Hacker groups split up: some of them support Russia, others Ukraine
Amid the backdrop of the barbaric invasion of the Russian army into the territory of Ukraine, hacker groups split into two camps: some declared that they supported the actions of…
Anonymous hackers declared war on the Russian government
A Twitter account associated with the Anonymous hacktivist movement reported that hackers are declaring war on the Russian government over Putin's invasion of Ukraine. Shortly thereafter, the group claimed responsibility…
Researchers found a Hive ransomware master key via cryptographic vulnerability
A group of South Korean researchers from Kunming University published a report detailing how they found the Hive ransomware master key and a method to recover files encrypted with it.…
Firefox 100 and Chrome 100 may have user-agent issues
Mozilla developers have warned that sites may experience problems with the upcoming versions of Firefox 100 and Chrome 100 (released May 3 and March 29, 2022). The fact is that…
Google Offers up to $91,000 for Linux Kernel Vulnerabilities
Google has almost doubled its rewards for vulnerabilities in the Linux kernel, Kubernetes, Google Kubernetes Engine (GKE), and kCTF. The reward can now be up to $91,337. In November last…
Google analysts noticed that software vendors began to fix Zero-day vulnerabilities faster
Google Project Zero specialists presented a report according to which software vendors began to fix 0-day vulnerabilities faster. For example, last year organizations needed less time than in previous years…
Decryption keys for Maze, Egregor and Sekhmet ransomware were posted on the Bleeping Computer forum
The Bleeping Computer forum published master keys for decrypting data affected by Maze, Egregor and Sekhmet ransomware attacks. Apparently, the keys were "leaked" by one of the developers of the…
Experts linked BlackCat (ALPHV) ransomware to BlackMatter and DarkSide groups
A Recorded Future analyst interviewed a member of the hack group behind the BlackCat (ALPHV) ransomware, who confirmed that ALPHV is linked to notorious groups such as BlackMatter and DarkSide.…
Chinese hackers use Zimbra 0-day vulnerability to hack European media and authorities
Security firm Volexity has warned that a previously unknown Chinese hack group is exploiting a 0-day vulnerability in Zimbra's collaborative software. According to official statistics, more than 200,000 enterprises in…
Critical UEFI Vulnerabilities Threaten Devices from 25 Manufacturers
Binarly analysts have discovered 23 critical UEFI vulnerabilities from InsydeH2O, which is used by many major vendors, including HP, Lenovo, Fujitsu, Microsoft, Intel, Dell, Bull (Atos) and Siemens. Together, the…
0-day vulnerability remained unpatched for 2 years due to Microsoft bug bounty issues
As part of January Patch Tuesday, Microsoft fixed a dangerous 0-day privilege escalation vulnerability for which a PoC exploit is available online. The vulnerability is already being exploited in attacks…
Apple paid $100,000 for macOS camera and microphone hack
Information security researcher Ryan Pickren told how he received a large reward from Apple for hacking the camera and microphone in macOS. He also discovered vulnerabilities in Safari and macOS…