NTLM Credential Theft Risk in Python Apps Threaten Windows Security

/in

New research reveals critical vulnerabilities in Python applications for Windows including Snowflake, Gradio, Jupyter, and Streamlit that could…

Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – ​Read More

Stealthy ‘sedexp’ Linux Malware Evaded Detection for Two Years

/in

A sophisticated Linux malware called ‘sedexp’ has been flying under the radar since 2022, utilizing a unique persistence technique not yet recognized by the MITRE ATT&CK framework.

Cyware News – Latest Cyber News – ​Read More

Uber to Appeal Dutch €290 Million GDPR Fine

/in

The Dutch Data Protection Authority has fined Uber €290 million ($320 million) for driver data transfer practices that allegedly violate GDPR.

The post Uber to Appeal Dutch €290 Million GDPR Fine appeared first on SecurityWeek.

SecurityWeek – ​Read More

Kremlin Blames Widespread Website Disruptions on DDoS Attack; Digital Experts Disagree

/in

The Kremlin attributed the widespread website disruptions in Russia to a DDoS attack, but digital experts disagree, stating that it is unlikely to target all 2,000 Russian telecom operators simultaneously.

Cyware News – Latest Cyber News – ​Read More

Hackers can Take Over Ecovacs Home Robots to Spy on Device Owners

/in

Researchers recently warned that Ecovacs vacuum and lawn mower robots could be hacked to spy on their owners, with one flaw that allows attackers to take over devices’ cameras and microphones via Bluetooth.

Cyware News – Latest Cyber News – ​Read More

Stealthy Memory-Only Dropper Delivers PEAKLIGHT Loader on Windows Systems

/in

A memory-only dropper decrypts and executes a PowerShell-based downloader known as PEAKLIGHT, allowing for the distribution of malware such as Lumma Stealer, Hijack Loader, and CryptBot.

Cyware News – Latest Cyber News – ​Read More

C-Suite Involvement in Cybersecurity is Little More Than Lip Service

/in

The C-suite’s lack of engagement in cybersecurity poses a significant risk despite the growing threat landscape. Organizations need to prioritize cyber-risk management to prevent financial losses and damage to their reputation.

Cyware News – Latest Cyber News – ​Read More

CISA Adds Versa Director Bug to its Known Exploited Vulnerabilities Catalog

/in

The vulnerability, CVE-2024-39717, allows administrators to upload a malicious file disguised as a PNG image through the “Change Favicon” feature in Versa Director’s GUI.

Cyware News – Latest Cyber News – ​Read More

YouTube Launches AI Tool to Recover Hacked Accounts

/in

YouTube has launched an AI tool to help users recover hacked accounts more easily. The AI chatbot called “support assistant” will guide users through the process of securing their login and recovering their account.

Cyware News – Latest Cyber News – ​Read More

Meta Says Iran-backed Hackers Targeted Political Figures on WhatsApp

/in

Meta Platforms revealed an Iranian hacker group targeting global political figures on WhatsApp. The Iranian state-sponsored threat actor APT42 used WhatsApp accounts to target individuals in Israel, Palestine, Iran, the U.K., and the U.S.

Cyware News – Latest Cyber News – ​Read More