1. Home
  2. Discover
  3. Technology
  4. The Hacker News

WARNING: Hackers Exploiting Chrome Browser Zero-Day Vulnerability

The Hacker News Daily Updates
Newsletter
cover

Do Your Customers Trust You with Their Data?

How to prepare for the new era of data privacy.

Download Now Sponsored
LATEST NEWS Dec 3, 2022

Google Rolls Out New Chrome Browser Update to Patch Yet Another Zero-Day Vulnerability

Search giant Google on Friday released an out-of-band security update to fix a new actively exploited zero-day flaw in its Chrome web browser. The high-severity flaw, tracked as CVE-2022-4262, concerns a type confusion bug in the V8 JavaScript engine. Clement Lecigne of Google's Threat Analysis Group (TAG) has been credited with reporting the issue on November 29, 2022. Type ...

Read More
Twitter Facebook LinkedIn

Hackers Sign Android Malware Apps with Compromised Platform Certificates

Platform certificates used by Android smartphone vendors like Samsung, LG, and MediaTek have been found to be abused to sign malicious apps. The findings were first discovered and reported by Google reverse engineer Łukasz Siewierski on Thursday. "A platform certificate is the application signing certificate used to sign the 'android' application on the system image," a report filed through ...

Read More
Twitter Facebook LinkedIn

CISA Warns of Multiple Critical Vulnerabilities Affecting Mitsubishi Electric PLCs

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) this week released an Industrial Control Systems (ICS) advisory warning of multiple vulnerabilities in Mitsubishi Electric GX Works3 engineering software. "Successful exploitation of these vulnerabilities could allow unauthorized users to gain access to the MELSEC iQ-R/F/L series CPU modules and the MELSEC iQ-R series OPC UA ...

Read More
Twitter Facebook LinkedIn

The Value of Old Systems

Old technology solutions – every organization has a few of them tucked away somewhere.  It could be an old and unsupported storage system or a tape library holding the still-functional backups from over 10 years ago.  This is a common scenario with software too. For example, consider an accounting software suite that was extremely expensive when it was purchased. If the vendor eventually ...

Read More
Twitter Facebook LinkedIn

Researchers Disclose Supply-Chain Flaw Affecting IBM Cloud Databases for PostgreSQL

IBM has fixed a high-severity security vulnerability affecting its Cloud Databases (ICD) for PostgreSQL product that could be potentially exploited to tamper with internal repositories and run unauthorized code. The privilege escalation flaw (CVSS score: 8.8), dubbed "Hell's Keychain" by cloud security firm Wiz, has been described as a "first-of-its-kind supply-chain attack vector impacting ...

Read More
Twitter Facebook LinkedIn

Hackers Exploiting Redis Vulnerability to Deploy New Redigo Malware on Servers

A previously undocumented Go-based malware is targeting Redis servers with the goal of taking control of the infected systems and likely building a botnet network. The attacks involve taking advantage of a critical security vulnerability in the open source, in-memory, key-value store that was disclosed earlier this year to deploy Redigo, according to cloud security ...

Read More
Twitter Facebook LinkedIn

What the CISA Reporting Rule Means for Your IT Security Protocol

The new Cyber Incident Reporting for Critical Infrastructure Act of 2022 (CIRCIA) requires CISA to create rules regarding cyber incident reporting by critical infrastructure organizations. The RFI and hearings precede a Notice of Proposed Rulemaking (NPRM) that CISA must publish sooner than 24 months from the enactment of CIRCIA, which the President signed into law in March. The sessions ...

Read More
Twitter Facebook LinkedIn

Watch Out! These Android Keyboard Apps With 2 Million Installs Can be Hacked Remotely

Multiple unpatched vulnerabilities have been discovered in three Android apps that allow a smartphone to be used as a remote keyboard and mouse. The apps in question are Lazy Mouse, PC Keyboard, and Telepad, which have been cumulatively downloaded over two million times from the Google Play Store. Telepad is no longer available through the app marketplace but can be downloaded from its ...

Read More
Twitter Facebook LinkedIn
cover

Do Your Customers Trust You with Their Data?

How to prepare for the new era of data privacy.

Download Now Sponsored

This email was sent to you. You are receiving this newsletter because you opted-in to receive relevant communications from The Hacker News. To manage your email newsletter preferences, please click here.

