Your basket is currently empty!
Our Latest Posts
Cyber Security News
Taken from the hacker news website feed
- Legacy Stripe API Exploited to Validate Stolen Payment Cards in Web Skimmer Campaignby [email protected] (The Hacker News) on April 3, 2025 at 4:45 am
Threat hunters are warning of a sophisticated web skimmer campaign that leverages a legacy application programming interface (API) from payment processor Stripe to validate stolen payment information prior to exfiltration. “This tactic ensures that only valid card data is sent to the attackers, making the operation more efficient and potentially harder to detect,” Jscrambler researchers Pedro
- Europol Dismantles Kidflix With 72,000 CSAM Videos Seized in Major Operationby [email protected] (The Hacker News) on April 3, 2025 at 3:58 am
In one of the largest coordinated law enforcement operations, authorities have dismantled Kidflix, a streaming platform that offered child sexual abuse material (CSAM). “A total of 1.8 million users worldwide logged on to the platform between April 2022 and March 2025,” Europol said in a statement. “On March 11, 2025, the server, which contained around 72,000 videos at the time, was seized by
- Google Fixed Cloud Run Vulnerability Allowing Unauthorized Image Access via IAM Misuseby [email protected] (The Hacker News) on April 2, 2025 at 1:48 pm
Cybersecurity researchers have disclosed details of a now-patched privilege escalation vulnerability in Google Cloud Platform (GCP) Cloud Run that could have allowed a malicious actor to access container images and even inject malicious code. “The vulnerability could have allowed such an identity to abuse its Google Cloud Run revision edit permissions in order to pull private Google Artifact
- Helping Your Clients Achieve NIST Compliance: A Step by Step Guide for Service Providersby [email protected] (The Hacker News) on April 2, 2025 at 11:25 am
Introduction As the cybersecurity landscape evolves, service providers play an increasingly vital role in safeguarding sensitive data and maintaining compliance with industry regulations. The National Institute of Standards and Technology (NIST) offers a comprehensive set of frameworks that provide a clear path to achieving robust cybersecurity practices. For service providers, adhering to NIST
- Outlaw Group Uses SSH Brute-Force to Deploy Cryptojacking Malware on Linux Serversby [email protected] (The Hacker News) on April 2, 2025 at 10:43 am
Cybersecurity researchers have shed light on an “auto-propagating” cryptocurrency mining botnet called Outlaw (aka Dota) that’s known for targeting SSH servers with weak credentials. “Outlaw is a Linux malware that relies on SSH brute-force attacks, cryptocurrency mining, and worm-like propagation to infect and maintain control over systems,” Elastic Security Labs said in a new analysis