Fire Watch Out! A new variant of NAT Slipstreaming attack—a technique to bypass routers and firewalls—now could let remote hackers target any device on an internal network from the Internet.

Read details and watch demo: https://thehackernews.com/2021/01/new-attack-could-let-remote-hackers.html

Researchers release PoC for an unpatched Microsoft Azure Function flaw that could let attackers escalate privileges and escape Docker container to the host.

https://thehackernews.com/2021/01/new-docker-container-escape-bug-affects.html
Company says the bug has no security impact as another defense boundary still protects the host.

The world's most dangerous botnet malware—Emotet—has finally been disrupted through a collective operation by law enforcement agencies from as many as 8 countries.

Read — https://thehackernews.com/2021/01/european-authorities-disrupt-emotet.html
Ukrainian police also arrested 2 individuals involved in the Emotet cyberattacks.

U.S. and Bulgarian authorities took control of the dark web infrastructure used by the NetWalker ransomware cybercrime group to publish data stolen from its victims.

Read: https://thehackernews.com/2021/01/authorities-seize-dark-web-site-linked.html

Italy CERT-AGID warns of a new Android malware family that hijacks targeted devices to steal user credentials for different services and can also record audio and video.

Read Details — https://thehackernews.com/2021/01/italy-cert-warns-of-new-credential.html

Lebanese Cedar APT hacker group—linked to Hezbollah Cyber Unit—broke into telecom, hosting providers, communication, IT, and applications companies worldwide.

Read more: https://thehackernews.com/2021/01/hezbollah-hacker-group-targeted.html

Security experts at Google uncover details of a new security feature that Apple quietly added to iOS 14 as a countermeasure to prevent attacks similar to those recently found to leverage zero-days in the messaging app.



https://thehackernews.com/2021/01/google-uncovers-new-ios-security.html

🔥 After early heads-up on a severe #vulnerability in GnuPG's encryption library Libgcrypt, an expert at Google releases details on the potential RCE affecting many projects using the vulnerable library version 1.9.0.

Read: https://thehackernews.com/2021/01/google-discloses-severe-bug-in.html

Watch Out, Sysadmins!

A new cryptojacking malware by Rocke hacking group is leveraging vulnerabilities in Apache ActiveMQ, Oracle WebLogic, and Redis web technologies to hijack cloud infrastructures.
Details: https://thehackernews.com/2021/02/new-cryptojacking-malware-targeting.html

~ Operation NightScout ~

A new software supply-chain attack distributed spyware to potentially millions of Android emulator users running Windows and macOS systems.
Details: https://thehackernews.com/2021/02/a-new-software-supplychain-attack.html

A critical zero-day vulnerability affecting SonicWall SMA 100 devices—access management gateways for small & mid-sized businesses—has finally been discovered that is actively being exploited in the wild.

Read: https://thehackernews.com/2021/02/hackers-exploiting-critical-zero-day.html

A new data breach exposes the personal information of more than 1.6 million Washington state residents who filed for unemployment claims in 2020.

Read: https://thehackernews.com/2021/02/data-breach-exposes-16-million-jobless.html

Security researchers today uncovered new delivery and evasion techniques adopted by AgentTesla remote access trojan (RAT) to get around defense barriers and monitor its victims.

Details: https://thehackernews.com/2021/02/agent-tesla-malware-spotted-using-new.html

A newly discovered Linux backdoor — dubbed "Kobalos" — targets high-performance computing clusters, allowing hackers to execute arbitrary commands remotely.



Details: https://thehackernews.com/2021/02/a-new-linux-malware-targeting-high.html

Researchers disclose 3 new severe vulnerabilities impacting SolarWinds products, most severe of which could allow RCE attacks with elevated privileges.

Details — https://thehackernews.com/2021/02/3-new-severe-security-vulnerabilities.html

Experts disclose 6 critical flaws affecting popular Realtek Wi-Fi module for widely used in millions of embedded devices—2 can be exploited without requiring Wi-Fi password, and the other allows exploitation of Wi-Fi client and full takeover.

https://thehackernews.com/2021/02/critical-bugs-found-in-popular-realtek.html

Researchers spotted a new 'Matryosh' botnet malware targeting Android-based devices with the primary purpose of carrying out DDoS attacks.

Read details — https://thehackernews.com/2021/02/beware-new-matryosh-ddos-botnet.html

Multiple critical security flaws have been reported in Cisco VPN routers for businesses that could allow unauthenticated, remote attackers to execute arbitrary code as the root user on the affected devices.

Read details and patch ASAP — https://thehackernews.com/2021/02/critical-flaws-reported-in-cisco-vpn.html

fa

WARNING —A new Google Chrome browser 0-day bug is under active Attack

Read details: https://thehackernews.com/2021/02/new-chrome-browser-0-day-under-active.html
Windows, Mac, and Linux users are advised to update the software to the latest available version immediately.