🚨 Beware! A new Mirai botnet variant named Pandora is compromising Android-based TV sets, transforming them into DDoS attack bots.

Discover how the Pandora exploits these devices: https://thehackernews.com/2023/09/mirai-botnet-variant-pandora-hijacks.html

Apache SuperSet users, beware!

A critical update has been released to patch two new vulnerabilities (CVE-2023-39265 & CVE-2023-37941) that could expose your servers to remote code execution attacks.

Find out here: https://thehackernews.com/2023/09/alert-apache-superset-vulnerabilities.html

🚨 Beware of the latest macOS threat! A new malvertising campaign is actively spreading Atomic Stealer malware, targeting gamers and crypto users.

Read: https://thehackernews.com/2023/09/mac-users-beware-malvertising-campaign.html

Are your defenses up to date?

🚨 Urgent Spyware Alert!

Apple patched 2 new zero-day vulnerabilities in iOS, iPadOS & macOS devices, exploited in a zero-click iMessage exploit chain called BLASTPASS to deploy Pegasus spyware.

Read details & PATCH your devices ASAP: https://thehackernews.com/2023/09/apple-rushes-to-patch-zero-day-flaws.html

📢 Cybersecurity Alert:

CISA Warns of multiple nation-state threat actors exploiting vulnerabilities in Fortinet FortiOS SSL-VPN and Zoho ManageEngine ServiceDesk Plus to compromise critical systems.

Discover the tactics: https://thehackernews.com/2023/09/cisa-warning-nation-state-hackers.html

ALERT: North Korean hackers exploiting zero-day bugs and using fake social media accounts to compromise cybersecurity researchers.

Learn how they're doing it: https://thehackernews.com/2023/09/north-korean-hackers-exploit-zero-day.html

Cisco takes action against critical security flaw in BroadWorks platform, while Juniper Networks and Tenda Modem Router also face vulnerabilities.

Find out what you need to know to keep your systems safe: https://thehackernews.com/2023/09/cisco-issues-urgent-fix-for.html

Lazarus group hackers are targeting Microsoft IIS servers. Get expert insights and practical tips to defend your web infrastructure from cyber threats.

Read here: https://thehackernews.com/2023/09/protecting-your-microsoft-iis-servers.html

U.S. and U.K. governments have jointly imposed sanctions on 11 individuals connected to the Russia-based TrickBot cybercrime group, accused of targeting U.S. companies in cyberattacks.

Read details here: https://thehackernews.com/2023/09/uk-and-us-sanction-11-russia-based.html

Discover how cybercriminals are abusing Advanced Installer, a popular software installation packaging tool, to deploy cryptocurrency mining malware.

Read here: https://thehackernews.com/2023/09/cybercriminals-weaponizing-legitimate.html

Beware of impostor apps in the Google Play Store. Fake Telegram apps have been stealing data from millions of Android users.

Read: https://thehackernews.com/2023/09/millions-infected-by-spyware-hidden-in.html

Google rolls out Privacy Sandbox for Chrome. Take a closer look at how it replaces tracking cookies with privacy-friendly alternatives.

Read details: https://thehackernews.com/2023/09/google-chrome-rolls-out-support-for.html

HijackLoader, a new stealthy malware loader, is making waves in the cybercriminal world. Learn how it delivers dangerous payloads and evades security measures.

Read: https://thehackernews.com/2023/09/new-hijackloader-modular-malware-loader.html

"Steal-It" campaign targets Windows systems in Australia, Poland, and Belgium. Learn how attackers use PowerShell scripts to steal NTLMv2 hashes.

Read: https://thehackernews.com/2023/09/cybercriminals-using-powershell-to.html

Charming Kitten strikes again! Latest report reveals their campaign using 'Sponsor' backdoor, targeting Brazil, Israel, and U.A.E.

Read: https://thehackernews.com/2023/09/charming-kitens-new-backdoor-sponsor.html

API security is crucial. Discover how authentication, encryption, and design protect APIs. Follow key steps to secure your APIs and safeguard customer data.

Read: https://thehackernews.com/2023/09/how-to-prevent-api-breaches-guide-to.html

WEBINAR — Think your identity protection is secure? Think again. Discover the hidden vulnerabilities in your organization's identity protection.

Join our webinar to learn about security gaps in the Identity Attack Surface.

Register now: https://thehacker.news/identity-attack-surface

Beware of the latest Facebook Messenger phishing attack! Attackers are taking over accounts through malicious attachments.

Read: https://thehackernews.com/2023/09/vietnamese-hackers-deploy-python-based.html

Urgent: Google releases patch for a new Chrome zero-day vulnerability (CVE-2023-4863) that's being exploited in the wild.

Read: https://thehackernews.com/2023/09/google-rushes-to-patch-critical-chrome.html

Don't wait—update your browser now to protect against potential cyber threats.

🚨 Beware, Mac users! MetaStealer, a new info-stealer malware, is targeting macOS. Learn how it's posing as prospective clients to trick victims into launching malicious payloads.

Learn more: https://thehackernews.com/2023/09/beware-metastealer-malware-targets.html

💻🔒 Beware of the latest phishing attack! Attackers are using Microsoft Word docs to spread malware like Agent Tesla, OriginBotnet, and RedLine Clipper.

Learn more about this threat: https://thehackernews.com/2023/09/sophisticated-phishing-campaign.html