Update Google Chrome ASAP to Patch 2 New Actively Exploited Zero-Day Flaws

The Hacker News Daily Updates AI Can Comb Through Your Data to Create More Compelling Customer Experience Which increases customer loyalty. Download Now Sponsored LATEST NEWS Oct 1, 2021 Apple Pay Can be Abused to Make Contactless Payments From Locked iPhones Cybersecurity researchers have disclosed an unpatched flaw in Apple Pay that attackers could abuse to make an unauthorized Visa payment with a locked iPhone by taking advantage of the Express Travel mode set up in the device's wallet. "An attacker only needs a stolen, powered on iPhone. The ... Read More Chinese Hackers Used a New Rootkit to Spy on Targeted Windows 10 Users A formerly unknown Chinese-speaking threat actor has been linked to a long-standing evasive operation aimed at South East Asian targets as far back as July 2020 to deploy a kernel-mode rootkit on compromised Windows systems. Attacks mounted by the hacking group, dubbed GhostEmperor by Kaspersky, ... Read More Beware of Fake Amnesty International Antivirus for Pegasus that Hacks PCs with Malware In yet another indicator of how hacking groups are quick to capitalize on world events and improvise their attack campaigns for maximum impact, threat actors have been discovered impersonating Amnesty International to distribute malware that purports to be security software designed to safeguard ... Read More Update Google Chrome ASAP to Patch 2 New Actively Exploited Zero-Day Flaws Google on Thursday pushed urgent security fixes for its Chrome browser, including a pair of new security weaknesses that the company said are being exploited in the wild, making them the fourth and fifth actively zero-days plugged this month alone. The issues, designated as CVE-2021-37975 and ... Read More New Azure AD Bug Lets Hackers Brute-Force Passwords Without Getting Caught Cybersecurity researchers have disclosed an unpatched security vulnerability in the protocol used by Microsoft Azure Active Directory that potential adversaries could abuse to stage undetected brute-force attacks. "This flaw allows threat actors to perform single-factor brute-force attacks against ... Read More Defending Against Credential-Based and Privilege Escalation Attacks Provisioning secure access to a system, resource, application, or network goes beyond confirming the user’s identity based on their authorization and authentication. It must also include accurately making sure that the tools they use are entitled to this access. Without this additional layer of protection, threat actors can masquerade as real users and gain unwarranted access. Download Now Sponsored This email was sent to myemailku.ghdbrevo2018@blogger.com. You are receiving this newsletter because you opted-in to receive relevant communications from The Hacker News. To manage your email newsletter preferences, please click here. Contact The Hacker News: info@thehackernews.com Unsubscribe The Hacker News | Pearls Omaxe, Netaji Subash Place, Pitampura, Delhi 110034 India