🛡️ Researchers uncover Sleepy Pickle, a stealthy attack technique that weaponizes the Pickle format to corrupt machine learning models, posing a severe supply chain risk.

Find details here: https://thehackernews.com/2024/06/new-attack-technique-sleepy-pickle.html

⚠️ Attention CISOs! Recent supply chain cyber-attacks are driving tighter cyber security regulations. Is your organization prepared?

Learn how to navigate the changing landscape and ensure compliance: https://thehackernews.com/2024/06/why-saas-security-is-suddenly-hot.html

Microsoft delays the rollout of its controversial AI-powered Recall feature for Copilot+ PCs, shifting to Windows Insider Program for quality and security enhancements.

Details here: https://thehackernews.com/2024/06/microsoft-delays-ai-powered-recall.html

🛡️ Google report reveals North Korean threat actors have been responsible for one-third of phishing activities in Brazil since 2020. These actors are targeting government, aerospace, tech, and financial sectors.

Learn about their tactics: https://thehackernews.com/2024/06/north-korean-hackers-target-brazilian.html

Quality matters in compliance! 79% of professionals noticed differences among auditors, and 38% faced report rejections due to quality.

Learn why detailed, accurate, and comprehensive reports are critical in our latest report >
https://thehackernews.com/expert-insights/2024/06/survey-reveals-compliance-professionals.html

⚠️ Alert: Researchers uncover 24 critical flaws in ZKTeco's biometric access system, allowing attackers to bypass 🔓 authentication, steal data, and deploy backdoors.

Find details here: https://thehackernews.com/2024/06/zkteco-biometric-system-found.html

Explore how military-grade cyber defenses are reshaping cybersecurity in regulated industries.

Discover key strategies and technologies to protect against evolving threats.

Read > https://thehackernews.com/2024/06/why-regulated-industries-are-turning-to.html

Privacy concerns resurface as Google's Privacy Sandbox faces criticism from noyb. The Austrian non-profit claims it can still track users.

Learn more about this privacy controversy: https://thehackernews.com/2024/06/googles-privacy-sandbox-accused-of-user.html

What happens when your data grows faster than your security?

Find out in our webinar with industry titans, including ex-CIA and McDonald's CISOs, and the Sentra Co-Founder.

Hear from the experts who speak the language of data security.

Save your seat: https://thehackernews.com/2024/06/learn-to-secure-petabyte-scale-data-in.html

Meta has halted plans to train Artificial Intelligence using Facebook and Instagram data in Europe following a request from the Irish Data Protection Commission due to privacy concerns.

Learn more: https://thehackernews.com/2024/06/meta-halts-ai-training-on-eu-user-data.html

Pakistan-based UTA0137's cyber espionage campaign targeting Indian government with DISGOMOJI malware, exploiting DirtyPipe and Firefox scam.

Read: https://thehackernews.com/2024/06/pakistani-hackers-use-disgomoji-malware.html

Pakistan and Brazil face a wave of cybercrime, with threat actors employing SMS scams, malware, and cloud services to target mobile users and financial institutions.

Read: https://thehackernews.com/2024/06/grandoreiro-banking-trojan-hits-brazil.html

🚨 Breaking: Key member of Scattered Spider cybercrime group arrested in Spain.

The 22-year-old U.K. man was caught attempting to board a flight to Italy. Learn more about the joint effort between the FBI and Spanish Police.

Read: https://thehackernews.com/2024/06/uk-hacker-linked-to-notorious-scattered.html

🚨 ALERT: NiceRAT malware targets South Korean users. Disguised as cracked software, this Python-based RAT is building a botnet.

🤖 Learn more about this emerging threat: https://thehackernews.com/2024/06/nicerat-malware-targets-south-korean.html

Researchers have uncovered a multi-stage attack involving infected sites, fake Chrome updates, and a JScript downloader to deploy the BadSpace malware.

Learn how to spot and avoid these deceptive prompts: https://thehackernews.com/2024/06/hackers-exploit-legitimate-websites-to.html

Researchers reveal 3-year cyber espionage campaign by China-linked Velvet Ant group, exploiting F5 BIG-IP for persistence and deploying PlugX malware variants.

Read details: https://thehackernews.com/2024/06/china-linked-hackers-infiltrate-east.html

ASUS releases crucial updates for multiple router models to address critical authentication bypass and buffer overflow vulnerabilities.

Read: https://thehackernews.com/2024/06/asus-patches-critical-authentication.html

Learn how integrating security early in DevOps with DevSecOps practices enhances productivity and ensures software integrity

Read: https://thehackernews.com/2024/06/what-is-devsecops-and-why-is-it.html

🚨 Major cybercrime busts!

1️⃣ Two extradited to Singapore for mobile malware, 4,000+ victims.

2️⃣ Taiwan arrests 4 for unauthorized bank transfers, $1.33M seized.

3️⃣ U.S. charges 2 for Empire Market, $430M in illegal trades.

Read: https://thehackernews.com/2024/06/singapore-police-extradites-malaysians.html

VMware has released patches for Cloud Foundation, vCenter Server, and vSphere ESXi to fix critical flaws that could allow RCE and privilege escalation.

Learn more about CVE-2024-37079, CVE-2024-37080 & CVE-2024-37081—and secure your infrastructure now.

https://thehackernews.com/2024/06/vmware-issues-patches-for-cloud.html

Researchers uncover a new malware campaign targeting exposed Docker API endpoints to deliver cryptocurrency miners and remote access tools.

Learn more: https://thehackernews.com/2024/06/new-malware-targets-exposed-docker-apis.html