


Security Flaws in Popular ML Toolkits Enable Server Hijacks, Privilege Escalation The Hacker Newsinfo@thehackernews.com (The Hacker News)
November 11, 2024

Cybersecurity researchers have uncovered nearly two dozen security flaws spanning 15 different machine learning (ML) related open-source projects. These comprise vulnerabilities discovered both on the server- and client-side, software supply chain …


HPE Issues Critical Security Patches for Aruba Access Point Vulnerabilities The Hacker Newsinfo@thehackernews.com (The Hacker News)
November 11, 2024

Hewlett Packard Enterprise (HPE) has released security updates to address multiple vulnerabilities impacting Aruba Networking Access Point products, including two critical bugs that could result in unauthenticated command execution. The flaws …


Cybercriminals Use Excel Exploit to Spread Fileless Remcos RAT Malware The Hacker Newsinfo@thehackernews.com (The Hacker News)
November 10, 2024

Cybersecurity researchers have discovered a new phishing campaign that spreads a new fileless variant of known commercial malware called Remcos RAT. Remcos RAT "provides purchases with a wide range of advanced …


FBI: Spike in Hacked Police Emails, Fake Subpoenas Krebs on SecurityBrianKrebs
November 9, 2024

The Federal Bureau of Investigation (FBI) is urging police departments and governments worldwide to beef up security around their email systems, citing a recent increase in cybercriminal services that use …


Palo Alto Advises Securing PAN-OS Interface Amid Potential RCE Threat Concerns The Hacker Newsinfo@thehackernews.com (The Hacker News)
November 8, 2024

Palo Alto Networks on Friday issued an informational advisory urging customers to ensure that access to the PAN-OS management interface is secured because of a potential remote code execution vulnerability. "Palo …


Bitcoin Fog Founder Sentenced to 12 Years for Cryptocurrency Money Laundering The Hacker Newsinfo@thehackernews.com (The Hacker News)
November 8, 2024

The 36-year-old founder of the Bitcoin Fog cryptocurrency mixer has been sentenced to 12 years and six months in prison for facilitating money laundering activities between 2011 and 2021. Roman Sterlingov, …


AndroxGh0st Malware Integrates Mozi Botnet to Target IoT and Cloud Services The Hacker Newsinfo@thehackernews.com (The Hacker News)
November 8, 2024

The threat actors behind the AndroxGh0st malware are now exploiting a broader set of security flaws impacting various internet-facing applications, while also deploying the Mozi botnet malware. "This botnet utilizes remote …


IcePeony and Transparent Tribe Target Indian Entities with Cloud-Based Tools The Hacker Newsinfo@thehackernews.com (The Hacker News)
November 8, 2024

High-profile entities in India have become the target of malicious campaigns orchestrated by the Pakistan-based Transparent Tribe threat actor and a previously unknown China-nexus cyber espionage group dubbed IcePeony. The intrusions …


Malicious NPM Packages Target Roblox Users with Data-Stealing Malware The Hacker Newsinfo@thehackernews.com (The Hacker News)
November 8, 2024

A new campaign has targeted the npm package repository with malicious JavaScript libraries that are designed to infect Roblox users with open-source stealer malware such as Skuld and Blank-Grabber. "This incident …