The North Korean-backed Lazarus hacker group has been observed exploiting the Log4Shell vulnerability in VMware Horizon servers to deploy the NukeSped implant ( aka Manuscrypt) against targets in its southern counterpart.

Read: https://thehackernews.com/2022/05/hackers-exploiting-vmware-horizon-to.html

Researchers discover a new Rust Crate Registry's software supply chain attack targeting cloud continuous integration (CI) pipelines with malware written in the Go language.

Read: https://thehackernews.com/2022/05/researchers-uncover-rust-supply-chain.html

Google researchers have pointed fingers at spyware company Cytrox for developing exploits for 5 zero-day vulnerabilities, including 4 in Chrome and 1 in Android, to remotely hack targeted Android devices.

Read: https://thehackernews.com/2022/05/cytroxs-predator-spyware-target-android.htm

Microsoft has discovered that the activity of the Linux botnet malware known as "XorDdos" has increased by 254% in the last six months.

Read: https://thehackernews.com/2022/05/microsoft-warns-rise-in-xorddos-malware.html

Cisco releases security patches for a new vulnerability in its IOS XR software that has been exploited in real-world attacks to access Redis instances.

Read details — https://thehackernews.com/2022/05/cisco-issues-patches-for-new-ios-xr.html

Researchers have found a backdoor in multiple versions of a WordPress plugin called School Management Pro that gives attackers complete control over websites that use it.

Read: https://thehackernews.com/2022/05/researchers-find-backdoor-in-school.html

Chinese "Twisted Panda" APT hacking group using sanctions-related baits to hack and spy on Russian defense institutes.

Read: https://thehackernews.com/2022/05/chinese-twisted-panda-hackers-caught.html

Researcher claims to have discovered an unpatched vulnerability in PayPal that could allow attackers to trick victims into unknowingly complete attacker-directed transactions with a single click.

Details and Demo: https://thehackernews.com/2022/05/paypal-pays-hacker-200000-for.html

***Story has been rectified.

Researchers reveal more details about the Fronton IoT botnet, finding that it is much more powerful than previously thought and capable of launching mass disinformation campaigns on social media platforms.

Read: https://thehackernews.com/2022/05/fronton-russian-iot-botnet-designed-to.html

Hackers behind web skimming campaigns are leveraging malicious JavaScript code that mimics Google Analytics and Meta Pixel scripts in an attempt to sidestep detection.

Read: https://thehackernews.com/2022/05/microsoft-warns-of-web-skimmers.html

Conti ransomware gang has shut down its infrastructure in favor of migrating its criminal activities to smaller cybercrime groups.

Read: https://thehackernews.com/2022/05/conti-ransomware-gang-shut-down-after.html

Researchers have uncovered the latest version of Chaos ransomware builder, dubbed "Yashma," discovered in the wild.

Read details: https://thehackernews.com/2022/05/new-chaos-ransomware-builder-variant.html

Two trojanized Python and PHP packages, "ctx" and "phpass," have been uncovered in another instance of a software supply chain attack aimed at stealing AWS credentials.

Read details: https://thehackernews.com/2022/05/pypi-package-ctx-and-php-library-phpass.html

A Google security researcher has discovered a new set of vulnerabilities in Zoom video conferencing #software that could allow attackers to hack into victims' systems simply by sending them malicious messages over the XMPP protocol.

Read: https://thehackernews.com/2022/05/new-zoom-flaws-could-let-attackers-hack.html

Researchers have discovered a new cyberattack campaign targeting Russian government entities with at least four separate spear-phishing campaigns in an attempt to implant remote access Trojans.

Read: https://thehackernews.com/2022/05/researchers-find-new-malware-attacks.html

Find out how hackers can use "account pre-hijacking attacks" to gain unauthorized access to your online accounts even before you create them.

Read: https://thehackernews.com/2022/05/learn-how-hackers-can-hijack-your.html

Researchers have developed a new system called "Lumos" that allows users to detect hidden cameras and other IoT devices in a room and view their presence using augmented reality.

Read: https://thehackernews.com/2022/05/lumos-system-can-find-hidden-cameras.html

Interpol has arrested the leader of the SilverTerrier cybercrime syndicate, which was responsible for mass phishing attacks and Business Email Compromise (BEC) schemes against thousands of companies and individuals.

Read details: https://thehackernews.com/2022/05/interpol-arrest-leader-of-silverterrier.html

Twitter has been fined $150 million for misusing users' private data for advertising without their consent, which the company had collected for the purpose of 2-factor authentication.

Read details: https://thehackernews.com/2022/05/twitter-fined-150-million-for-misusing.htm

Tails OS maintainers advise users not to use Tor browser until two critical Firefox vulnerabilities (CVE-2022-1802 and CVE-2022-1529) are fixed with the release of version 5.1 on May 31.

Read details: https://thehackernews.com/2022/05/tails-os-users-advised-not-to-use-tor.html