Yet another destructive data wiping malware, dubbed CaddyWiper has been spotted attacking networks in Ukraine amid the ongoing Russian military invasion.

Read details: https://thehackernews.com/2022/03/caddywiper-yet-another-data-wiping.html

Researchers at Intel471 spotted nearly 34 ransomware variants in hundreds of cyberattacks that occurred in the fourth quarter of 2021.

Read: https://thehackernews.com/2022/03/nearly-34-ransomware-variants-observed.html

Facebook's parent company, Meta, has been fined €17 million (nearly $18.6 million) for a series of data breaches that violated European Union's GDPR laws in the region.

Read details: https://thehackernews.com/2022/03/facebook-hit-with-186-million-gdpr-fine.html

Multiple high-severity vulnerabilities uncovered in widely used open-source ClickHouse OLAP Database Management System (DBMS) for BigData.

Read details: https://thehackernews.com/2022/03/multiple-flaws-uncovered-in-clickhouse.html

German government's cybersecurity agency warns users against the use of the Russian antivirus software Kaspersky.

Read: https://thehackernews.com/2022/03/german-government-warns-against-using.html

Kaspersky responded that the advice was given on "political grounds."

FBI and CISA warn that Russian state-sponsored hackers are exploiting misconfigured multi-factor authentication (MFA) protocols and vulnerabilities in the Windows Print Spooler for cyberattacks.

Read details: https://thehackernews.com/2022/03/fbi-cisa-warn-of-russian-hackers.html

A new unpatched RCE vulnerability in the dompdf PHP project affects HTML to PDF converters.

Read details: https://thehackernews.com/2022/03/unpatched-rce-bug-in-dompdf-project.html

A new infinite loop vulnerability (CVE-2022-0778) in OpenSSL could allow attackers to crash remote servers by passing a malformed certificate.

Read details: https://thehackernews.com/2022/03/new-infinite-loop-bug-in-openssl-could.html

A new "B1txor20" Linux botnet malware has been discovered that spreads via the Log4J vulnerability and uses DNS tunnels for covert C2 communications.

Read details: https://thehackernews.com/2022/03/new-b1txor20-linux-botnet-uses-dns.html

A new vulnerability (CVE-2022-0811) in the CRI-O engine, dubbed “cr8escape,” could allow attackers to escape Kubernetes containers and gain root access.

Read details: https://thehackernews.com/2022/03/new-vulnerability-in-cri-o-engine-lets.html

Ukrainian Secret Service has arrested a hacker who was helping Russian troops invade.

Read details: https://thehackernews.com/2022/03/ukraine-secret-service-arrests-hacker.html

A new report from Microsoft explains how TrickBot malware is leveraging hacked IoT devices serve proxies for its command-and-control infrastructure.

Read: https://thehackernews.com/2022/03/trickbot-malware-abusing-hacked-iot.html

Cybersecurity researchers from Avast have found that the wormable module of the DirtyMoe botnet has gained several new exploits that allow the malware to spread quickly to other computers.

Read details: https://thehackernews.com/2022/03/dirtymoe-botnet-gains-new-exploits-in.html

⚡ Developer of a popular NPM package has intentionally updated the library to wipe and replace data with a ❤️ heart emoji on all systems running it from Russia or Belarus to protest against the invasion of Ukraine.

Details: https://thehackernews.com/2022/03/popular-npm-package-updated-to-wipe.html

A new variant of the "Cyclops Blink" botnet malware is now targeting ASUS routers in an attempt to build an infrastructure for further cyberattacks on high-value targets.

Read details: https://thehackernews.com/2022/03/new-variant-of-russian-cyclops-blink.html

Cisco Talos researchers have found evidence that some cybercriminal affiliates of BlackMatter are now spreading BlackCat ransomware.

Details: https://thehackernews.com/2022/03/experts-find-some-affiliates-of.html

Google has uncovered a financially motivated "initial access broker" group that appears to be working with the Conti #ransomware gang.

Read details: https://thehackernews.com/2022/03/google-uncovers-initial-access-broker.html

⚡ Hackers have been spotted deploying a new rootkit targeting Oracle Solaris systems at Banks in an attempt to compromise the switching networks of ATMs (ATM) and perform unauthorized cash withdrawals.

Read: https://thehackernews.com/2022/03/hackers-target-bank-networks-with-new.html

Researchers uncover details of a hacking campaign by South Korean hacker group DarkHotel that targeted luxury hotels and resorts in Macau.

Read details: https://thehackernews.com/2022/03/south-korean-darkhotel-hackers-targeted.html

CryptoRom crypto scammers trick unsuspecting victims into installing fake apps by exploiting legitimate #iOS features like TestFlight and Web Clips.

Read details: https://thehackernews.com/2022/03/cryptorom-crypto-scam-abusing-iphone.html