The Hacker News17h
An Agent's Identity: Is Your Authentication AI-Proof?
AI agents challenge access control. Discover why new authentication frameworks are essential for secure, dynamic agent use ...
The Hacker News7h
New RustyAttr Malware Targets macOS Through Extended Attribute Abuse
North Korean Lazarus Group uses extended macOS file attributes to deliver RustyAttr malware to unsuspecting users ...
The Hacker News6h
TikTok Pixel Privacy Nightmare: A New Case Study
Advertising on TikTok is the obvious choice for any company trying to reach a young market, and especially so if it happens ...
The Hacker News1d
Hamas-Affiliated WIRTE Employs SameCoin Wiper in Disruptive Attacks Against Israel
SameCoin is a bespoke wiper that was uncovered in February 2024 as used by a Hamas-affiliated threat actor to sabotage ...
The Hacker News11h
Russian Hackers Exploit New NTLM Flaw to Deploy RAT Malware via Phishing Emails
The vulnerability in question, CVE-2024-43451 (CVSS score: 6.5), refers to an NTLM hash disclosure spoofing vulnerability ...
The Hacker News1d
Microsoft Fixes 90 New Flaws, Including Actively Exploited NTLM and Task Scheduler Bugs
Microsoft’s November Patch Tuesday addresses 90 security flaws, including actively exploited NTLM and Task Scheduler ...
The Hacker News1d
Free Decryptor Released for BitLocker-Based ShrinkLocker Ransomware Victims
Romanian cybersecurity company Bitdefender has released a free decryptor to help victims recover data encrypted using the ...
The Hacker News1d
Comprehensive Guide to Building a Strong Browser Security Program
As a result, the browser also becomes a vulnerability that needs to be protected. LayerX has released a comprehensive guide ...
The Hacker News1d
OvrC Platform Vulnerabilities Expose IoT Devices to Remote Attacks and Code Execution
Snap One's OvrC, pronounced "oversee," is advertised as a "revolutionary support platform" that enables homeowners and ...
The Hacker News3d
Cybercriminals Use Excel Exploit to Spread Fileless Remcos RAT Malware
The malicious Excel document is designed to exploit a known remote code execution flaw in Office ( CVE-2017-0199, CVSS score: ...
The Hacker News1d
Iranian Hackers Use "Dream Job" Lures to Deploy SnailResin Malware in Aerospace Attacks
The Iranian threat actor known as TA455 has been observed taking a playbook out of North Korean hacking groups to orchestrate ...
The Hacker News2d
State of SaaS Security Report: Bold Moves Required to Secure SaaS in 2024 and Beyond
Discover key SaaS security risks from unauthorized apps, AI adoption, and MFA gaps in the 2024 SaaS Security Report.