Travis CI Flaw Exposes Secrets of Thousands of Open Source Projects

The Hacker News Daily Updates 50+ Security Tips to Protect Yourself When Browsing Online Download this free PDF cheat sheet packed full of tips to help you stay safe and secure when you're online. Download Now Sponsored LATEST NEWS Sep 17, 2021 New Malware Targets Windows Subsystem for Linux to Evade Detection A number of malicious samples have been created for the Windows Subsystem for Linux (WSL) with the goal of compromising Windows machines, highlighting a sneaky method that allows the operators to stay under the radar and thwart detection by popular anti-malware engines. The "distinct tradecraft" ... Read More Malware Attack on Aviation Sector Uncovered After Going Unnoticed for 2 Years A targeted phishing campaign aimed at the aviation industry for two years may be spearheaded by a threat actor operating out of Nigeria, highlighting how attackers can carry out small-scale cyber offensives for extended periods of time while staying under the radar. Cisco Talos dubbed the malware ... Read More Travis CI Flaw Exposes Secrets of Thousands of Open Source Projects Continuous integration vendor Travis CI has patched a serious security flaw that exposed API keys, access tokens, and credentials, potentially putting organizations that use public source code repositories at risk of further attacks. The issue — tracked as CVE-2021-41077 — concerns unauthorized ... Read More Third Critical Bug Affects Netgear Smart Switches — Details and PoC Released New details have been revealed about a recently remediated critical vulnerability in Netgear smart switches that could be leveraged by an attacker to potentially execute malicious code and take control of vulnerable devices. The flaw — dubbed "Seventh Inferno" (CVSS score: 9.8) — is part of a trio ... Read More Windows MSHTML 0-Day Exploited to Deploy Cobalt Strike Beacon in Targeted Attacks Microsoft on Wednesday disclosed details of a targeted phishing campaign that leveraged a now-patched zero-day flaw in its MSHTML platform using specially-crafted Office documents to deploy Cobalt Strike Beacon on compromised Windows systems. "These attacks used the vulnerability, tracked ... Read More 50+ Security Tips to Protect Yourself When Browsing Online Download this free PDF cheat sheet packed full of tips to help you stay safe and secure when you're online. Download Now Sponsored This email was sent to myemailku.ghdbrevo2018@blogger.com. You are receiving this newsletter because you opted-in to receive relevant communications from The Hacker News. To manage your email newsletter preferences, please click here. Contact The Hacker News: info@thehackernews.com Unsubscribe The Hacker News | Pearls Omaxe, Netaji Subash Place, Pitampura, Delhi 110034 India