🚨 Kroll reveals that one of its employees was targeted in a sophisticated attack, resulting in the unauthorized exposure of sensitive files containing personal information of bankruptcy claimants for BlockFi, FTX, and Genesis.

Read: https://thehackernews.com/2023/08/kroll-suffers-data-breach-employee.html

The leak of LockBit 3.0 ransomware builder has led to the emergence of various new cyber threats: Bl00dy, Buhti, and NATIONAL HAZARD AGENCY.

Read: https://thehackernews.com/2023/08/lockbit-30-ransomware-builder-leak.html

Kaspersky discovered 396 different LockBit samples.

🚨 Beware: KmsdBot botnet malware has evolved, now targeting a wider range of IoT devices.

Learn more about this threat: https://thehackernews.com/2023/08/kmsdbot-malware-gets-upgrade-now.html

Cyberattacks are common and no company is immune. Regular scans & vulnerability assessments are crucial.

Understand the 8 key areas and 6 phases of vulnerability testing.

Read: https://thehackernews.com/2023/08/cyberattacks-targeting-e-commerce.html

🧑‍💻 Attention developers! Malicious packages found on Rust's crate registry. They target your machines, capture OS info, and use Telegram for data transfer.

Read: https://thehackernews.com/2023/08/developers-beware-malicious-rust.html

Be cautious!

🔓 Researchers find loophole in Microsoft Entra ID app, granting hackers unauthorized access through an abandoned URL.

Learn how they did it and how to stay safe: https://thehackernews.com/2023/08/experts-uncover-how-cybercriminals.html

⚠️ Heads up: Microsoft warns about a surge in AiTM phishing attacks. Hackers are using smart phishing-as-a-service (PhaaS) platforms to scale up their campaigns and bypass MFA protections.

Read details: https://thehackernews.com/2023/08/phishing-as-service-gets-smarter.html

🚨 Unpatched Citrix systems under attack! Unknown threat actors are exploiting a critical vulnerability (CVE-2023-3519) for #ransomware attacks.

Read details: https://thehackernews.com/2023/08/citrix-netscaler-alert-ransomware.html

New malspam campaign uses DarkGate malware to steal data, mine cryptocurrency, and evade detection.

Watch out for phishing emails with links to malicious MSI or VBScript files.

Read: https://thehackernews.com/2023/08/darkgate-malware-activity-spikes-as.html

DarkGate campaign rents out malware to limited affiliates.

Suspected Chinese hacking group UNC4841 exploited zero-day flaw in Barracuda ESG appliances to target government, military, and tech companies.

Read details: https://thehackernews.com/2023/08/chinese-hacking-group-exploits.html

💪 Operation Duck Hunt: QakBot, a powerful Windows malware, taken down. $8.6 million in crypto seized. It compromised 700k+ computers worldwide.

Read details here: https://thehackernews.com/2023/08/fbi-dismantles-qakbot-malware-frees.html

🚨 Critical Security Alert!

New authentication bypass and file write vulnerabilities found in VMware's Aria Operations Networks that could lead to remote code execution attacks.

Know more about CVE-2023-34039 and CVE-2023-20890: https://thehackernews.com/2023/08/critical-vulnerability-alert-vmware.html

🚨 Urgent: Juniper firewalls, Openfire, and Apache RocketMQ servers are being actively targeted by cybercriminals.

Learn about the vulnerabilities, the ongoing attacks, and their potential impact on your systems.

Read: https://thehackernews.com/2023/08/alert-juniper-firewalls-openfire-and.html

⚠️ Watch out, coders! Malicious npm packages are exploiting post-install hooks to steal source code & secrets.

Learn more: https://thehackernews.com/2023/08/malicious-npm-packages-aim-to-target.html

Defend your brand against content scraping! ChatGPT's scraping abilities are causing concern.

Discover strategies to outsmart AI bots, secure your content, and maintain your web traffic.

Read: https://thehackernews.com/2023/08/how-to-prevent-chatgpt-from-stealing.html

⚠️ Spyware Alert! Malicious versions of Signal & Telegram Android messenger apps found on Google Play and Samsung Galaxy Store, distributing China-linked BadBazaar spyware.

Learn more about it here: https://thehackernews.com/2023/08/china-linked-badbazaar-android-spyware.html

🚨 New Android banking trojan alert!

Meet MMRat: stealthy malware targeting Southeast Asian users. It hijacks devices remotely for financial fraud. Learn how it works.

Read: https://thehackernews.com/2023/08/mmrat-android-trojan-executes-remote.html

⚡ New research uncovers how hackers could cleverly bypass endpoint security by exploiting Windows Container Isolation feature.

Learn how this works: https://thehackernews.com/2023/08/hackers-can-exploit-windows-container.html

Earth Estries, a skilled hacking group, is orchestrating an ongoing campaign targeting government and tech sectors in Philippines, Taiwan, Malaysia, South Africa, Germany, and the U.S.

Learn about the sophisticated tactics behind it: https://thehackernews.com/2023/08/earth-estries-espionage-campaign.html

🚨 New Threat Alert! Researchers uncover 3 more malicious Python packages in PyPI repository under VMConnect campaign. North Korean state-sponsored actors suspected.

Read: https://thehackernews.com/2023/08/north-korean-hackers-deploy-new.html

SapphireStealer, an open-source .NET-based #malware, is used by multiple threat actors for espionage, ransomware, and other cyber attacks.

Learn more: https://thehackernews.com/2023/08/sapphirestealer-malware-gateway-to.html