Welcome, Guest
You have to register before you can post on our site.

Username/Email:
  

Password
  





Search Forums

(Advanced Search)

Online Users
There are currently 26 online users.
» 0 Member(s) | 23 Guest(s)
Baidu, Bing, Google

Latest Threads
Mysterious Kill Switch Di...
Forum: The Hacker News
Last Post: yazrozzarn
01-10-2026, 04:36 AM
» Replies: 1
» Views: 870
UAW drops unfair labor pr...
Forum: Other Automakers
Last Post: BillyMum
06-16-2025, 09:15 PM
» Replies: 2
» Views: 2,567
Uber's Ex-CISO Appeals Co...
Forum: Dark Reading.com
Last Post: BillyMum
06-15-2025, 05:26 AM
» Replies: 2
» Views: 3,813
2021 Hyundai Ioniq SEL
Forum: Kia USB Entry
Last Post: HackMaster
03-31-2025, 07:17 AM
» Replies: 0
» Views: 463
Vulnerability of Remote K...
Forum: Keyless entry
Last Post: HackMaster
03-31-2025, 07:14 AM
» Replies: 0
» Views: 356
The (In)Security of Autom...
Forum: Keyless entry
Last Post: HackMaster
03-31-2025, 07:12 AM
» Replies: 0
» Views: 337
Relay Attacks on Passive ...
Forum: Keyless entry
Last Post: HackMaster
03-31-2025, 07:07 AM
» Replies: 0
» Views: 328
Hacking Tesla from Wirele...
Forum: Tesla
Last Post: HackMaster
03-31-2025, 06:58 AM
» Replies: 0
» Views: 366
Hacking Tesla from Wirele...
Forum: Tesla
Last Post: HackMaster
03-31-2025, 06:22 AM
» Replies: 0
» Views: 353
Schematics and Datasheets
Forum: Schematics
Last Post: HackMaster
02-27-2025, 12:26 AM
» Replies: 0
» Views: 312

 
  New GobRAT Remote Access Trojan Targeting Linux Routers in Japan
Posted by: The Hacker News - 05-31-2023, 11:04 AM - Forum: The Hacker News - No Replies

New GobRAT Remote Access Trojan Targeting Linux Routers in Japan

Linux routers in Japan are the target of a new Golang remote access trojan (RAT) called GobRAT.
"Initially, the attacker targets a router whose WEBUI is open to the public, executes scripts possibly by using vulnerabilities, and finally infects the GobRAT," the JPCERT Coordination Center (JPCERT/CC) said in a report published today.
The compromise of an internet-exposed router is followed by the

https://thehackernews.com/2023/05/new-go...rojan.html

Print this item

  3 Challenges in Building a Continuous Threat Exposure Management (CTEM) Program and
Posted by: The Hacker News - 05-31-2023, 11:04 AM - Forum: The Hacker News - No Replies

3 Challenges in Building a Continuous Threat Exposure Management (CTEM) Program and

If you're a cybersecurity professional, you're likely familiar with the sea of acronyms our industry is obsessed with. From CNAPP, to CWPP, to CIEM and all of the myriad others, there seems to be a new initialism born each day.
In this article, we'll look at another trending acronym – CTEM, which stands for Continuous Threat Exposure Management – and the often-surprising challenges that come

https://thehackernews.com/2023/05/3-chal...nuous.html

Print this item

  AceCryptor: Cybercriminals' Powerful Weapon, Detected in 240K+ Attacks
Posted by: The Hacker News - 05-31-2023, 11:04 AM - Forum: The Hacker News - No Replies

AceCryptor: Cybercriminals' Powerful Weapon, Detected in 240K+ Attacks

A crypter (alternatively spelled cryptor) malware dubbed AceCryptor has been used to pack numerous strains of malware since 2016.
Slovak cybersecurity firm ESET said it identified over 240,000 detections of the crypter in its telemetry in 2021 and 2022. This amounts to more than 10,000 hits per month.
Some of the prominent malware families contained within AceCryptor are SmokeLoader, RedLine

https://thehackernews.com/2023/05/acecry...erful.html

Print this item

  New BrutePrint Attack Lets Attackers Unlock Smartphones with Fingerprint Brute-Force
Posted by: The Hacker News - 05-31-2023, 11:04 AM - Forum: The Hacker News - No Replies

New BrutePrint Attack Lets Attackers Unlock Smartphones with Fingerprint Brute-Force

