First Hackers News

Latest cybersecurity news, real attacks, and practical IOCs—made simple and actionable.

FHN

FirstHackersNews- Identifies Security

3 Malicious PyPI Packages Target Linux with Crypto Miners python

python

3 Malicious PyPI Packages Target Linux with Crypto Miners

FHN January 5, 2024

Fortinet researchers identified three malicious packages in the PyPI repository—modularseven, driftme, and catme. These packages, attributed to...

CISA Issues Alert for Juniper Secure Analytics Vulnerabilities 5492096_cd93

5492096_cd93

CISA Issues Alert for Juniper Secure Analytics Vulnerabilities

FHN January 3, 2024

In a recent alert, the Cybersecurity and Infrastructure Security Agency (CISA) highlighted that Juniper has issued security...

Google accounts may be susceptible to a new hack, and changing the password won’t provide a solution. Google-Launches-New-Open-Source-Bug-Bounty-to-Tackle-Supply

Google-Launches-New-Open-Source-Bug-Bounty-to-Tackle-Supply

Google accounts may be susceptible to a new hack, and changing the password won’t provide a solution.

FHN January 3, 2024

A purportedly new method allows hackers to exploit the OAuth2 authorization protocol to compromise Google accounts. This...

Microsoft Disables MSIX App Installer Protocol acastro_180507_1777_microsoft_0002

acastro_180507_1777_microsoft_0002

Microsoft Disables MSIX App Installer Protocol

FHN January 2, 2024

Microsoft has disabled the MSIX installer protocol in Windows in response to its exploitation in real-world cyberattacks....

Misconfigurations in Google Kubernetes Engine (GKE) Lead to a Privilege Escalation Exploit Chain xXaZ3Lb4ZEejUv9ipwK3ha

xXaZ3Lb4ZEejUv9ipwK3ha

Misconfigurations in Google Kubernetes Engine (GKE) Lead to a Privilege Escalation Exploit Chain

FHN December 30, 2023

A recent Unit 42 investigation uncovered a dual privilege escalation chain affecting Google Kubernetes Engine (GKE). Stemming...