The Hacker News Most trusted, widely-read independent cybersecurity news source for everyone; supported by hackers and IT professionals — Send TIPs to [email protected]

  • Twilio Suffers Data Breach After Employees Fall Victim to SMS Phishing Attack
    by [email protected] (Ravie Lakshmanan) on August 9, 2022 at 2:24 pm

    Customer engagement platform Twilio on Monday disclosed that a "sophisticated" threat actor gained "unauthorized access" using an SMS-based phishing campaign aimed at its staff to gain information on a "limited number" of accounts. The social-engineering attack was bent on stealing employee credentials, the company said, calling the as-yet-unidentified adversary "well-organized" and "methodical

  • U.S. Sanctions Virtual Currency Mixer Tornado Cash for Alleged Use in Laundering
    by [email protected] (Ravie Lakshmanan) on August 9, 2022 at 2:13 pm

    The U.S. Treasury Department on Monday placed sanctions against crypto mixing service Tornado Cash, citing its use by the North Korea-backed Lazarus Group in the high-profile hacks of Ethereum bridges to launder and cash out the ill-gotten money. Tornado Cash, which allows users to move cryptocurrency assets between accounts by obfuscating their origin and destination, is estimated to have been

  • 10 Credential Stealing Python Libraries Found on PyPI Repository
    by [email protected] (Ravie Lakshmanan) on August 9, 2022 at 2:12 pm

    In what's yet another instance of malicious packages creeping into public code repositories, 10 modules have been removed from the Python Package Index (PyPI) for their ability to harvest critical data points such as passwords and Api tokens. The packages "install info-stealers that enable attackers to steal developer's private data and personal credentials," Israeli cybersecurity firm Check

  • Chinese Hackers Targeted Dozens of Industrial Enterprises and Public Institutions
    by [email protected] (Ravie Lakshmanan) on August 9, 2022 at 2:11 pm

    Over a dozen military-industrial complex enterprises and public institutions in Afghanistan and Europe have come under a wave of targeted attacks since January 2022 to steal confidential data by simultaneously making use of six different backdoors. Russian cybersecurity firm Kaspersky attributed the attacks "with a high degree of confidence" to a China-linked threat actor tracked by Proofpoint 

  • The Truth About False Positives in Security
    by [email protected] (The Hacker News) on August 9, 2022 at 12:18 pm

    TL;DR: As weird as it might sound, seeing a few false positives reported by a security scanner is probably a good sign and certainly better than seeing none. Let's explain why. Introduction False positives have made a somewhat unexpected appearance in our lives in recent years. I am, of course, referring to the COVID-19 pandemic, which required massive testing campaigns in order to control the

UK Computer Companies - Business Directory Uk - Business listings for computer repair, support and hardware companies Computer Networking, Network Directory - Computer networking solutions providers and companies