Researchers warn of a new vulnerability (CVE-2022-0847) in the Linux kernel, dubbed "Dirty Pipe," which could allow an attacker to overwrite arbitrary data and take complete control of a system.

Details: https://thehackernews.com/2022/03/researchers-warn-of-linux-kernel-dirty.html

A series of newly discovered security vulnerabilities — dubbed "Access:7" — in PTC's Axeda software affects hundreds of thousands of ATMs, vending machines, SCADA systems, medical devices and IoT devices.

Read details: https://thehackernews.com/2022/03/critical-access7-supply-chain.html

Samsung confirms a security breach that led to the exposure of internal company data, including the source code related to its Galaxy smartphones.

Read details: https://thehackernews.com/2022/03/samsung-confirms-data-breach-after.html

Google is officially buying cybersecurity company Mandiant in an all-cash deal approximately valued at $5.4 billion.

Read: https://thehackernews.com/2022/03/google-buys-cybersecurity-firm-mandiant.html

Google warns that Russian and Belarusian hackers are targeting Ukraine and European allies through phishing attacks.

Read details: https://thehackernews.com/2022/03/google-russian-hackers-target.html

Researchers have discovered 16 new high-severity vulnerabilities in UEFI firmware affecting millions of HP devices, including laptops, desktops, PoS systems and edge computing nodes.

Read details: https://thehackernews.com/2022/03/new-16-high-severity-uefi-firmware.html

Researchers have uncovered 3 critical vulnerabilities in the Pascom Cloud Phone System (CPS) that could be combined to achieve full pre-authenticated remote code execution of affected systems.

Details: https://thehackernews.com/2022/03/critical-rce-bugs-found-in-pascom-cloud.html

Cybersecurity researchers at Mandiant have revealed that China-backed APT41 hacker group compromised at least 6 state government networks in the United States between May 2021 and February 2022.

Read details: https://thehackernews.com/2022/03/chinese-apt41-hackers-broke-into-at.html

Patch Tuesday, March 2022: In addition to Microsoft, Adobe, and Google, the following major software vendors have also released patches to fix various security vulnerabilities:

—Cisco
—Citrix
—HP
—Intel
—Juniper Networks
—Linux distributions
— Mozilla Firefox and ESR
—SAP
—Schneider Electric, and
—Siemens

https://thehackernews.com/2022/03/critical-security-patches-issued-by.html

⭐Experts have discovered 3 new critical flaws in APC Smart UPS that could let attackers remotely hack devices or manipulate ⚡ power of millions of enterprise devices to physically 💥 damage them or other 🖨️💻 assets connected to them.

Details: https://thehackernews.com/2022/03/critical-bugs-could-let-attackers.html

⚡Hackers abusing Mitel devices to launch high-impact DDoS attacks with a record-breaking amplification ratio of 4,294,967,296 to 1.

Read details: https://thehackernews.com/2022/03/hackers-abuse-mitel-devices-to-amplify.html

Emotet botnet malware has infected over 100,000 computers since its latest resurgence in November 2021, and the number is steadily increasing.

Read details: https://thehackernews.com/2022/03/emotet-botnets-latest-resurgence.html

22-year-old Ukrainian hacker allegedly linked to Sodinokibi/REvil ransomware gang has been extradited to the United States and put on trial for his role in carrying out #cyberattacks on several companies, including Kaseya.

Read details: https://thehackernews.com/2022/03/ukrainian-hacker-linked-to-revil.html

New Branch History Injection (BHI) technique to exploit the Spectre v2 vulnerability allows attackers to bypass existing hardware mitigations in Intel, AMD, and Arm processors and leak sensitive information from host memory.

Details: https://thehackernews.com/2022/03/new-exploit-bypasses-existing-spectre.html

Cisco Talos researchers have uncovered details of new malware attacks on Turkey and other Asian countries carried out by Iran-linked hackers operating under the name MuddyWater.

Read details: https://thehackernews.com/2022/03/iranian-hackers-targeting-turkey-and.html

A new browser extension allows users to automatically check whether or not the WhatsApp Web code on their browser has been altered or tampered with, providing an extra layer of security for millions of desktop users.

Details: https://thehackernews.com/2022/03/heres-how-to-find-if-whatsapp-web-code.html

Russian government has established a new SSL/TLS Certificate Authority and is rapidly pushing it into Russia to deal with Western sanctions.

Read details: https://thehackernews.com/2022/03/russian-pushing-its-new-state-run-tls.html

But, it's not clear whether Chrome, Edge, Firefox & Safari browsers will accept it.

Multiple vulnerabilities, including command injection, have been discovered in popular Software Package Managers—such as Composer, Bundler, Poetry, Yarn, pnpm, Pip, and Pipenv, some of which have not yet fixed the reported issues.

Read: https://thehackernews.com/2022/03/multiple-security-flaws-discovered-in.html

A newly discovered vulnerability (CVE-2022-25636) in the Netfilter #firewall module of Linux kernel could be exploited to gain root privileges on vulnerable systems, escape containers or cause a kernel panic.

Details: https://thehackernews.com/2022/03/new-linux-bug-in-netfilter-firewall.html

Researchers find new evidence revealing the overlapping source code and techniques between the operators of Shamoon and Kwampirs, indicating that they "are the same group or really close collaborators."

Read details: https://thehackernews.com/2022/03/researchers-find-new-evidence-linking.html

A Russian-speaking ransomware outfit is targeting entities in Europe and Central America by repurposing custom hacking tools developed by other APT groups.

Read details: https://thehackernews.com/2022/03/russian-ransomware-gang-retool-custom.html