Daily Newsletter

The Hacker News Daily Updates A Brief Guide to a Secure Multicloud Environment As more organizations are shifting infrastructure and services to the cloud, more are adopting a multicloud strategy. Download Now Sponsored LATEST NEWS Jan 1, 2021 Secret Backdoor Account Found in Several Zyxel Firewall, VPN Products Zyxel has released a patch to address a critical vulnerability in its firmware concerning a hardcoded undocumented secret account that could be abused by an attacker to login with administrative privileges and compromise its networking devices. The flaw, tracked as CVE-2020-29583 (CVSS score 7.8), ... Read More Microsoft Says SolarWinds Hackers Accessed Some of Its Source Code Microsoft on Thursday revealed that the threat actors behind the SolarWinds supply chain attack were able to gain access to a small number of internal accounts and escalate access inside its internal network. The "very sophisticated nation-state actor" used the unauthorized access to view, but not ... Read More A Google Docs Bug Could Have Allowed Hackers See Your Private Documents Google has patched a bug in its feedback tool incorporated across its services that could be exploited by an attacker to potentially steal screenshots of sensitive Google Docs documents simply by embedding them in a malicious website. The flaw was discovered on July 9 by security researcher Sreeram ... Read More AutoHotkey-Based Password Stealer Targeting US, Canadian Banking Users Threat actors have been discovered distributing a new credential stealer written in AutoHotkey (AHK) scripting language as part of an ongoing campaign that started early 2020. Customers of financial institutions in the US and Canada are among the primary targets for credential exfiltration, with a ... Read More A New SolarWinds Flaw Likely Had Let Hackers Install SUPERNOVA Malware An authentication bypass vulnerability in the SolarWinds Orion software may have been leveraged by adversaries as a zero-day to deploy the SUPERNOVA malware in target environments. According to an advisory published yesterday by the CERT Coordination Center, the SolarWinds Orion API that's used to ... Read More Endpoint Security Software Requirements Gathering Template Jumpstart your selection project with a free, pre-built, customizable endpoint security software requirements template. Download Now Sponsored This email was sent to myemailku.ghdbrevo2018@blogger.com. You are receiving this newsletter because you opted-in to receive relevant communications from The Hacker News. To manage your email newsletter preferences, please click here. Contact The Hacker News: info@thehackernews.com Unsubscribe The Hacker News | Pearls Omaxe, Netaji Subash Place, Pitampura, Delhi 110034 India