Yet another supply-chain attack...

Hackers implanted a secret backdoor into nearly 40 themes and 53 plugins for WordPress websites developed by AccessPress.

Details: https://thehackernews.com/2022/01/hackers-planted-secret-backdoor-in.html

Cyberespionage group Molerats uses legitimate cloud services like Google Drive and Dropbox to host malware payloads, run C&C, and exfiltrate data from targets in the Middle East.

Read: https://thehackernews.com/2022/01/molerats-hackers-hiding-new-espionage.html

Latest analysis of the WhisperGate wiper malware, which attacked dozens of Ukrainian agencies earlier this month, has revealed "strategic similarities" with the NotPetya attack that hit the country in 2017.

Read: https://thehackernews.com/2022/01/experts-find-strategic-similarities-bw.html

A new high-severity vulnerability (CVE-2022-21658) in Rust programming could allow an attacker to trick a privileged program into deleting files and directories that he or she could not otherwise access or delete.

Read: https://thehackernews.com/2022/01/high-severity-rust-programming-bug.html

A new Emotet malware campaign has been observed using "unconventional" IP address formats for the first time in a bid to sidestep detection by security solutions.

Read details: https://thehackernews.com/2022/01/emotet-now-using-unconventional-ip.html

Hackers are creating fraudulent crypto tokens to trick victims into buying the tokens, and then abusing misconfigurations in smart contracts to steal funds as part of the rug pull scam.

Read details: https://thehackernews.com/2022/01/hackers-creating-fraudulent-crypto.html

A previously undocumented malware packer named DTPacker has been observed distributing multiple RATs and information stealers such as Agent Tesla, Ave Maria, AsyncRAT, and FormBook.

Read details: https://thehackernews.com/2022/01/hackers-using-new-malware-packer.htm

Android banking malware BRATA has been updated with new features that grants it the ability to track device locations and even perform a factory reset in an apparent bid to cover up fraudulent wire transfers.

Read: https://thehackernews.com/2022/01/mobile-banking-trojan-brata-gains-new.html

Researchers discover that TrickBot malware now uses new techniques to evade web injection attacks.

Read: https://thehackernews.com/2022/01/trickbot-malware-using-new-techniques.html

Researchers uncover a new espionage campaign in which attackers are exploiting a critical MSHTML vulnerability to target high-level government officials and defense industry figures in West Asia.

Read details: https://thehackernews.com/2022/01/hackers-exploited-mshtml-flaw-to-spy-on.html

A 12-year-old vulnerability (CVE-2021-4034) has been discovered in the Polkit utility that could allow unprivileged attackers to gain root access to targeted Linux systems.

Details: https://thehackernews.com/2022/01/12-year-old-polkit-flaw-lets.html

Google abandons FLoC, its controversial plan to replace 3rd-party cookies, in favor of a new Privacy Sandbox proposal called "Topics API" that categorizes users' browsing habits into about 350 topics for online ads.

Read details: https://thehackernews.com/2022/01/google-drops-floc-and-introduces-topics.html

Researchers link an initial access broker (tracked as "Prophet Spider") to recent Log4Shell attacks on unpatched VMware Horizon servers.

Read details: https://thehackernews.com/2022/01/initial-access-broker-involved-in.html

Apple releases iOS 15.3 and macOS Monterey 12.2 with a fix for Safari's privacy-defeating bug as well as a patch for an actively exploited zero-day vulnerability.

Read details: https://thehackernews.com/2022/01/apple-releases-ios-and-ipados-updates.html

Hackers have been spotted using a new evasion technique for spreading the AsyncRAT Trojan as part of a sophisticated malware campaign.

https://thehackernews.com/2022/01/hackers-using-new-evasive-technique-to.html

Researchers warn of widespread malware campaigns spreading FluBot and TeaBot trojans to Android devices.

Read: https://thehackernews.com/2022/01/widespread-flubot-and-teabot-malware.html

Hackers compromise hundreds of WordPress websites to distribute Chaes banking trojan that hijacks victims' Chrome browsers with malicious extensions.

https://thehackernews.com/2022/01/chaes-banking-trojan-hijacks-chrome.html

QNAP warns of DeadBolt ransomware targeting Internet-facing network-attached storage (NAS) appliances and routers.

Read: https://thehackernews.com/2022/01/qnap-warns-of-deadbolt-ransomware.html

Microsoft fended off a record-breaking DDoS attack that hit Azure customers at a peak of 3.47 terabits per second, and two others that topped 2.4 terabits per second.

Read details: https://thehackernews.com/2022/01/microsoft-mitigated-record-breaking-347.html

North Korean hackers are back with a stealthier version of their KONNI RAT malware.

Read details: https://thehackernews.com/2022/01/north-korean-hackers-return-with.html