ESXiArgs ransomware is spreading fast and has infected over 500 new hosts in France, Germany, the Netherlands, the UK, and Ukraine.
Learn more: https://thehackernews.com/2023/02/esxiargs-ransomware-hits-over-500-new.html
Learn more: https://thehackernews.com/2023/02/esxiargs-ransomware-hits-over-500-new.html
π20π₯7β‘3π2
Cybersecurity experts are π¨ cautioning of a new, previously unreported threat actor located in the Middle East that is targeting telecommunications service providers.
Read details: https://thehackernews.com/2023/02/new-threat-actor-wip26-targeting.html
Read details: https://thehackernews.com/2023/02/new-threat-actor-wip26-targeting.html
β‘17π9π€6
Cybercriminals are using Google ads to spread FatalRAT malware disguised as popular apps like Chrome, Firefox, Telegram, WhatsApp, LINE, Signal, and Skype to target Chinese-speaking individuals in Southeast and East Asia.
Read details: https://thehackernews.com/2023/02/hackers-using-google-ads-to-spread.html
Read details: https://thehackernews.com/2023/02/hackers-using-google-ads-to-spread.html
π29π9π₯8π€―7π€5π3
Heads up, developers! A popular npm package with 3.5 million weekly downloads has been found vulnerable to an account takeover attack.
Read details: https://thehackernews.com/2023/02/researchers-hijack-popular-npm-package.html
Read details: https://thehackernews.com/2023/02/researchers-hijack-popular-npm-package.html
π21π±10π9β‘5π3
SideWinder nation-state group has been attributed to cyber attacks against 61 entities related to government, military, law enforcement, banking, and other organizations in multiple countries.
Learn more: https://thehackernews.com/2023/02/researchers-link-sidewinder-group-to.html
Learn more: https://thehackernews.com/2023/02/researchers-link-sidewinder-group-to.html
π31π₯14β‘8π€―4π2π1
π¨ ALERT: Cybercriminals are using a new version of OxtaRAT backdoor to target Armenian entities.
Read details: https://thehackernews.com/2023/02/armenian-entities-hit-by-new-version-of.html
Read details: https://thehackernews.com/2023/02/armenian-entities-hit-by-new-version-of.html
π17β‘15π±6π€5π₯3π3π2π€―1
RambleOn: A new Android malware targeting South Korean journalists has been discovered.
Learn more: https://thehackernews.com/2023/02/experts-warn-of-rambleon-android.html
Learn more: https://thehackernews.com/2023/02/experts-warn-of-rambleon-android.html
π20π€10π6π€―6
π¨ GoDaddy, the web hosting services provider, reveals a multi-year security breach that allowed unknown actors to install malware and siphon source code related to some of its services.
Learn more: https://thehackernews.com/2023/02/godaddy-discloses-multi-year-security.html
Learn more: https://thehackernews.com/2023/02/godaddy-discloses-multi-year-security.html
π46π23π€―22β‘10π₯7π±2
ALERT: Twitter is limiting the use of SMS-based two-factor authentication to its Blue subscribers only.
If you're not a Blue subscriber, you'll need to switch to other methods, an authenticator app or a hardware security key, by March 20, 2023.
Read: https://thehackernews.com/2023/02/twitter-limits-sms-based-2-factor.html
If you're not a Blue subscriber, you'll need to switch to other methods, an authenticator app or a hardware security key, by March 20, 2023.
Read: https://thehackernews.com/2023/02/twitter-limits-sms-based-2-factor.html
π€74π58π€―40π22π±14π9π₯7β‘5
The Hacker News pinned Β«Hey π Hacker News Telegram community, We are excited to invite you to register for 3 upcoming CYBERSECURITY WEBINARS that we believe will be incredibly informative and valuable. 1οΈβ£ MythBusting Special: 9 Myths about File-based Threats Do you have misconceptionsβ¦Β»
An employee at the popular cryptocurrency exchange platform, Coinbase, recently fell victim to a cyber attack scam, leading to a small amount of employee data being compromised.
