ALERT: Twitter is limiting the use of SMS-based two-factor authentication to its Blue subscribers only.

If you're not a Blue subscriber, you'll need to switch to other methods, an authenticator app or a hardware security key, by March 20, 2023.

Read: https://thehackernews.com/2023/02/twitter-limits-sms-based-2-factor.html

An employee at the popular cryptocurrency exchange platform, Coinbase, recently fell victim to a cyber attack scam, leading to a small amount of employee data being compromised.

Learn more: https://thehackernews.com/2023/02/coinbase-employee-falls-for-sms-scam-in.html

ALERT: SideCopy, a Pakistani-origin threat group, is using an updated version of the backdoor ReverseRAT to target Indian government entities.

Learn more: https://thehackernews.com/2023/02/researchers-warn-of-reverserat-backdoor.html

Cyber espionage group, Earth Kitsune, is up to their old tricks again.

This time they've hacked a pro-North Korean organization's website and distributed their latest backdoor, WhiskerSpy, to unsuspecting visitors.

https://thehackernews.com/2023/02/north-korean-cyber-espionage-group.html

Fortinet has released security updates to address 40 vulnerabilities in its software, including FortiWeb, FortiOS, FortiNAC & FortiProxy.

Details: https://thehackernews.com/2023/02/fortinet-issues-patches-for-40-flaws.html

Samsung introduces Message Guard, a new feature to safeguard users from zero-click malware and spyware via attacks.

Learn more: https://thehackernews.com/2023/02/samsung-introduces-new-feature-to.html

A new information stealer called Stealc is being advertised on the dark web, gaining traction among criminal groups.

Learn more: https://thehackernews.com/2023/02/researchers-discover-dozens-samples-of.html

Researchers have unveiled a new botnet malware, dubbed "MyloBot," that is spreading rapidly and has already compromised thousands of systems in several countries, including India, the U.S., Indonesia, and Iran.

Read: https://thehackernews.com/2023/02/mylobot-botnet-spreading-rapidly.html

Urgent security update for VMware Carbon Black App Control users!

A critical injection vulnerability (CVE-2023-20858) has been discovered that could allow attackers to access the underlying server operating system.

Details: https://thehackernews.com/2023/02/vmware-patches-critical-vulnerability.html

CISA has updated its Known Exploited Vulnerabilities catalog with three new vulnerabilities that are currently being exploited — IBM Aspera Faspex (CVE-2022-47986) and Mitel MiVoice Connect (CVE-2022-41223 and CVE-2022-40765).

Read more: https://thehackernews.com/2023/02/us-cybersecurity-agency-cisa-adds-three.html

Hackers are adopting an open source C2 framework called Havoc as an alternative to well-known toolkits like Cobalt Strike and Sliver. Zscaler reports that it was utilized in an attack on an unnamed government organization.

Learn more: https://thehackernews.com/2023/02/threat-actors-adopt-havoc-framework-for.html

A new threat actor called "Hydrochasma" is suspected of carrying out an espionage campaign targeting shipping companies and medical laboratories in Asia.

Learn more: https://thehackernews.com/2023/02/hydrochasma-new-threat-actor-targets.html

Open Source ecosystem under attack again! Over 15,000 spam packages have flooded the NPM repository to distribute phishing links.

Learn more: https://thehackernews.com/2023/02/attackers-flood-npm-repository-with.html

⚠️ Attention! Apple has announced three new vulnerabilities impacting iOS, iPadOS, and macOS devices.

Read: https://thehackernews.com/2023/02/apple-warns-of-3-new-vulnerabilities.html

CVE-2023-23520 could let attackers read arbitrary files as root; and CVE-2023-23530 and CVE-2023-23531 could be used to achieve code execution.

Python developers beware! Cybersecurity researchers have found 41 malicious packages mimicking popular libraries such as HTTP, AIOHTTP, requests, urllib, and urllib3.

Learn more: https://thehackernews.com/2023/02/python-developers-warned-of-trojanized.html

A new implant, WinorDLL64, associated with North Korea-aligned Lazarus Group has been discovered. This fully-featured malware is capable of exfiltration, file overwriting, and executing PowerShell commands.

Learn more: https://thehackernews.com/2023/02/lazarus-group-using-new-winordll64.html

Watch out! A new malware campaign is targeting Facebook and YouTube users, using a new information stealer to hijack accounts and mine cryptocurrency.

Learn more: https://thehackernews.com/2023/02/new-s1deload-malware-hijacking-users.html

A new threat actor named Clasiopa is targeting materials research organizations in Asia using a distinct set of tools. Symantec suspects that the hacking group may have ties to India.

Learn more: https://thehackernews.com/2023/02/new-hacking-cluster-clasiopa-targeting.html

Protect your macOS systems from evasive cryptocurrency mining malware!

Trojanized versions of legitimate applications, including Final Cut Pro, are being used to deploy XMRig coin miner.

Read more about it here: https://thehackernews.com/2023/02/hackers-using-trojanized-macos-apps-to.html

A new study by the Mozilla Foundation reveals that majority of Android apps on the Google Play Store provide misleading or false information about their data safety labels.

Learn more: https://thehackernews.com/2023/02/majority-of-android-apps-on-google-play.html