⚡ ThunderSpy 🕵️‍♂️

7 new unpatchable hardware vulnerabilities affect all Thunderbolt-equipped computers sold in the last 9 years, letting attackers steal data from encrypted systems—when locked or in sleep mode—through 'evil maid' scenarios.

Read: https://thehackernews.com/2020/05/thunderbolt-vulnerabilities.html

Watch Out !!!

If you are running a vBulletin forum website, make sure to install a newly issued security patch update that fixes an undisclosed critical vulnerability (CVE-2020-12720) in the popular forum software.

Read here: https://thehackernews.com/2020/05/vBulletin-access-vulnerability.html

Over 4000 Android apps are 'unknowingly' leaking sensitive information on their millions of users through misconfigured (publicly accessible) Google cloud-hosted Firebase databases, a recent assessment of just 15,000 apps revealed.

Read details: https://thehackernews.com/2020/05/android-firebase-database-security.html

Kali Linux version 2020.2 has been released with:

✅ KDE Plasma Makeover & Login
✅ PowerShell by Default
✅ Kali on ARM Improvements
✅ Lessons From The Installer Changes
✅ New Key Packages & Icons
✅ Behind the Scenes, Infrastructure Improvements

https://twitter.com/TheHackersNews/status/1260254183644487680

On the 3rd anniversary of global WannaCry ransomware outbreak, U.S. Defense, FBI & CISA released a joint report exposing 3 new sophisticated malware North Korean state-sponsored hackers are using against its targets.

Read more: https://thehackernews.com/2020/05/fbi-north-korean-malware.html

Researcher at ESET spotted a new piece of malware that he claimed to be tailored for attacking computers protected insider "Air‑Gapped networks."

Read more about 'Ramsay malware' —
https://thehackernews.com/2020/05/airgap-network-malware.html

Remember the Reverse RDP Attacks?

A path traversal vulnerability in Windows RDP client that could let a server reversibly compromise a client system that connects to it.

Microsoft issued a patch for it in July 2019, which was bypassed and re-patched in February 2020, which apparently is still incomplete and leaves dozens of 3rd party RDP clients vulnerable that uses Microsoft API function.

https://thehackernews.com/2020/05/reverse-rdp-attack-patch.html

A new variant of COMpfun cyber-espionage malware interprets HTTP status codes to learn what to do with the hacked computers—belonging to diplomatic entities in Europe.

Read more: https://thehackernews.com/2020/05/malware-http-codes.html

This is interesting...

Even a guest account on Windows can brute-force to crack password for any local account, including the administrator, through LogonUserW API because it offers unrestricted login attempts.

Here's a PoC tool: https://github.com/DarkCoderSc/win-brute-logon

A New Impersonation Vulnerability in Bluetooth Exposes Over A Billion Modern Devices to Hackers

Read details: https://thehackernews.com/2020/05/hacking-bluetooth-vulnerability.html

British airline EasyJet suffers a data breach exposing email address and travel details of over 9 million customers, including credit card details for a very few of them.

Read details: https://thehackernews.com/2020/05/easyjet-data-breach-hacking.html

Two unprotected AWS-hosted servers owned by the biggest Brazilian cosmetics company "Natura" exposed over 192 million records, containing personal information for 250,000 customers and payment account detail for at least 40,000 users.

Details: https://thehackernews.com/2020/05/natura-data-breach.html

Ukrainian police arrest a hacker who made headlines last year when he tried selling billions of stolen email addresses and plaintext passwords on various underground forums.

Read here — https://thehackernews.com/2020/05/ukrainian-hacker-arrested.html

Researchers uncovered an Iranian cyber espionage campaign targeting critical Aviation and Government infrastructures in Kuwait and Saudi Arabia.

Read more about Chafer APT hackers — https://thehackernews.com/2020/05/iran-hackers-kuwait.html

Hackers release Unc0ver 5.0.0 — the latest JAILBREAK tool that can unlock any iPhone and iPad using an UNPATCHED 0-day vulnerability, including those running the latest iOS 13.5 version.

Details here — https://thehackernews.com/2020/05/iphone-ios-jailbreak-tools.html

<== New ==>

This variant of ComRAT backdoor now leverages Google's Gmail service to covertly receive commands and exfiltrate sensitive data from 'high-target' compromised computers.

Read details here: https://thehackernews.com/2020/05/gmail-malware-hacker.html

Strandhogg 2.0 !!!

A new critical vulnerability (CVE-2020-0096) affects over BILLION ANDROID devices that could let attackers hijack apps installed on targeted devices and steal users' BANKING and other log-in credentials.

Read to learn more:
https://thehackernews.com/2020/05/stranhogg-android-vulnerability.html

Researchers at Qihoo and China's Baidu disrupt a new 'Double Gun' botnet malware campaign that recently managed to infect hundreds of thousands of computers.

Read details: https://thehackernews.com/2020/05/chinese-botnet-malware.html

NEW ~~ Researchers uncovered the real identity of a hacktivist who defaced over 4800 Government and other websites in 40+ countries across the world—and is also a member of the 'Brazilian Cyber Army' hacking group.

Read details: https://thehackernews.com/2020/05/brazilian-hacker-vandathegod.html

A New Free Dark Web Monitoring Tool to Measure Your Exposure

Find Details Here: https://thehackernews.com/2020/05/dark-web-monitoring-tool.html