Researchers have discovered an inexpensive attack technique that could be leveraged to brute-force fingerprints on smartphones to bypass user authentication and seize control of the devices.
The approach, dubbed BrutePrint, bypasses limits put in place to counter failed biometric authentication attempts by weaponizing two zero-day vulnerabilities in the smartphone fingerprint authentication (SFA

https://thehackernews.com/2023/05/new-br...ckers.html

Print this item

  Sneaky DogeRAT Trojan Poses as Popular Apps, Targets Indian Android Users
Posted by: The Hacker News - 05-31-2023, 11:04 AM - Forum: The Hacker News - No Replies

Sneaky DogeRAT Trojan Poses as Popular Apps, Targets Indian Android Users

A new open source remote access trojan (RAT) called DogeRAT targets Android users primarily located in India as part of a sophisticated malware campaign.
The malware is distributed via social media and messaging platforms under the guise of legitimate applications like Opera Mini, OpenAI ChatGPT, and Premium versions of YouTube, Netflix, and Instagram.
"Once installed on a victim's device, the

https://thehackernews.com/2023/05/sneaky...pular.html

Print this item

  Implementing Risk-Based Vulnerability Discovery and Remediation
Posted by: The Hacker News - 05-31-2023, 11:04 AM - Forum: The Hacker News - No Replies

Implementing Risk-Based Vulnerability Discovery and Remediation

In this day and age, vulnerabilities in software and systems pose a considerable danger to businesses, which is why it is essential to have an efficient vulnerability management program in place. To stay one step ahead of possible breaches and reduce the damage they may cause, it is crucial to automate the process of finding and fixing vulnerabilities depending on the level of danger they pose.

https://thehackernews.com/2023/05/implem...ility.html

Print this item

  CAPTCHA-Breaking Services with Human Solvers Helping Cybercriminals Defeat Security
Posted by: The Hacker News - 05-31-2023, 11:04 AM - Forum: The Hacker News - No Replies

CAPTCHA-Breaking Services with Human Solvers Helping Cybercriminals Defeat Security

Cybersecurity researchers are warning about CAPTCHA-breaking services that are being offered for sale to bypass systems designed to distinguish legitimate users from bot traffic.
"Because cybercriminals are keen on breaking CAPTCHAs accurately, several services that are primarily geared toward this market demand have been created," Trend Micro said in a report published last week.
"These

https://thehackernews.com/2023/05/captch...human.html

Print this item

  Hackers Win $105,000 for Reporting Critical Security Flaws in Sonos One Speakers
Posted by: The Hacker News - 05-31-2023, 11:04 AM - Forum: The Hacker News - No Replies

Hackers Win $105,000 for Reporting Critical Security Flaws in Sonos One Speakers

Multiple security flaws uncovered in Sonos One wireless speakers could be potentially exploited to achieve information disclosure and remote code execution, the Zero Day Initiative (ZDI) said in a report published last week.
The vulnerabilities were demonstrated by three different teams from Qrious Secure, STAR Labs, and DEVCORE at the Pwn2Own hacking contest held in Toronto late last year,

https://thehackernews.com/2023/05/hacker...rting.html

Print this item

  Alert: Hackers Exploit Barracuda Email Security Gateway 0-Day Flaw for 7 Months
Posted by: The Hacker News - 05-31-2023, 11:04 AM - Forum: The Hacker News - No Replies

Alert: Hackers Exploit Barracuda Email Security Gateway 0-Day Flaw for 7 Months

Enterprise security firm Barracuda on Tuesday disclosed that a recently patched zero-day flaw in its Email Security Gateway (ESG) appliances had been abused by threat actors since October 2022 to backdoor the devices.
The latest findings show that the critical vulnerability, tracked as CVE-2023-2868 (CVSS score: N/A), has been actively exploited for at least seven months prior to its discovery.

https://thehackernews.com/2023/05/alert-...email.html

Print this item

  RomCom RAT Using Deceptive Web of Rogue Software Sites for Covert Attacks
Posted by: The Hacker News - 05-31-2023, 11:04 AM - Forum: The Hacker News - No Replies

RomCom RAT Using Deceptive Web of Rogue Software Sites for Covert Attacks

The threat actors behind RomCom RAT are leveraging a network of fake websites advertising rogue versions of popular software at least since July 2022 to infiltrate targets.
Cybersecurity firm Trend Micro is tracking the activity cluster under the name Void Rabisu, which is also known as Tropical Scorpius (Unit 42) and UNC2596 (Mandiant).
"These lure sites are most likely only meant for a small

https://thehackernews.com/2023/05/romcom...rogue.html

Print this item