Back to Top

Dark Reading

18 January 2022

Dark Reading: Connecting the Information and Security Community Dark Reading

Threatpost

The First Stop For Security News

The Hacker News

18 January 2022

Most trusted, widely-read independent cybersecurity news source for everyone; supported by hackers and IT professionals — Send TIPs to admin@thehackernews.com Some Rights Reserved
  • Earth Lusca Hackers Aimed at High-Value Targets in Government and Private Sectors
    17 January 2022
    An elusive threat actor called Earth Lusca has been observed striking organizations across the world as part of what appears to be simultaneously an espionage campaign and an attempt to reap monetary profits. "The list of its victims includes high-value targets such as government and educational institutions, religious movements, pro-democracy and human rights organizations in Hong Kong,
  • Zoho Releases Patch for Critical Flaw Affecting ManageEngine Desktop Central
    17 January 2022
    Enterprise software maker Zoho on Monday issued patches for a critical security vulnerability in Desktop Central and Desktop Central MSP that a remote adversary could exploit to perform unauthorized actions in affected servers. Tracked as CVE-2021-44757, the shortcoming concerns an instance of authentication bypass that "may allow an attacker to read unauthorized data or write an arbitrary zip
  • Chrome Limits Websites' Direct Access to Private Networks for Security Reasons
    17 January 2022
    Google Chrome has announced plans to prohibit public websites from directly accessing endpoints located within private networks as part of an upcoming major security shakeup to prevent intrusions via the browser. The proposed change is set to be rolled out in two phases consisting of releases Chrome 98 and Chrome 101 scheduled in the coming months via a newly implemented W3C specification called
  • Dark Web's Largest Marketplace for Stolen Credit Cards is Shutting Down
    16 January 2022
    UniCC, the biggest dark web marketplace for stolen credit and debit cards, has announced that it's shuttering its operations after earning $358 million in purchases since 2013 using cryptocurrencies such as Bitcoin, Litecoin, Ether, and Dash. "Don't build any conspiracy theories about us leaving," the anonymous operators of UniCC said in a farewell posted on dark web carding forums, according to
  • High-Severity Vulnerability in 3 WordPress Plugins Affected 84,000 Websites
    16 January 2022
    Researchers have disclosed a security shortcoming affecting three different WordPress plugins that impact over 84,000 websites and could be abused by a malicious actor to take over vulnerable sites. "This flaw made it possible for an attacker to update arbitrary site options on a vulnerable site, provided they could trick a site's administrator into performing an action, such as clicking on a

Naked Security

Computer Security News, Advice and Research Naked Security