🔥 After early heads-up on a severe #vulnerability in GnuPG's encryption library Libgcrypt, an expert at Google releases details on the potential RCE affecting many projects using the vulnerable library version 1.9.0.

Read: https://thehackernews.com/2021/01/google-discloses-severe-bug-in.html

Watch Out, Sysadmins!

A new cryptojacking malware by Rocke hacking group is leveraging vulnerabilities in Apache ActiveMQ, Oracle WebLogic, and Redis web technologies to hijack cloud infrastructures.
Details: https://thehackernews.com/2021/02/new-cryptojacking-malware-targeting.html

~ Operation NightScout ~

A new software supply-chain attack distributed spyware to potentially millions of Android emulator users running Windows and macOS systems.
Details: https://thehackernews.com/2021/02/a-new-software-supplychain-attack.html

A critical zero-day vulnerability affecting SonicWall SMA 100 devices—access management gateways for small & mid-sized businesses—has finally been discovered that is actively being exploited in the wild.

Read: https://thehackernews.com/2021/02/hackers-exploiting-critical-zero-day.html

A new data breach exposes the personal information of more than 1.6 million Washington state residents who filed for unemployment claims in 2020.

Read: https://thehackernews.com/2021/02/data-breach-exposes-16-million-jobless.html

Security researchers today uncovered new delivery and evasion techniques adopted by AgentTesla remote access trojan (RAT) to get around defense barriers and monitor its victims.

Details: https://thehackernews.com/2021/02/agent-tesla-malware-spotted-using-new.html

A newly discovered Linux backdoor — dubbed "Kobalos" — targets high-performance computing clusters, allowing hackers to execute arbitrary commands remotely.



Details: https://thehackernews.com/2021/02/a-new-linux-malware-targeting-high.html

Researchers disclose 3 new severe vulnerabilities impacting SolarWinds products, most severe of which could allow RCE attacks with elevated privileges.

Details — https://thehackernews.com/2021/02/3-new-severe-security-vulnerabilities.html

Experts disclose 6 critical flaws affecting popular Realtek Wi-Fi module for widely used in millions of embedded devices—2 can be exploited without requiring Wi-Fi password, and the other allows exploitation of Wi-Fi client and full takeover.

https://thehackernews.com/2021/02/critical-bugs-found-in-popular-realtek.html

Researchers spotted a new 'Matryosh' botnet malware targeting Android-based devices with the primary purpose of carrying out DDoS attacks.

Read details — https://thehackernews.com/2021/02/beware-new-matryosh-ddos-botnet.html

Multiple critical security flaws have been reported in Cisco VPN routers for businesses that could allow unauthenticated, remote attackers to execute arbitrary code as the root user on the affected devices.

Read details and patch ASAP — https://thehackernews.com/2021/02/critical-flaws-reported-in-cisco-vpn.html

fa

WARNING —A new Google Chrome browser 0-day bug is under active Attack

Read details: https://thehackernews.com/2021/02/new-chrome-browser-0-day-under-active.html
Windows, Mac, and Linux users are advised to update the software to the latest available version immediately.

Cybercriminals are now abusing Plex Media Servers to amplify DDoS traffic against various targets to take them offline.

Read details: https://thehackernews.com/2021/02/cybercriminals-now-using-plex-media.html

🔥 WARNING — Hugely popular 'The Great Suspender' browser extension for Google Chrome contains malware, allowing rogue developers to execute malicious code on millions of computers.

Details: https://thehackernews.com/2021/02/warning-hugely-popular-great-suspender.html

Cybersecurity researchers reveal how the Iranian government spies on dissidents, opposition forces, and ISIS supporters, and Kurdish natives with the help of hackers and #malware.

Read more: https://thehackernews.com/2021/02/researchers-reveal-how-iran-spies-on.html

😱 Hacker broke into the computer controlling a water treatment facility in Florida and tried poisoning the supply by remotely changing a setting that drastically altered the levels of sodium hydroxide in the water.

Details: https://thehackernews.com/2021/02/hacker-tried-poisoning-water-supply.html

Ukraine authorities have shut down one of the world's largest phishing services — U-Admin — and arrested its author.

Read: https://thehackernews.com/2021/02/ukrainian-police-arrest-author-of.html
U-Admin kit was used to target financial institutions in 11 countries, causing tens of millions of dollars in losses.

Microsoft Patch Tuesday — February 2021 Edition

✅ A critical Windows zero-day vulnerability has been spotted being exploited in the wild.
✅ Patches for a total of 56 new flaws have been issued, 11 of which are listed as critical.
Read: https://thehackernews.com/2021/02/microsoft-issues-patches-for-in-wild-0.html

Apple releases a security patch for 10-year-old macOS SUDO root privilege escalation vulnerability, tracked as CVE-2021-3156, and also called "Baron Samedit."

Read details — https://thehackernews.com/2021/02/apple-patches-10-year-old-macos-sudo.html

Windows LodaRAT malware with credential-stealing and espionage capabilities has now expanded its scope to set its sights on users of Android devices.

Read more: https://thehackernews.com/2021/02/lodarat-windows-malware-now-also.html