Learn more: https://thehackernews.com/2023/02/coinbase-employee-falls-for-sms-scam-in.html
Learn more: https://thehackernews.com/2023/02/coinbase-employee-falls-for-sms-scam-in.html
π18π10π9β‘6
ALERT: SideCopy, a Pakistani-origin threat group, is using an updated version of the backdoor ReverseRAT to target Indian government entities.
Learn more: https://thehackernews.com/2023/02/researchers-warn-of-reverserat-backdoor.html
Learn more: https://thehackernews.com/2023/02/researchers-warn-of-reverserat-backdoor.html
π19π10π±8π€5β‘2
Cyber espionage group, Earth Kitsune, is up to their old tricks again.
This time they've hacked a pro-North Korean organization's website and distributed their latest backdoor, WhiskerSpy, to unsuspecting visitors.
https://thehackernews.com/2023/02/north-korean-cyber-espionage-group.html
This time they've hacked a pro-North Korean organization's website and distributed their latest backdoor, WhiskerSpy, to unsuspecting visitors.
https://thehackernews.com/2023/02/north-korean-cyber-espionage-group.html
π17π€13π₯9β‘2π2
Fortinet has released security updates to address 40 vulnerabilities in its software, including FortiWeb, FortiOS, FortiNAC & FortiProxy.
Details: https://thehackernews.com/2023/02/fortinet-issues-patches-for-40-flaws.html
Details: https://thehackernews.com/2023/02/fortinet-issues-patches-for-40-flaws.html
π±22π11π4π€3
Samsung introduces Message Guard, a new feature to safeguard users from zero-click malware and spyware via attacks.
Learn more: https://thehackernews.com/2023/02/samsung-introduces-new-feature-to.html
Learn more: https://thehackernews.com/2023/02/samsung-introduces-new-feature-to.html
π₯22π€―10π9β‘2π2π±2π1π€1
A new information stealer called Stealc is being advertised on the dark web, gaining traction among criminal groups.
Learn more: https://thehackernews.com/2023/02/researchers-discover-dozens-samples-of.html
Learn more: https://thehackernews.com/2023/02/researchers-discover-dozens-samples-of.html
π20π16β‘4π±2π€1
Researchers have unveiled a new botnet malware, dubbed "MyloBot," that is spreading rapidly and has already compromised thousands of systems in several countries, including India, the U.S., Indonesia, and Iran.
Read: https://thehackernews.com/2023/02/mylobot-botnet-spreading-rapidly.html
Read: https://thehackernews.com/2023/02/mylobot-botnet-spreading-rapidly.html
π23π±6π€1
Urgent security update for VMware Carbon Black App Control users!
A critical injection vulnerability (CVE-2023-20858) has been discovered that could allow attackers to access the underlying server operating system.
Details: https://thehackernews.com/2023/02/vmware-patches-critical-vulnerability.html
A critical injection vulnerability (CVE-2023-20858) has been discovered that could allow attackers to access the underlying server operating system.
Details: https://thehackernews.com/2023/02/vmware-patches-critical-vulnerability.html
π15π±14π5π₯4β‘3
CISA has updated its Known Exploited Vulnerabilities catalog with three new vulnerabilities that are currently being exploited β IBM Aspera Faspex (CVE-2022-47986) and Mitel MiVoice Connect (CVE-2022-41223 and CVE-2022-40765).
Read more: https://thehackernews.com/2023/02/us-cybersecurity-agency-cisa-adds-three.html
Read more: https://thehackernews.com/2023/02/us-cybersecurity-agency-cisa-adds-three.html
β‘15π8π₯4π2
Hackers are adopting an open source C2 framework called Havoc as an alternative to well-known toolkits like Cobalt Strike and Sliver. Zscaler reports that it was utilized in an attack on an unnamed government organization.
Learn more: https://thehackernews.com/2023/02/threat-actors-adopt-havoc-framework-for.html
Learn more: https://thehackernews.com/2023/02/threat-actors-adopt-havoc-framework-for.html
π₯22π14π2π€2β‘1