Security researcher discloses a new "UNPATCHED" zeroday vulnerability in Microsoft JET Database Engine, affecting all Windows versions (including Server Editions)... Proof-of-concept exploit code released.

https://thehackernews.com/2018/09/windows-zero-day-vulnerability.html

For over a year, a flaw in Twitter's API has been exposing millions of users' private Direct Messages to unauthorized 3rd-party app developers

https://thehackernews.com/2018/09/twitter-direct-message-api.html

Twitter asked developers to delete data they should not have... bcoz everyone is not Cambridge Analytica!?

A Former NSA Developer Gets 5.5 Years in Prison for Illegally Taking Top Secret Documents and Hacking tools Home—Which Were Later Stolen by Russian Hackers.

https://thehackernews.com/2018/09/nsa-secret-hacking-tools.html

It's the same Incident that eventuality led to the US government ban on Kaspersky software.

New #Linux Kernel Root Privilege-Escalation Vulnerability (CVE-2018-14634) Affects Red Hat, CentOS, and Debian Operating Systems. Proof-of-Concept Exploits Released.

https://thehackernews.com/2018/09/linux-kernel-vulnerability.html

Cybersecurity Researchers Spotted First-Ever UEFI Rootkit Malware—Dubbed "LoJax"—in the Wild, Linked to Russian Hacking Group Fancy Bear
. Since rootkit resides in the compromised UEFI firmware and re-infects computer before the OS even boots, reinstalling the operating system, formatting the hard disk, or even replacing the hard drive with a new one would not be sufficient to remove the malware.

https://thehackernews.com/2018/09/uefi-rootkit-malware.html

Chinese hacking group "Pangu" claims to have jailbroken iOS 12 on Apple's brand new “iPhone XS” by bypassing a functional PAC mitigation on A12 Bionic chip.

https://thehackernews.com/2018/09/ios12-iphone-jailbreak-exploit.html

Remember the "Hacky Hack Hack" Folder? 16-Year-Old Boy Who Hacked Into #Apple's Private Systems and Downloaded 90 GB of Data Gets NO JAIL Time.

https://thehackernews.com/2018/09/apple-server-hack.html

Google security researcher discloses details and PoC exploit for a new Linux Kernel vulnerability (CVE-2018-17182)

https://thehackernews.com/2018/09/linux-kernel-exploit.html

No patch yet available for Debian and Ubuntu Linux.

Julian Assange will no longer be the Editor-in-Chief of WikiLeaks whistle-blowing website


https://thehackernews.com/2018/09/wikileaks-kristinn-hrafnsson.html


Wikileaks appoints investigative journalist “Kristinn Hrafnsson” as its new Editor-in-Chief.

WARNING 😵😨 Hackers Exploit A Zero-Day Flaw in Facebook to Steal Secret Access Tokens for Over 50 Million Accounts


https://thehackernews.com/2018/09/facebook-account-hack.html

⚡Here We Have Listed 10 Important Updates You Need To Know About the Latest Facebook #Hacking Incident That Logged Out 90 Million People Out of Their Accounts Yesterday

https://thehackernews.com/2018/09/facebook-account-hacked.html

#FacebookHack #FacebookBreach

Telegram Calling Feature Found Leaking both Your Private and Public IP Addresses

https://thehackernews.com/2018/09/hack-telegram-messenger.html

New iPhone Passcode Bypass Hack Exposes Photos and Contacts
. Watch Video Demonstrations to Learn How It Works.

https://thehackernews.com/2018/10/iphone-passcode-bypass-hack.html

Google Announces 5 Major Updates for Chrome Extensions to Improve Browser Security

➜ https://thehackernews.com/2018/10/google-chrome-extensions-security.html

1) User-Controllable Host Permissions
2) No Code Obfuscation
3) Mandatory 2-Step Verification
4) Strict Web Store Review Policies
5) New Manifest v3

UPDATE — #Facebook 'so far' finds no evidence that hackers accessed any connected 3rd-party apps using 50 million stolen access tokens

However, Facebook also clarifies that revoking 90 million stolen tokens doesn't mean your accounts with all 3rd-party apps are protected.

https://thehackernews.com/2018/10/facebook-token-hacking.html

FASTCash ATM Hacking Scheme Unveiled — North Korean "Hidden Cobra" Hacking Group Compromises Banks’ Switch Application Servers to Trick ATMs into Spitting Out Millions in Cash

https://thehackernews.com/2018/10/bank-atm-hacking.html

Wi-Fi Standards Get Simplified Version Numbers... and Next Version Will Be Called — WiFi 6

https://thehackernews.com/2018/10/wifi-version-6.html

That means, the new versions for all previous standards are:

802.11b → WiFi 1
802.11a → WiFi 2
802.11g → WiFi 3
802.11n → WiFi 4
802.11ac (current) → WiFi 5

Chinese #Spying Microchips Found Hidden On Server Motherboards Used By Top U.S. Companies, Including Apple, Amazon and 28 Others.


https://thehackernews.com/2018/10/china-spying-server-chips.html


These Tiny Malicious Chips were Inserted During the Manufacturing Process in China.

Silk Road Admin, Gary Davis, Pleads Guilty — Could Face Up to 20 Years In Prison
. He served as an administrator who helped run the Silk Road, an underground marketplace responsible for selling over $200 million in illegal narcotics and other contraband.

https://thehackernews.com/2018/10/silkroad-admin-gary-davis.html

Turns Out MikroTik Router's WinBox Vulnerability (CVE-2018-14847) is More Dangerous Than Previously Thought

New PoC Exploit Allows Attackers to Gain Full Root Access—Turned 'Medium' Vulnerability Into 'Critical' in Severity

https://thehackernews.com/2018/10/router-hacking-exploit.html

Google is Going to Shut Down its Google+ Social Media Site After an API Vulnerability Exposed 500,000 Users' Data

https://thehackernews.com/2018/10/google-plus-shutdown.html