Hackers behind the Cuba ransomware attacks are using a new remote access trojan called ROMCOM RAT on compromised systems.

Read details: https://thehackernews.com/2022/08/hackers-behind-cuba-ransomware-attacks.html

Cisco confirmed that it was hacked by the Yanluowang ransomware gang after the hackers gained access to an employee's personal Google account, which contained all the credentials synced by the victim's browser.

Read: https://thehackernews.com/2022/08/cisco-confirms-its-been-hacked-by.html

A trio of offshoots of Conti cybercrime gang have resorted to "BazarCall" phishing attacks as an initial entry point.

Read details: https://thehackernews.com/2022/08/conti-cybercrime-cartel-using-bazarcall.html

Researchers warn of mass exploitation of the RCE vulnerability in Zimbra (CVE-2022-27925 and CVE-2022-37042), which allows attackers to gain unauthenticated remote code execution on targeted email servers.

Read details: https://thehackernews.com/2022/08/researchers-warn-of-ongoing-mass.html

Cisco releases patches for a high-severity vulnerability affecting ASA and Firepower solutions that could allow an unauthenticated, remote attacker to retrieve an RSA private key.

Read details: https://thehackernews.com/2022/08/cisco-patches-high-severity.html

Meta is testing end-to-end encryption on the Facebook Messenger platform and a new encrypted backup feature that lets users securely restore chats to a new device.

Read details: https://thehackernews.com/2022/08/facebook-testing-default-end-to-end.html

U.S. State Department on Thursday announced a $10 million reward for information about five cybercriminals linked to the Conti ransomware group.

Read details: https://thehackernews.com/2022/08/us-government-offers-10-million-reward.html

Researchers discover vulnerabilities in Xiaomi's mobile payment mechanism affecting smartphone devices powered by MediaTek chips.

Read details: https://thehackernews.com/2022/08/xiaomi-phones-with-mediatek-chips-found.html

Researchers have discovered new UEFI Secure Boot bypass vulnerabilities affecting 3 Microsoft-signed boot loaders that could allow attackers to modify the OS on load, install backdoors, and disable security controls.

Read: https://thehackernews.com/2022/08/researchers-uncover-uefi-secure-boot.html

Researchers have uncovered a new malware campaign in which Chinese "Lucky Mouse" hackers backdoor the chat app MiMi to compromise Windows, Linux, and macOS systems.

Read details: https://thehackernews.com/2022/08/chinese-hackers-backdoored-mimi-chat.html

A developer of Tornado Cash has been arrested in the Netherlands on suspicion of concealing criminal financial flows and facilitating money laundering, just days after the U.S. sanctioned the decentralized cryptocurrency mixing service.

Details: https://thehackernews.com/2022/08/tornado-cash-developer-arrested-after.html

Researchers discover a new Python package distributed via the PyPI repository that drops fileless crypto-mining malware onto Linux systems.

Read details: https://thehackernews.com/2022/08/newly-uncovered-pypi-package-drops.html

Researchers discover a new variant of SOVA Android banking trojan with upgraded capabilities i.e. intercepting two-factor authentication codes, stealing cookies & data, taking screenshots, and preventing it from being removed by its victims.

https://thehackernews.com/2022/08/sova-android-banking-trojan-returns-new.html

Russian state-sponsored actors continue to attack Ukrainian entities with information-stealing malware in what appears to be a cyber espionage campaign.

Read details: https://thehackernews.com/2022/08/russian-state-hackers-continue-to.html

Microsoft has taken action to disrupt phishing attacks from SEABORGIUM, a "highly persistent threat actor" whose goals closely align with the interests of the Russian state.

Read details: https://thehackernews.com/2022/08/microsoft-warns-about-phishing-attacks.html

Researchers have developed a novel attack technique, dubbed ‘Evil PLC,’ that weaponizes PLCs to gain an initial foothold in technical workplaces and penetrate operational technology networks.

Read details: https://thehackernews.com/2022/08/new-evil-plc-attack-weaponizes-plcs-to.html

Researchers have uncovered details of the ÆPIC and SQUIP vulnerabilities in Intel and AMD processors that allow attackers to obtain encryption keys and other secret information.

Read: https://thehackernews.com/2022/08/pic-and-squip-vulnerabilities-found-in.html

North Korea-backed Lazarus Group has been observed attacking job seekers with #macOS malware that can run on Apple Macs with Intel and M1 chipsets.

Read details: https://thehackernews.com/2022/08/north-korea-hackers-spotted-targeting.html

Nearly 1.31 million users have been targeted by malicious or unwanted web browser extensions at least once during this year.

Read details: https://thehackernews.com/2022/08/malicious-browser-extensions-targeted.html

RubyGems, the official Ruby package manager, now requires popular package maintainers to use multi-factor authentication (MFA).

Read: https://thehackernews.com/2022/08/rubygems-makes-multi-factor.html