ExpressVPN is removing its India-based VPN servers in response to a new cybersecurity directive from India's Computer Emergency Response Team (CERT-In) that requires all VPN providers to store users' data for at least 5 years.

Read: https://thehackernews.com/2022/06/expressvpn-removes-servers-in-india.html

Researchers demonstrate R4IoT ransomware that exploits IoT devices to gain access and move laterally in an IT network and compromise the OT network.

Read details: https://thehackernews.com/2022/06/researchers-demonstrate-ransomware-for.html

An analysis of leaked chats from the notorious Conti ransomware group has now revealed that the syndicate has been working on a set of firmware-based attack techniques.

Read details: https://thehackernews.com/2022/06/conti-leaks-reveal-ransomware-gangs.html

Microsoft has blocked the hacking activities of previously undocumented Iran-linked Lebanese hackers targeting Israeli companies.

Read details: https://thehackernews.com/2022/06/microsoft-blocks-iran-linked-lebanese.html

Researchers have uncovered a critical unpatched RCE vulnerability (CVE-2022-26134) affecting Atlassian Confluence Server and Data Center products that is being actively exploited by hackers.

Read details: https://thehackernews.com/2022/06/hackers-exploiting-unpatched-critical.html

Researchers have uncovered JavaScript malware and variants behind a network of thousands of hacked websites powering the Parrot Traffic Direction System (TDS) revealed earlier this year.

Details: https://thehackernews.com/2022/06/researchers-uncover-malware-controlling.html

GitLab releases patch for a critical account takeover vulnerability (CVE-2022-1680) affecting all versions of Enterprise Edition from 11.10 before 14.9.5, all versions from 14.10 before 14.10.4, and all versions from 15.0 before 15.0.1.

Read: https://thehackernews.com/2022/06/gitlab-issues-security-patch-for.html

Atlassian has released a security patch that addresses a critical vulnerability (CVE-2022-26134) in Confluence Server and Data Center products that is being actively exploited by attackers.

Read details: https://thehackernews.com/2022/06/atlassian-releases-patch-for-confluence.html

Researchers discover a new state-sponsored attack that exploits the "Follina" vulnerability in Microsoft Office to target government entities in Europe and the United States.

Read details: https://thehackernews.com/2022/06/state-backed-hackers-exploit-microsoft.html

CISA has issued a warning about critical vulnerabilities in Illumina DNA Sequencing devices that could allow unauthenticated attackers to remotely take control of the affected product.

Read details: https://thehackernews.com/2022/06/cisa-warned-about-critical.html

Microsoft said it has taken legal action to stop spear-phishing campaigns associated with Iranian Bohrium hackers by taking over 41 domains used as command-and-control infrastructure.

Read details: https://thehackernews.com/2022/06/microsoft-seizes-41-domains-used-in.html

Two unpatched security vulnerabilities have been disclosed in the open-source U-Boot bootloader used by Linux-based embedded systems, such as ChromeOS, and ebook readers like the Amazon Kindle and Kobo eReader.

Read details: https://thehackernews.com/2022/06/unpatched-critical-flaws-disclosed-in-u.html

10 of the most prolific banking Trojans targeting a wide range of applications available on the Google Play Store and used by over a billion people in total.

Read details: https://thehackernews.com/2022/06/10-most-prolific-banking-trojans.html

Apple has introduced a "Rapid Security Response" feature in iOS16 and macOS Ventura that automatically installs security updates without requiring you to download & install a full OS update and reboot your system.

Details: https://thehackernews.com/2022/06/apples-new-feature-will-install.html

Researchers warn of a new spam campaign distributing SVCReady malware to target its victims.

Read details: https://thehackernews.com/2022/06/researchers-warn-of-spam-campaign.html

Cybercrime group Evil Corp shifts to LockBit ransomware in an attempt to get around sanctions imposed by the U.S. Treasury in December 2019.

Read details: https://thehackernews.com/2022/06/evil-corp-cybercrime-group-shifts-to.html

FBI seizes SSNDOB darknet marketplace for selling personal information such as credit card and Social Security numbers of about 24 million people, generating $19 million in revenue for its operators.

Details: https://thehackernews.com/2022/06/fbi-seizes-ssndob-id-theft-service-for.html

U.S. cybersecurity and intelligence agencies have warned that Chinese state-sponsored cyber actors have been exploiting vulnerabilities in networks to attack organizations in the private and public sectors since at least 2020.

Read details: https://thehackernews.com/2022/06/us-agencies-warn-about-chinese-hackers.html

Emotet botnet malware has been upgraded with a new module for stealing victims' credit card data stored in the Chrome web browser.

Read details: https://thehackernews.com/2022/06/new-emotet-variant-stealing-users.html

Researchers uncover a decade-long Chinese cyber espionage campaign targeting government, educational and telecommunications institutions, primarily in Southeast Asia and Australia.

Read: https://thehackernews.com/2022/06/a-decade-long-chinese-espionage.html