The Hacker News Logo
Click to Subscribe

The Hacker News — Latest Cyber Security News: hacking news

Firefox Blocks Inline and Eval JavaScript on Internal Pages to Prevent Injection Attacks

Firefox Blocks Inline and Eval JavaScript on Internal Pages to Prevent Injection Attacks
October 15, 2019Swati Khandelwal
In an effort to mitigate a large class of potential cross-site scripting issues in Firefox, Mozilla has blocked execution of all inline s...

7-Year-Old Critical RCE Flaw Found in Popular iTerm2 macOS Terminal App

7-Year-Old Critical RCE Flaw Found in Popular iTerm2 macOS Terminal App
October 09, 2019Mohit Kumar
A 7-year-old critical remote code execution vulnerability has been discovered in iTerm2 macOS terminal emulator app—one of the most popu...

vBulletin Releases Patch Update for New RCE and SQLi Vulnerabilities

vBulletin Releases Patch Update for New RCE and SQLi Vulnerabilities
October 08, 2019Wang Wei
After releasing a patch for a critical zero-day remote code execution vulnerability late last month, vBulletin has recently published a ...

Signal Messenger Bug Lets Callers Auto-Connect Calls Without Receivers' Interaction

Signal Messenger Bug Lets Callers Auto-Connect Calls Without Receivers' Interaction
October 04, 2019Swati Khandelwal
Almost every application contains security vulnerabilities, some of which you may find today, but others would remain invisible until som...

New 0-Day Flaw Affecting Most Android Phones Being Exploited in the Wild

New 0-Day Flaw Affecting Most Android Phones Being Exploited in the Wild
October 04, 2019Mohit Kumar
Another day, another revelation of a critical unpatched zero-day vulnerability, this time in the world's most widely used mobile oper...

Over A Billion Malicious Ad Impressions Exploit WebKit Flaw to Target Apple Users

Over A Billion Malicious Ad Impressions Exploit WebKit Flaw to Target Apple Users
October 01, 2019Mohit Kumar
The infamous eGobbler hacking group that surfaced online earlier this year with massive malvertising campaigns has now been caught runnin...

New Critical Exim Flaw Exposes Email Servers to Remote Attacks — Patch Released

New Critical Exim Flaw Exposes Email Servers to Remote Attacks — Patch Released
September 30, 2019Swati Khandelwal
A critical security vulnerability has been discovered and fixed in the popular open-source Exim email server software, which could allow ...

Exclusive — Hacker Steals Over 218 Million Zynga 'Words with Friends' Gamers Data

Exclusive — Hacker Steals Over 218 Million Zynga 'Words with Friends' Gamers Data
September 29, 2019Swati Khandelwal
A Pakistani hacker who previously made headlines earlier this year for selling almost a billion user records stolen from nearly 45 popul...

Hacker Releases 'Unpatchable' Jailbreak For All iOS Devices, iPhone 4s to iPhone X

Hacker Releases 'Unpatchable' Jailbreak For All iOS Devices, iPhone 4s to iPhone X
September 27, 2019Mohit Kumar
An iOS hacker and cybersecurity researcher today publicly released what he claimed to be a "permanent unpatchable bootrom exploit,"...

Microsoft Warns of a New Rare Fileless Malware Hijacking Windows Computers

Microsoft Warns of a New Rare Fileless Malware Hijacking Windows Computers
September 27, 2019Swati Khandelwal
Watch out Windows users! There's a new strain of malware making rounds on the Internet that has already infected thousands of compu...

iOS 13 Bug Lets 3rd-Party Keyboards Gain 'Full Access' — Even When You Deny

iOS 13 Bug Lets 3rd-Party Keyboards Gain 'Full Access' — Even When You Deny
September 26, 2019Mohit Kumar
Following the release of iOS 13 and iPadOS earlier this week, Apple has issued an advisory warning iPhone and iPad users of an unpatched sec...

[Unpatched] Critical 0-Day RCE Exploit for vBulletin Forum Disclosed Publicly

[Unpatched] Critical 0-Day RCE Exploit for vBulletin Forum Disclosed Publicly
September 24, 2019Wang Wei
An anonymous hacker today publicly revealed details and proof-of-concept exploit code for an unpatched, critical zero-day remote code exe...

1-Click iPhone and Android Exploits Target Tibetan Users via WhatsApp

1-Click iPhone and Android Exploits Target Tibetan Users via WhatsApp
September 24, 2019Mohit Kumar
A team of Canadian cybersecurity researchers has uncovered a sophisticated and targeted mobile hacking campaign that is targeting high-pr...

Microsoft Releases Emergency Patches for IE 0-Day and Windows Defender Flaw

Microsoft Releases Emergency Patches for IE 0-Day and Windows Defender Flaw
September 24, 2019Swati Khandelwal
It's not a Patch Tuesday, but Microsoft is rolling out emergency out-of-band security patches for two new vulnerabilities, one of whi...

IT Firm Manager Arrested in the Biggest Data Breach Case of Ecuador’s History

IT Firm Manager Arrested in the Biggest Data Breach Case of Ecuador’s History
September 18, 2019Mohit Kumar
Ecuador officials have arrested the general manager of IT consulting firm Novaestrat after the personal details of almost the entire popul...

Smominru Botnet Indiscriminately Hacked Over 90,000 Computers Just Last Month

Smominru Botnet Indiscriminately Hacked Over 90,000 Computers Just Last Month
September 18, 2019Swati Khandelwal
Insecure Internet-connected devices have aided different types of cybercrime for years, most common being DDoS and spam campaigns. But cyb...

The Definitive RFP Templates for EDR/EPP and APT Protection

The Definitive RFP Templates for EDR/EPP and APT Protection
September 18, 2019The Hacker News
Advanced Persistent Threats groups were once considered a problem that concerns Fortune 100 companies only. However, the threat landscape...

Warning: Researcher Drops phpMyAdmin Zero-Day Affecting All Versions

Warning: Researcher Drops phpMyAdmin Zero-Day Affecting All Versions
September 18, 2019Wang Wei
A cybersecurity researcher recently published details and proof-of-concept for an unpatched zero-day vulnerability in phpMyAdmin—one of t...

Thousands of Google Calendars Possibly Leaking Private Information Online

Thousands of Google Calendars Possibly Leaking Private Information Online
September 17, 2019Mohit Kumar
"Warning — Making your calendar public will make all events visible to the world, including via Google search. Are you sure?" ...
Exclusive Deals

Stay Informed — Newsletter Sign Up

Sign up for THN newsletter and get our latest stories delivered straight to your inbox.