Contact The Hacker News: info@thehackernews.com
Unsubscribe

The Hacker News | Pearls Omaxe, Netaji Subash Place, Pitampura, Delhi 110034 India

Key phrases

The US Cybersecurity kind supplychain attack vector New Chrome Browser Update new Cyber Incident Reporting Mitsubishi Electric PLCs A platform certificate Chrome web browser band security update accounting software suite Threat Analysis Group ICS advisory warning undocumented Gobased malware memory keyvalue store Critical Infrastructure Act critical infrastructure organizations Infrastructure Security Agency IT Security Protocol application signing certificate unsupported storage system cloud security firm critical security vulnerability privilege escalation flaw New Redigo Malware Search giant Google Android Malware Apps Google reverse engineer three Android apps Google Play Store type confusion bug Old technology solutions industrial control systems CISA Reporting Rule Multiple Critical Vulnerabilities Multiple unpatched vulnerabilities highseverity security vulnerability Android smartphone vendors Android Keyboard Apps IBM Cloud Databases

Older messages

Spanish IT Firm Caught Exploiting Chrome, Firefox, & Windows Zero-Day Vulnerabilities

Friday, December 2, 2022

The Hacker News Daily Updates Newsletter cover How to Use a Hacker's Toolkit Against Them How can you stay one step ahead of hackers targeting your employees to keep your organization safe?

Researchers 'Accidentally' Crash Cryptocurrency Mining Botnet Network

Thursday, December 1, 2022

The Hacker News Daily Updates Newsletter cover Mastering Cyber Intelligence ($19.99 Value) FREE for a Limited Time Cyber Threat Intelligence converts threat information into evidence-based intelligence

Cybersecurity Risk Hunting

Wednesday, November 30, 2022

The Hacker News eBook Update Newsletter Industrial Cybersecurity Pulse IT/OT eBook Download For Free Featured articles in this eBook include stories on extending IT security to the plant floor, IT/OT

French Electricity Provider Fined for Insecurely Storing Users' Passwords

Wednesday, November 30, 2022

The Hacker News Daily Updates Newsletter cover Cybersecurity Budget Tips that Deliver the Most Bang for Your Buck Discover the data behind which cybersecurity controls deliver the best ROI Download Now

Irish Regulator Fines Facebook $277 Million for Leak of Half a Billion Users' Data

Tuesday, November 29, 2022

The Hacker News Daily Updates Newsletter cover Managing the IT Modernization Elephant A bite-sized approach to digital modernization. Download Now Sponsored LATEST NEWS Nov 29, 2022 Hackers Using

You Might Also Like

New Roundtable! Additive for Mass Production Applications

Friday, April 19, 2024

The Outlook for the Future View this email in your browser engineering.com Roundtable - Additive for Mass Production Applications: The Outlook for the Future 6 Considerations for Choosing the Right

📷 What to Know About Macro Photography — Why You Should Buy a Budget Motherboard

Friday, April 19, 2024

Also: How to Automatically Highlight Values in Excel, and More! How-To Geek Logo April 19, 2024 📩 Get expert reviews, the hottest deals, how-to's, breaking news, and more delivered directly to your

Is the wind going out of the AI sails?

Friday, April 19, 2024

Rippling vacuums up venture capital and Ramp bags more millions View this email online in your browser By Haje Jan Kamps Friday, April 19, 2024 Image Credits: Getty Images / Carol Yepes Welcome to

Llama 3 is out - Weekly News Roundup - Issue #463

Friday, April 19, 2024

Plus: brand-new, all-electric Atlas; AI Index Report 2024; Microsoft pitched GenAI tools to US military; Humane AI Pin reviews are in; debunking Devin; and more! ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏ ͏

Daily Coding Problem: Problem #1417 [Easy]

Friday, April 19, 2024

Daily Coding Problem Good morning! Here's your coding interview problem for today. This problem was asked by Wayfair. You are given a 2 x N board, and instructed to completely cover the board with

Charted | How Hard Is It to Get Into an Ivy League School? 🎓

Friday, April 19, 2024

We detail the admission rates and average annual cost for Ivy League schools, as well as the median SAT scores required to be accepted. View Online | Subscribe Presented by: Discover the motivations

Dark Matter & Tortured Poets

Friday, April 19, 2024

New music releases aren't what they used to be -- for good and bad. Dark Matter & Tortured Poets By MG Siegler • 19 Apr 2024 View in browser View in browser New music releases in 2024 are a

Impact of AI on Product Management

Friday, April 19, 2024

​ Impact of AI on Product Management The rise of the AI Product Manager. Product managers have always championed customer's needs. However, with AI, the job requires new technical and ethical

⚙️ Zuck has entered the chat(bot)

Friday, April 19, 2024

Plus: AI video's coming to mobile! ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌ ‌

Noonification: Just Made my First Dollar With My SaaS After Quitting my Job

Friday, April 19, 2024

Top Tech Content sent at Noon! Get Algolia: AI Search that understands How are you, @newsletterest1? 🪐 What's happening in tech this week: The Noonification by HackerNoon has got you covered with