Researchers have discovered a new wave of mobile surveillance targeting the Uyghur community, part of an ongoing spying operation that has been active since at least 2015.

Read: https://thehackernews.com/2022/09/researchers-uncover-years-long-mobile.html

Microsoft warns that hackers are using malicious OAuth applications to gain control of Exchange email servers and spread spam to cloud tenants.

Read: https://thehackernews.com/2022/09/hackers-using-malicious-oauth-apps-to.html

Indian banks' customers are being targeted by a malicious campaign in which attackers infect their Android devices with a fake REWARD app to steal their personal data.

Read: https://thehackernews.com/2022/09/fake-indian-banking-rewards-apps.html

Void Balaur hacker-for-hire group has shifted its focus to target Russian businesses and political entities.

Read: https://thehackernews.com/2022/09/void-balaur-hackers-for-hire-group-now.html

CISA has added a recently disclosed critical vulnerability in Zoho ManageEngine to its Known Exploited Vulnerabilities (KEV) catalog due to evidence of an active attack.

Read: https://thehackernews.com/2022/09/cisa-warns-of-hackers-exploiting-recent.html

Researchers have identified a previously unknown APT hacking group, dubbed Metador, which has infiltrated telecommunications companies, universities, Internet service providers in the Middle East and Africa.

Read: https://thehackernews.com/2022/09/researchers-uncover-new-metador-apt.html

Sophos has warned of cyberattacks targeting a recently fixed critical RCE vulnerability (CVE-2022-3236) in its firewall product.

Read: https://thehackernews.com/2022/09/hackers-actively-exploiting-new-sophos.html

London police have arrested a 17-year-old Oxfordshire teenager on suspicion of hacking, possibly in connection with the recent high-profile hacking attacks on Uber and Rockstar Games.

Read: https://thehackernews.com/2022/09/london-police-arrested-17-year-old.html

Ukrainian authorities have arrested a hacking group that sold personal data from 30 million accounts belonging to citizens of #Ukraine and the European Union for a profit of $372,000.

Read: https://thehackernews.com/2022/09/ukraine-arrests-cybercrime-group-for.html

Cybercriminals behind the BlackCat ransomware attacks have been spotted fine-tuning their #malware arsenal to fly under the radar and expand their reach.

Read: https://thehackernews.com/2022/09/blackcat-ransomware-attackers-spotted.html

Researchers have identified at least three hacktivist groups working in support Russian interests, likely working with state-sponsored cyber threat actors.

Read: https://thehackernews.com/2022/09/researchers-identify-3-hacktivist.html

Cybercriminals behind the Optus data breach leaked 10,200 customer records in an attempt to force and extort $1 MILLION from the Australian telecom.

https://thehackernews.com/2022/09/hacker-behind-optus-breach-releases.html

After a few hours, however, the hacker apologized and said he had deleted the stolen data.

North Korea's Lazarus hackers are targeting macOS users by luring them with job offers on cryptocurrency exchanges.

Read: https://thehackernews.com/2022/09/north-koreas-lazarus-hackers-targeting.html

As many as 75 apps on Google Play and 10 on the Apple App Store, with a total of 13 million downloads, have been discovered to be involved in an ongoing ad fraud campaign.

Read: https://thehackernews.com/2022/09/experts-uncover-85-apps-with-13-million.html

Researchers warn of a new ongoing malicious campaign distributing NullMixer malware that steals victims' credentials, addresses, credit card data, cryptocurrencies, as well as Facebook and Amazon accounts.

Read: https://thehackernews.com/2022/09/new-nullmixer-malware-campaign-stealing.html

Ukrainian government has issued a warning that Russia is planning attacks on critical infrastructure facilities in the country and its allies.

Read: https://thehackernews.com/2022/09/ukraine-says-russia-planning-massive.html

WhatsApp for Android and iOS patches two critical remote code execution vulnerabilities that could have allowed attackers to remotely hack targeted devices.

Read: https://thehackernews.com/2022/09/critical-whatsapp-bugs-could-have-let.html

Facebook's parent company Meta has announced that it has taken steps to dismantle two covert political influence operations originating from China and Russia.

Read: https://thehackernews.com/2022/09/facebook-shuts-down-covert-political.html

Russian state-sponsored hackers have been found using a method of deploying malware that takes advantage of mouse movements in decoy Microsoft PowerPoint documents to execute code.

Read: https://thehackernews.com/2022/09/hackers-using-powerpoint-mouseover.html

Cybercriminals are using a tool called "Quantum Builder" sold on the Dark Web to generate malicious LNK, HTA, and PowerShell payloads to deliver "Agent Tesla" RAT malware to targeted systems.

Read: https://thehackernews.com/2022/09/cyber-criminals-using-quantum-builder.html