Google has been FINED $57 million by French data protection watchdog for "lack of transparency and consent" in its data collection practices that violate GDPR law


https://thehackernews.com/2019/01/google-privacy-gdpr-fine.html


It is the largest penalty to date under the new EU privacy law.

U.S. Homeland Security has issued an "emergency directive" ordering all federal agencies to audit DNS security for their domains within next 10 business days.

https://thehackernews.com/2019/01/dns-hijacking-cyber-attacks.html

The alert came in the wake of a series of recent DNS hijacking attacks against govt sites.

NEW → Critical RCE flaw (CVE-2019-3462) found in #Linux apt/apt-get, which could allow remote MiTM hackers to trick systems into installing altered or malicious packages as #root

https://thehackernews.com/2019/01/linux-apt-http-hacking.html …

Exploitation of such flaw could have been mitigated if APT was using HTTPS

Important→ Someone hacked the official site of PHP PEAR and replaced package manager (go-pear.phar) with a "tainted version"

https://thehackernews.com/2019/01/php-pear-hacked.html

If you have downloaded/updated pearPHP package manager from its official site in past 6 months, consider yourself compromised.

Researcher reveals details of a recently discovered remote iOS ≤ 12.1.2 jailbreak on iPhoneX, which Apple patched yesterday with the release of iOS 12.1.3

https://thehackernews.com/2019/01/ios12-jailbreak-exploit.html

Just visiting a specially crafted remote web page via Safari can compromise/jailbreak your device

China Has Blocked Microsoft's #Bing Search Engine, Despite Offering Censored Results

https://thehackernews.com/2019/01/china-firewall-microsoft-bing.html

✔️ Great Firewall of China
❌ Bing (latest)
❌ Facebook
❌ WhatsApp
❌ Twitter
❌ Yahoo
❌ Google
❌ Skype

Millions of Computers Found Running Outdated Versions of Popular Software

<<< That's How People Make Hackers' Lives Incredibly Easy >>>

https://thehackernews.com/2019/01/software-vulnerabilities-hacking.html

Want to learn Python programming language? Here we have an excellent "Deal of the Week" for our readers...

https://thehackernews.com/2019/01/learn-python-tutorial.html

Check out "Complete Python Programming Bundle" – 7 Online video training courses now available at 93% OFF

New malware campaigns spotted in the wild, using malicious Microsoft Office docs to infect PCs with GandCrab ransomware and Ursnif info-stealer malware

https://thehackernews.com/2019/01/microsoft-gandcrab-ursnif.html

Researchers have released "Aztarna," an open-source framework to help engineers identify vulnerable Robots and Industrial Routers connected to the Internet.

https://thehackernews.com/2019/01/robot-cybersecurity-tool.html

A quick scan revealed almost 106 open ROS systems & 9000 insecure industrial routers worldwide.

New Exploit Threatens Over 9,000 Hackable Cisco's RV320/RV325 Business Routers Worldwide

https://thehackernews.com/2019/01/hacking-cisco-routers.html

Attackers actively look for vulnerable devices on the Internet; Install firmware updates immediately to patch recently disclosed 2 high-severity vulnerabilities.

⚠️ WARNING — Dear iPhone Users, Turn OFF "FaceTime" App Immediately.

A New Apple FaceTime Privacy Bug Lets Callers Hear and See You Even If You Don't Accept the Call. (It's Unpatched)

https://thehackernews.com/2019/01/apple-facetime-privacy-hack.html …

Go to the Settings → Scroll Down to FaceTime → Switch it OFF Now!

NEW→ Apple iCloud possibly suffered a privacy breach last year that the company kept a secret

https://thehackernews.com/2019/01/icloud-privacy-breach.html

Researcher claimed to have found a bug (Apple also acknowledged) that could have allowed users to view partial #iCloud data from targeted/random Apple users.

Sent an embarrassing photo or text to a wrong person or in a group chat?

Chillax, Facebook Messenger has added a new feature that now lets users delete accidentally sent photos, videos or texts from both sides

https://thehackernews.com/2019/02/unsend-delete-facebook-message.html

But you will get just 10 minutes to decide

Researcher releases PoC and details for a new RCE flaw affecting two most popular Microsoft Office alternatives — LibreOffice and OpenOffice — that could allow hackers to take over Windows/Linux PCs just by tricking victims into opening a document file

https://thehackernews.com/2019/02/hacking-libreoffice-openoffice.html

Researchers discover over a dozen RCE flaws in two popular RDP clients—FreeRDP and rdesktop—that could allow malicious servers to "reverse hack" client’s computer

https://thehackernews.com/2019/02/remote-desktop-hacking.html …

Windows built-in RDP client also found vulnerable to clipboard related "unpatched" attacks

Google releases a new Chrome extension, called "Password Checkup," that ALERTS users when they use a compromised credential for any site (exact username + password combination that has previously been exposed in any data breach)

https://thehackernews.com/2019/02/google-password-checkup-breaches.html …

First Hacker Convicted of 'SIM Swapping' Attacks Gets 10 Years in Prison

https://thehackernews.com/2019/02/sim-swapping-hack.html …

This 20-Year-Old College Student Stole Nearly $5 Millions in #Cryptocurrency from 40 Victims

Researchers Spotted New Windows .exe Malware Found Targeting macOS Computers

https://thehackernews.com/2019/02/macos-windows-exe-malware.html

New high severity "RunC" vulnerability (CVE-2019-5736) lets attackers escape #Linux container to gain root access on host machine.

Affected Systems/Services → Docker, Kubernetes, Debian, Red Hat, Ubuntu, Google Cloud, Amazon AWS and more.

https://thehackernews.com/2019/02/linux-container-runc-docker.html

Interesting… Researchers find a way to implant stealthy "super malware" on Intel processors using its own hardware-based memory #encryption feature i.e. SGX Enclaves, designed to protect sensitive data even if a system gets compromised

https://thehackernews.com/2019/02/intel-sgx-malware-hacking.html