The Hacker News1h
New MacStealer macOS Malware Steals iCloud Keychain Data and Passwords
New MacStealer malware targets Apple devices running macOS Catalina & later, M1/M2 CPUs and uses Telegram for C&C, stealing ...
The Hacker News2h
Microsoft Issues Patch for aCropalypse Privacy Flaw in Windows Screenshot Tools
Microsoft has released an out-of-band update to address a privacy-defeating flaw in its screenshot editing tool for Windows ...
The Hacker News2d
Microsoft Warns of Stealthy Outlook Vulnerability Exploited by Russian Hackers
Microsoft shares guidance on detecting IoCs linked to a recently patched critical Outlook vulnerability (CVE-2023-23397) ...
The Hacker News2d
U.K. National Crime Agency Sets Up Fake DDoS-For-Hire Sites to Catch Cybercriminals
UK's National Crime Agency has revealed that it set up fake DDoS-for-hire websites as a trap to catch cybercriminals ...
The Hacker News2d
OpenAI Reveals Redis Bug Behind ChatGPT User Data Exposure Incident
OpenAI on Friday disclosed that a bug in the Redis open source library was responsible for the exposure of other users' ...
The Hacker News2d
Malicious Python Package Uses Unicode Trickery to Evade Detection and Steal Data
Python developers, beware! Malicious Python package on PyPI uses Unicode to evade detection & deploy info-stealing malware!
The Hacker News3d
Operation Soft Cell: Chinese Hackers Breach Middle East Telecom Providers
Middle East telecom providers under cyber attack from China-linked threat actors in a long-running campaign dubbed Operation ...
The Hacker News2d
GitHub Swiftly Replaces Exposed RSA SSH Key to Protect Git Operations
GitHub replaces RSA SSH host key after brief exposure in public repository to prevent any bad actor from impersonating the ...
The Hacker News3d
Critical WooCommerce Payments Plugin Flaw Patched for 500,000+ WordPress Sites
Critical security flaw found in WooCommerce Payments plugin for WordPress, affecting 500K+ websites! Update to patched ...
The Hacker News5d
From Ransomware to Cyber Espionage: 55 Zero-Day Vulnerabilities Weaponized in 2022
Of the 55 zero-day bugs, 13 are estimated to have been abused by cyber espionage groups, with four others exploited by ...
The Hacker News4d
CISA Alerts on Critical Security Vulnerabilities in Industrial Control Systems
CISA warns of critical flaws in industrial control systems from Keysight, Delta Electronics, Siemens, VISAM, Rockwell ...
The Hacker News3d
Fake ChatGPT Chrome Browser Extension Caught Hijacking Facebook Accounts
Cybercriminals are at it again! Yet another bogus ChatGPT browser extension has surfaced, capable of stealing users' Facebook ...