Researcher Releases PoC for Recent Java Cryptographic Vulnerability

The Hacker News Daily Updates [Newsletter]( [cover]( [Mastering Linux Security and Hardening - Free Sample Chapters]( A comprehensive guide to mastering the art of preventing your Linux system from getting compromised. [Download Now]( Sponsored LATEST NEWS Apr 25, 2022 [Critical Bug in Everscale Wallet Could've Let Attackers Steal Cryptocurrencies]( A security vulnerability has been disclosed in the web version of the Ever Surf wallet that, if successfully weaponized, could allow an attacker to gain full control over a victim's wallet. "By exploiting the vulnerability, it's possible to decrypt the private keys and seed phrases that are stored ... [Read More]( [Twitter]( [Facebook]( [LinkedIn]( [New BotenaGo Malware Variant Targeting Lilin Security Camera DVR Devices]( A new variant of an IoT botnet called BotenaGo has emerged in the wild, specifically singling out Lilin security camera DVR devices to infect them with Mirai malware. Dubbed "Lilin Scanner" by Nozomi Networks, the latest version is designed to exploit a two-year-old critical command injection ... [Read More]( [Twitter]( [Facebook]( [LinkedIn]( [FBI Warns of BlackCat Ransomware That Breached Over 60 Organisations Worldwide]( The U.S. Federal Bureau of Investigation (FBI) is sounding the alarm on the BlackCat ransomware-as-a-service (RaaS), which it said victimized at least 60 entities worldwide between as of March 2022 since its emergence last November. Also called ALPHV and Noberus, the ransomware is notable for ... [Read More]( [Twitter]( [Facebook]( [LinkedIn]( [T-Mobile Admits Lapsus$ Hackers Gained Access to its Internal Tools and Source Code]( Telecom company T-Mobile on Friday confirmed that it was the victim of a security breach in March after the LAPSUS$ mercenary gang managed to gain access to its networks. The acknowledgment came after investigative journalist Brian Krebs shared internal chats belonging to the core members of the ... [Read More]( [Twitter]( [Facebook]( [LinkedIn]( [Atlassian Drops Patches for Critical Jira Authentication Bypass Vulnerability]( Atlassian has published a security advisory warning of a critical vulnerability in its Jira software that could be abused by a remote, unauthenticated attacker to circumvent authentication protections. Tracked as CVE-2022-0540, the flaw is rated 9.9 out of 10 on the CVSS scoring system and resides ... [Read More]( [Twitter]( [Facebook]( [LinkedIn]( [cover]( [Mastering Linux Security and Hardening - Free Sample Chapters]( A comprehensive guide to mastering the art of preventing your Linux system from getting compromised. [Download Now]( Sponsored This email was sent to {EMAIL}. You are receiving this newsletter because you opted-in to receive relevant communications from The Hacker News. To manage your email newsletter preferences, please [click here](. Contact The Hacker News: info@thehackernews.com [Unsubscribe]( The Hacker News | Pearls Omaxe, Netaji Subash Place, Pitampura, Delhi 110034 India