Security

Check Point specialists spoke about the Rampant Kitten hacker group, which steals 2FA codes from SMS, as well as data from Telegram and KeePass, and which has been tracking Iranian opposition organizations, dissidents and expats for at least six years. The researchers emphasize that other companies and journalists have previously …

The US Department of Justice has filed charges in absentia against three Iranian hackers suspected of hacking into companies in aerospace and satellite sectors. One of the alleged hackers was previously considered a white hat specialist. According to prosecutors, Said Pourkarim Arabi, Mohammad Reza Espargham and Mohammad Bayati have been …

Specialists of the Chinese company Tencent Security reported about the MrbMiner malware, which is used to install cryptocurrency miners on Microsoft SQL databases. According to experts, MrbMiner malware has infected thousands of MSSQL servers. The researchers named the group behind these attacks MrbMiner, after one of the domains used by …

According to Kaspersky Lab, more and more hacker groups are carrying out targeted attacks on Linux-based devices using specially designed tools. Overall, experts note the growing interest of cybercriminals in Linux systems. The researchers write that over the past eight years, more than ten developed hack groups have carried out …

Famous cybersecurity expert and founder of Sanguine Security (SanSec) Willem de Groot warned about the largest attack in the company’s history aimed at compromising online stores based on the e-commerce platform Magento. According to the specialist, stores based on Magento have suffered the largest attack since 2015. All of these …

It was revealed this week that Microsoft patched a major vulnerability last month. The problem is identified as CVE-2020-1472 and is named Zerologon. The bug allows capturing Windows servers that act as domain controllers in corporate networks. In August 2020, the issue was described as a privilege escalation in Netlogon, …

Recently, a dangerous vulnerability was found in the File Manager plugin for WordPress that allows uploading malicious files to sites. Hackers have already started competing for WordPress sites that are affected by this vulnerability. The File Manager plugin is used by over 700,000 resources, and although the vulnerability has already …

September Patch Tuesday brought fixes for 129 vulnerabilities in 15 different Microsoft products: Windows, Edge and Internet Explorer browsers, ChakraCore, SQL Server, Exchange Server, Office, ASP.NET, OneDrive, Azure DevOps, Visual Studio and Microsoft Dynamics. At the same time, the company’s engineers assure that any of the vulnerabilities eliminated this month …

The New York Times reports that one more suspect has emerged in the Twitter hack – another 16-year-old teenager could be involved in the attack. Let me remind you that in mid-June 2020, Twitter was subjected to the largest attack in its entire history. Then, many accounts of public people, …

At the USENIX conference, Mozilla researchers said that advertising campaigns would suffice information from the user’s browser history (50-150 favorite sites) to build a reliable profile of this person. In essence, the analysis carried out by experts dispels the myth that browsing history, even anonymous one, is completely useless for …