Pegasus spyware was used to hack into the devices of dozens of pro-democracy activists in Thailand as part of an extensive espionage operation.

Read details: https://thehackernews.com/2022/07/pegasus-spyware-used-to-hack-devices-of.html

FirmwareBleed — A new study has highlighted an " industry failure" to adopting mitigations for "Speculative Execution" attacks released by AMD and Intel, posing a firmware supply chain threat.

Read details: https://thehackernews.com/2022/07/new-study-finds-most-enterprise-vendors.html

FBI has warned of cyber criminals spreading rogue cryptocurrency apps to defraud investors in the virtual asset space.

It is estimated that the illicit scheme netted 244 victims and caused $42.7 million in losses.

Read: https://thehackernews.com/2022/07/fbi-warns-of-fake-cryptocurrency-apps.html

Researchers uncover dozens of Android applications distributed through the Google Play Store that infect users' smartphones with the Joker, Facestealer, and Coper #malware families.

Read: https://thehackernews.com/2022/07/several-new-play-store-apps-spotted.html

Researchers demonstrated a new Air-Gap attack, dubbed "SATAn," wherein attackers can use SATA cable as a wireless antenna to transmit radio signals from isolated systems without wireless connectivity.

Details: https://thehackernews.com/2022/07/new-air-gap-attack-uses-sata-cable-as.html

Researchers uncover a new macOS spyware, dubbed "CloudMensis" that uses cloud storage as a C&C channel to exfiltrate documents, keystrokes, and screen captures from compromised #Apple devices.

Read details: https://thehackernews.com/2022/07/experts-uncover-new-cloudmensis-spyware.html

Russian state-sponsored APT29 hackers taking advantage of legitimate cloud services such as Google Drive and Dropbox to deliver malicious payloads to compromised systems.

Read details: https://thehackernews.com/2022/07/russian-hackers-using-dropbox-and.html

Russian hackers tricked pro-Ukrainian hacktivists into installing Android malware by distributing it as tools to launch DDoS attacks against Russian websites.

Details: https://thehackernews.com/2022/07/russian-hackers-tricked-ukrainians-with.html

Researchers uncover 6 new vulnerabilities in MiCODUS MV720 GPS tracker devices — used by over 1.5 million vehicles — which could lead to remote disruption of critical operations.

Read details: https://thehackernews.com/2022/07/unpatched-gps-tracker-bugs-could-let.html

A group of cybercriminals known as the "8220 Gang" has infected nearly 30,000 cloud infrastructure systems from Amazon, Azure, Google Cloud Platform, Aliyun, and QCloud with botnet malware to mine cryptocurrencies in the cloud.

Read details: https://thehackernews.com/2022/07/this-cloud-botnet-has-hijacked-30000.html

Security researchers warn of new ransomware programmes written in Rust, Luna and Black Basta targeting Windows, Linux and ESXi systems.

Read details: https://thehackernews.com/2022/07/new-rust-based-ransomware-family.html

Google introduces support for encrypted DNS queries in Android with DNS-over-HTTP/3 (DoH3), effectively preventing third parties from snooping on users' browsing activities.

Read: https://thehackernews.com/2022/07/google-adds-support-for-dns-over-http3.html

Cisco releases patches for 45 vulnerabilities affecting multiple products, most critical of which (CVE-2022-20857, CVE-2022-20858, CVE-2022-20861) affect Nexus Dashboard for data centers and cloud network infrastructures.

Read: https://thehackernews.com/2022/07/cisco-releases-patches-for-critical.html

Apple has released security patch updates for iOS, iPadOS, macOS, tvOS, and watchOS devices to fix dozens of newly discovered software vulnerabilities.

Read details: https://thehackernews.com/2022/07/apple-releases-security-patches-for-all.html

U.S. Department of Justice (DoJ) and FBI have seized about $500,000 in ransomware payments and cryptocurrencies from North Korean hackers.

Read details: https://thehackernews.com/2022/07/fbi-seizes-500000-ransomware-payments.html

Atlassian has rolled out security patches to address a new critical hard-coded credentials vulnerability (CVE-2022-26138) affecting the Confluence app for Confluence Server and Confluence Data Center.

Details: https://thehackernews.com/2022/07/atlassian-releases-patch-for-critical.html

A hacker group that recently updated its TTPs is now using EvilNum malware to attack European financial and investment firms, particularly those that support foreign exchanges, cryptocurrency, and decentralized financial operations.

Details: https://thehackernews.com/2022/07/hackers-use-evilnum-malware-to-target.html

A large Ukrainian software development company whose application is used by multiple state entities was attacked with a variant of the GoMet backdoor, possibly in an attempt to launch supply chain attacks.

Read details: https://thehackernews.com/2022/07/hackers-target-ukrainian-software.html

Researchers discover "⚡ Lightning Framework," a new Swiss Army knife-style Linux malware that has modular plugins and can install rootkits.

Read details: https://thehackernews.com/2022/07/new-linux-malware-framework-let.html

Spyware sold by Israeli company Candiru has been caught exploiting a recently discovered zero-day vulnerability in Google Chrome (CVE-2022-2294) to attack journalists.

Read details: https://thehackernews.com/2022/07/candiru-spyware-caught-exploiting.html