Hackerzhome

hackerzhome-logo-bg

Cybersecurity news all over the world

HACKERZHOME NEWS

March 29, 2023

Wednesday

Attackers can manipulate network traffic due to a WIFI protocol flaw.

The IEEE 802.11 WiFi protocol standard has a fundamental security weakness that allows attackers to deceive access points into exposing network frames in plaintext, according to cybersecurity researchers.


WiFi frames are data packets made up of a header, data payload, and trailer that contain data like the MAC addresses of the source and destination as well as control and management information.


By keeping track of the busy/idle states of the receiving points, these frames are broadcast in a regulated manner to prevent collisions and maximize data exchange performance.


Queued/buffered frames are not sufficiently protected from adversaries, who can control data delivery, client spoofing, frame redirection, and capturing, according to the researchers.


By buffering or queuing frames intended for devices that are asleep, WiFi devices can save power thanks to features included in the IEEE 802.11 standard.


All frames intended for a client station (receiving device) are queued when it goes into sleep mode because it sends a frame to the access point with a header that includes the power-saving flag.


Nevertheless, the standard does not specify how to manage the security of these queued frames and does not impose any time restrictions on how long the frames may remain in this state.

NEWS 1
Attackers can manipulate network traffic due to a WIFI protocol flaw.

Breaking news

LIVE

You are not up to date!

Subscribe to our newsletter and stay updated on cybersecurity news

KB5023774 update for Windows 11 creates problems with Red Dead Redemption 2's launch.

Microsoft is looking into a reported problem that prevents Red Dead Redemption 2 from opening on some devices that are brought on by the KB5023774 March 2023 preview update.

Only customers who utilize the Rockstar Games Launcher to launch the game on Windows 11 21H2 PCs where the KB5023774 optional update was installed are impacted by this problem.

The ‘Play’ button will change to ‘Loading’ when you try to launch it from the Rockstar Games Launcher, but Red Dead Redemption 2 might not launch and the button will change back to ‘Play’.

Since November 2019, Red Dead Redemption 2’s publisher and developer, Rockstar Games, has had a support website devoted to the game’s frequent startup troubles.

To solve the issue, Rockstar Games urges players to delete local Rockstar Games Launcher profile details, update video card drivers or the Rockstar Games Launcher, temporarily turn off their antivirus software, or remove older AMD graphics card details.

The game studio also advises users to update their operating system, which aligns with Microsoft’s remedy and should help users quickly resolve the game’s failure to launch on a Windows 11 21H2 device.

NEWS 2

For placing advertisements and promotions in this newspaper, or anywhere on our website, contact us through email at [email protected] or fill out this contact form.

Share this news:

March 29, 2023 /

Wednesday

Hackerzhome News

2

Have you heard?
WebKit Zero-Day Vulnerability On Older iPhones Is Fixed By Apple know more!

Russians are the intended target of malware that infects Tor browsers with a trojan.

Russians are the intended target of malware that infects Tor browsers with a trojan.

A surge in trojanized Tor Browser installations that snoop on clipboards to steal cryptocurrency transactions targets Russians and persons in Eastern Europe.

Kaspersky scientists warn that despite the fact that this attack is neither very inventive nor original, it is nonetheless ubiquitous and effective, infecting a large number of users worldwide.

We connect the two since, according to the Tor Project, the website will be prohibited in Russia by the end of 2021, asserts Kaspersky.
With more than 300,000 daily users or 15% of all Tor users, Russia ranked second in terms of Tor usage in 2021.

The Tor Browser is a specialized web browser that provides anonymous web browsing by hiding users’ IP addresses and encrypting their communication.

Tor can also be used to access unique onion domains, commonly referred to as the “black web,” which are inaccessible via conventional browsers or ordinary search engines and are only accessible through Tor.

Cryptocurrency owners can use the Tor browser to access illegal dark web marketplace services that accept cryptocurrency payments or to increase their privacy and anonymity when trading with cryptocurrencies.

NEWS 3

Following the GoAnywhere breach, Crown Resorts confirms the ransom demand.

Following the GoAnywhere breach, Crown Resorts confirms the ransom demand.
NEWS 4

The biggest gaming and entertainment company in Australia, Crown Resorts, has acknowledged that a zero-day vulnerability allowed an attacker to access its GoAnywhere secure file-sharing server, resulting in a data compromise.

The Blackstone-owned business runs complexes in Melbourne, Perth, Sydney, Macau, and London and generates annual revenues of more than $8 billion.

The Clop ransomware group, which has switched over the last year from encrypting files to carrying out data extortion assaults, was responsible for this data leak.

Using a GoAnywhere zero-day vulnerability, the threat actors claimed to have stolen data from 130 businesses over the course of ten days in February.

Crown Resorts says there is no proof that the data breach had an impact on customers, despite the fact that Clop, who claims to have stolen data from its networks, is extorting the company.

According to the company’s statement, a ransomware gang recently approached us and claimed to have illegally gotten a small number of Crown files.

14 million clients have been affected by the Latitude Financial data leak.

Latitude Financial Services (Latitude), a major provider of loans in Australia, is alerting consumers to the fact that the number of people affected by the data breach has increased from the initial estimate of 328,000 to 14 million.

A revised data breach notification from leading Australian loan provider Latitude Financial Services (Latitude) informs clients that the breach is much worse than first thought, increasing the number of affected people from 328,000 to 14 million.

The Australian personal loan and financial services firm announced a cyber-incident on March 16, 2023, in which a threat actor used the login information of an employee to hack two of the company’s service providers storing Latitude’s client data.

However, further thorough investigation by Latitude into the event has shown that its effects were far more widespread and are now thought to have affected 14 million customers or loan applicants from Australia and New Zealand.

According to the current statement, as part of our ongoing forensic investigation, we have discovered that over 7.9 million Australian and New Zealand driving licence numbers were stolen, of which roughly 3.2 million, or 40%, were given to us in the previous ten years.

14 million clients have been affected by the Latitude Financial data leak.
NEWS 5

For placing advertisements and promotions in this newspaper, or anywhere on our website, contact us through email at [email protected] or fill out this contact form.

Share this news: