Alert: Mission-critical SAP applications—including but not limited to ERP, SCM, HCM, PLM, CRM and others—are currently under active attack.

https://thehackernews.com/2021/04/watch-out-mission-critical-sap.html
Businesses are advised to perform a compromise assessment, apply security patches, and fix misconfigurations to prevent unauthorized access.

Researchers revealed details of a new banking trojan targeting corporate users in Brazil across various sectors such as engineering, healthcare, retail, manufacturing, finance, transportation, and government.

Read: https://thehackernews.com/2021/04/experts-uncover-new-banking-trojan.html

Researchers have found a critical authentication bypass vulnerability (CVE-2021-21982) in VMWare Carbon Black Cloud Workload software. Patch it!

Read: https://thehackernews.com/2021/04/critical-auth-bypass-bug-found-in.html
VMware has also addressed 2 separate bugs in vRealize Operations Manager solution.

A new wormable Android malware has been discovered that's capable of propagating via WhatsApp messages automatically.

Details — https://thehackernews.com/2021/04/whatsapp-based-wormable-android-malware.html
Disguised as a rogue Netflix app, malware app was downloadable directly from the official Google Play Store.

In a bid to reduce memory-based vulnerabilities, Google is adding Rust programming language support to Android OS low-level development.

Read details: https://thehackernews.com/2021/04/android-to-support-rust-programming.html

🔥 UPDATE — PHP Supply Chain Attack

Hackers compromised the user database at PHP's official site—including passwords—which was then used to implant a backdoor in the source code.
https://thehackernews.com/2021/04/php-sites-user-database-was-hacked-in.html
PHP maintainers have reset all existing passwords.

Hackers are actively exploiting critical VPNs vulnerabilities on unpatched industrial systems to deploy Cring ransomware.

Read: https://thehackernews.com/2021/04/hackers-exploit-unpatched-vpns-to.html
At least one such hacking incident led to the shutdown of a production site.

Researchers discover a new #Iranian malware, dubbed 'SideTwist,' used in the recent cyberattacks against Lebanese entities.

https://thehackernews.com/2021/04/researchers-uncover-new-iranian-malware.html

Supply Chain Attack!

It turns out that the pre-installed malware app found on hundreds of thousands of Gigaset Android smartphones was pushed as part of an official software update after hackers compromised the company’s servers.
Read: https://thehackernews.com/2021/04/gigaset-android-update-server-hacked-to.html

WARNING: Cisco will not patch a newly discovered critical RCE vulnerability affecting its end-of-life small business routers.



Details: https://thehackernews.com/2021/04/cisco-will-not-patch-critical-rce-flaw.html
The company is urging businesses to purchase new equipment for secure networking.

Alert — A new malware dropper, dubbed 'Saint Bot,' found in the wild is infecting computers with a virus that steals passwords.
https://thehackernews.com/2021/04/alert-theres-new-malware-out-there.html

WARNING — In yet another supply-chain attack, hackers tampered with the popular mobile app store 'APKPure' software to distribute malicious apps to millions of Android devices.



https://thehackernews.com/2021/04/hackers-tampered-with-apkpure-store-to.html

This year at Pwn2Own contest, hackers have hacked the following widely-used programs, resulting in up to $1.2 million in bounties.

✅ Microsoft Exchange and Teams
✅ Windows 10 and Ubuntu
✅ Apple Safari, Google Chrome, Edge
✅ Parallels Desktop
✅ Zoom

https://thehackernews.com/2021/04/windows-ubuntu-zoom-safari-ms-exchange.html

🔥 WATCH OUT — A new exploit has been released to the public for a $100,000 UNPATCHED security vulnerability affecting Google Chrome and other Chromium-based browsers like Microsoft Edge, Opera, and Brave.

Details: https://thehackernews.com/2021/04/rce-exploit-released-for-unpatched.html

Several malicious apps have been caught posing as #Android security scanners on the #Google Play Store

Read — https://thehackernews.com/2021/04/brata-malware-poses-as-android-security.html
These apps trick users into installing fake versions of Chrome, WhatsApp, or PDF Reader, which can steal banking credentials.

As part of an ongoing campaign, attackers are making use of contact forms on websites to deliver malicious links to targeted businesses.



https://thehackernews.com/2021/04/hackers-using-websites-contact-forms-to.html

More than 100 million consumer and enterprise IoT devices are at risk due to 9 newly discovered vulnerabilities affecting 4 widely used TCP/IP stacks.

Read: https://thehackernews.com/2021/04/new-namewreck-vulnerabilities-impact.html

Attention: Google warns that a set of exploits for two new #Chrome flaws exist in the wild, making it possible for hackers to engage in active exploitations.

https://thehackernews.com/2021/04/2-new-chrome-0-days-under-attack-update.html
As new Chrome updates become available for Windows, Mac, Linux, make sure to install them ASAP!

Summary: Patch Tuesday — April 2021

✅ 114 new flaws, of which are 19 critical
✅ Windows 0-day under active attack
✅ 27 RCE flaws in Windows RPC
✅ NSA uncovers new Exchange server flaws
✅ FBI sanitized hacked Exchange servers
Details: https://lnkd.in/ebuuENd

🔥IMPORTANT: Unfortunately, Google Chrome users are still at risk of hacking even after installing the latest update released today.

Researcher pointed out that there's another bug in V8 engine that still hasn't been addressed in Chrome.
https://thehackernews.com/2021/04/2-new-chrome-0-days-under-attack-update.html