Hackers Found Exploiting Recently Patched Oracle WebLogic RCE Flaw to Infect Still-Vulnerable Servers with "Sodinokibi" and GandCrab Ransomware

https://thehackernews.com/2019/05/ransomware-oracle-weblogic.html

U.S. Department of Homeland Security has ordered all Federal Agencies to patch "critical" vulnerabilities within 15 days ...as the average time b/w discovery and exploitation of new vulnerabilities is continuously decreasing

Read more: https://thehackernews.com/2019/05/dhs-patch-vulnerabilities.html

WikiLeaks founder Julian Assange has been sentenced by UK Court to nearly a year (50 weeks) in jail for skipping bail

https://thehackernews.com/2019/05/julian-assange-jailed.html

Google has introduced a new privacy-focused "auto-delete" option in your accounts that will allow you to automatically delete your "Location History, Web and App Activity" data after a set period of time.

Here's how to enable it ⮞ https://thehackernews.com/2019/05/google-web-location-history.html

—by @Swati_THN

Oh, Snap! A critical RCE vulnerability in pre-installed Dell Support software could allow hackers to compromise most Dell computers remotely

https://thehackernews.com/2019/05/dell-computer-hacking.html

Users should update to SupportAssist version 3.2.0.90 or later, or simply uninstall the application altogether.

Research reveals a Chinese hacking group [Buckeye] had been using some of the stolen the NSA hacking tools almost a year before the Shadow Brokers group leaked them on the Internet
https://thehackernews.com/2019/05/buckeye-nsa-hacking-tools.html

Israel Defense Force neutralizes an "attempted" cyberattack by blowing up a building in Gaza from where it claims the attack was originated by the jihadist hackers of Palestinian Hamas militant group.

https://thehackernews.com/2019/05/israel-hamas-hacker-airstrikes.html

Microsoft will soon include a custom-built full Linux kernel in Windows 10 to underpin its newest version of the Windows Subsystem for Linux version 2.0 (WSL 2)

https://thehackernews.com/2019/05/windows-10-linux-kernel.html

One of the largest cryptocurrency exchanges Binance has been hacked in a large scale security breach — hackers stole over $40 million worth of Bitcoin
.

https://thehackernews.com/2019/05/binance-cryptocurrency-hacked.html

Baltimore City Shuts Down Most of Its Government Servers After Ransomware Attack

https://thehackernews.com/2019/05/baltimore-ransomware-cyberattack.html

Google will soon change the way cross-site tracking Cookies work across the Internet by introducing improved privacy controls in the Chrome browser, allowing users to block/clear cross-site cookies without losing sign-in info and personalized settings

https://thehackernews.com/2019/05/chrome-samesite-cookies.html

⚠️Watch Out! An ongoing 'Digital Skimming' campaign stealing Credit Card information from over a hundred Magento-based shopping sites

https://thehackernews.com/2019/05/magento-credit-card-hacking.html

If your site is also loading a script from — magento-analytics[.]com domain, act immediately.

Breaking — U.S. Justice Department today announced charges against a Chinese hacker and his team member for their alleged role in 2015 massive data breach at health insurance giant Anthem and three other unnamed American companies.

https://thehackernews.com/2019/05/chinese-hacker-anthem-breach.html

\U.S. Homeland Security and FBI have issued joint alert on ELECTRICFISH tunneling tool that North Korean hackers have actively been using to exfiltrate data from compromised systems

https://thehackernews.com/2019/05/north-korean-hacking-tool.html

U.S. Justice Department announces charges against 9 individuals in a massive "SIM Swapping" case — 6 of which are hackers & other 3 are former employees of mobile operators who allegedly helped them steal roughly $2.5 million worth of cryptocurrency

https://thehackernews.com/2019/05/sim-swapping-hacking.html

Hackers found exploiting a critical 0-day vulnerability (CVE-2019-3568) in WhatsApp audio calling feature to secretly install spyware on targeted phones just by calling them.

https://thehackernews.com/2019/05/hack-whatsapp-vulnerability.html

Update your WhatsApp for Android, iOS, Tizen, Windows Phone immediately.

Secure Boot (TAm) bypass flaw — dubbed "ThrAngryCat" or 😾😾😾, CVE-2019-1649 — affecting millions of Cisco devices could allow remote attackers to implant persistent backdoors on vulnerable routers, switches and firewall devices.

https://thehackernews.com/2019/05/cisco-secure-boot-bypass.html

Adobe Releases May 2019 Software Security Updates to Patch Dozens of Critical and Important Flaws in Adobe Flash Player, Acrobat Reader, and Media Encoder

https://thehackernews.com/2019/05/adobe-software-updates.html

Microsoft releases May 2019 security updates to patch a critical "Wormable Flaw" [CVE-2019-0708] and 78 other CVE-listed vulnerabilities in its software and Windows operating systems

https://thehackernews.com/2019/05/microsoft-security-updates.html

MDS Attacks [ZombieLoad, RIDL, and Fallout] — A new class of Spectre-style flaws discovered in #Intel CPUs that affects almost every processor since 2011, allowing attackers to steal sensitive data across processes, privilege boundaries and Hyperthreads.

https://thehackernews.com/2019/05/intel-processor-vulnerabilities.html