Latest Tech News

Stay updated with the latest in technology, AI, cybersecurity, and more

Filtered by: attacker Clear Filter

Employee gets $920 for credentials used in $140 million bank heist

bleepingcomputer.com Unknown 2025-08-10 18:10:50

Hackers stole nearly $140 million from six banks in Brazil by using an employee's credentials from C&M, a company that offers financial connectivity solutions. The incident reportedly occurred on June 30, after the attackers bribed the employee to give them his account credentials and perform specific actions that would help their operations. Insider threat According to Brazilian media reports, the employee (João Nazareno Roque) sold his corporate credentials to the hackers for roughly $920,

Topics: attackers brazilian company employee hackers
Read More
Shop Amazon

PSA: If you have a Brother printer, change the password now

9to5mac.com Ben Lovejoy 2025-08-21 07:37:57

Almost 700 Brother printer models have been found to contain a number of serious security flaws that could allow an attacker to access other devices on your network, and potentially access your documents. The same is true of some printer models made by Fujifilm, Toshiba, Ricoh, and Konica Minolta … Cybersecurity company Rapid7 discovered eight vulnerabilities affecting 689 Brother printers, and 46 models from other brands. The most egregious of these is that the default password of each printe

Topics: access attacker brother password printer
Read More
Shop Amazon

Alleged Verizon data breach sees 61M customer records offered for sale

9to5mac.com Ben Lovejoy 2025-08-23 02:13:47

An alleged Verizon data breach has seen hackers offering for sale a database of 61 million customer records, which includes personal information useful for both phishing attempts and identity theft. The sample data supplied includes name, full postal address, date of birth, email address, phone number(s), tax identification code, and other ID codes … Security researchers at SafetyDetectives said that the data was being offered for sale, but the samples posted were too small to confirm the vera

Topics: address attackers data email phone
Read More
Shop Amazon

Brother printer bug in 689 models exposes default admin passwords

bleepingcomputer.com Unknown 2025-08-26 14:10:25

A total of 689 printer models from Brother, along with 53 other models from Fujifilm, Toshiba, and Konica Minolta, come with a default administrator password that remote attackers can generate. Even worse, there is no way to fix the flaw via firmware in existing printers. The flaw, tracked under CVE-2024-51978, is part of a set of eight vulnerabilities discovered by Rapid7 researchers during a lengthy examination of Brother hardware. CVE Description Affected Service CVSS CVE-2024-51977 An unau

Topics: 2024 attacker cve password port
Read More
Shop Amazon

New Linux udisks flaw lets attackers get root on major Linux distros

news.ycombinator.com Unknown 2025-09-01 02:05:20

Attackers can exploit two newly discovered local privilege escalation (LPE) vulnerabilities to gain root privileges on systems running major Linux distributions. The first flaw (tracked as CVE-2025-6018) was found in the configuration of the Pluggable Authentication Modules (PAM) framework on openSUSE Leap 15 and SUSE Linux Enterprise 15, allowing local attackers to gain the privileges of the "allow_active" user. The other security bug (CVE-2025-6019) was discovered in libblockdev, and it enab

Topics: attackers gain linux qualys root
Read More
Shop Amazon

Low-wage tech support workers become a new gateway for cyberattacks

techspot.com Skye Jacobs 2025-09-05 09:53:00

Editor's take: As businesses increasingly rely on outsourced tech support to cut costs, the risks associated with these operations are coming into sharper focus. The threat is no longer just about technical vulnerabilities; it's about the people behind the screens, and the growing pressure they face from both economic hardship and sophisticated cybercriminals. Hackers are increasingly turning the very systems designed to help customers – outsourced tech support and call centers – into powerful

Topics: attackers coinbase cryptocurrency hackers support
Read More
Shop Amazon

Low-wage support workers become a new gateway for cyberattacks

techspot.com Skye Jacobs 2025-09-05 14:53:00

Editor's take: As businesses increasingly rely on outsourced tech support to cut costs, the risks associated with these operations are coming into sharper focus. The threat is no longer just about technical vulnerabilities; it's about the people behind the screens, and the growing pressure they face from both economic hardship and sophisticated cybercriminals. Hackers are increasingly turning the very systems designed to help customers – outsourced tech support and call centers – into powerful

Topics: attackers coinbase cryptocurrency hackers support
Read More
Shop Amazon

New Linux udisks flaw lets attackers get root on major Linux distros

bleepingcomputer.com Unknown 2025-09-10 12:45:36

Attackers can exploit two newly discovered local privilege escalation (LPE) vulnerabilities to gain root privileges on systems running major Linux distributions. The first flaw (tracked as CVE-2025-6018) was found in the configuration of the Pluggable Authentication Modules (PAM) framework on openSUSE Leap 15 and SUSE Linux Enterprise 15, allowing local attackers to gain the privileges of the "allow_active" user. The other security bug (CVE-2025-6019) was discovered in libblockdev, and it enab

Topics: attackers gain linux qualys root
Read More
Shop Amazon

Sitecore CMS exploit chain starts with hardcoded 'b' password

bleepingcomputer.com Unknown 2025-09-12 02:10:35

A chain of Sitecore Experience Platform (XP) vulnerabilities allows attackers to perform remote code execution (RCE) without authentication to breach and hijack servers. Sitecore is a popular enterprise CMS used by businesses to create and manage content across websites and digital media. Discovered by watchTowr researchers, the pre-auth RCE chain disclosed today consists of three distinct vulnerabilities. It hinges on the presence of an internal user (sitecore\ServicesAPI) with a hardcoded pa

Topics: attacker path sitecore upload watchtowr
Read More
Shop Amazon

Trend Micro fixes critical vulnerabilities in multiple products

bleepingcomputer.com Unknown 2025-09-17 21:31:54

Trend Micro has released security updates to address multiple critical-severity remote code execution and authentication bypass vulnerabilities that impact its Apex Central and Endpoint Encryption (TMEE) PolicyServer products. The security vendor underlines that it has seen no evidence of active exploitation in the wild for any of them. However, immediate application of the security updates is recommended to address the risks. Trend Micro Endpoint Encryption PolicyServer is a central managemen

Topics: attackers authentication code pre remote
Read More
Shop Amazon
Trending Topics
Hot Now
ai 1495 apple 1095 new 903 content 844 google 676
Popular
like 654 zdnet 647 amazon 646 does 527 company 527 reviews 520 editorial 506 day 492 app 480 said 450
Emerging
data 447 prime 446 samsung 398 phone 394 game 385 pro 384 just 373 android 352 deals 338 galaxy 323
About GoKawiil

GoKawiil is a project by nerdhub.co that curates technology news from trusted sources. We built this site to provide a cleaner, more mobile-friendly experience without intrusive ads or heavy JavaScript.

Privacy

Your privacy matters. GoKawiil doesn't use Google Analytics or Facebook Pixel. The only tracking occurs through affiliate links to Amazon.

Advertising

Interested in advertising? Contact us at [email protected]