SideWinder nation-state group has been attributed to cyber attacks against 61 entities related to government, military, law enforcement, banking, and other organizations in multiple countries.
Learn more: https://thehackernews.com/2023/02/researchers-link-sidewinder-group-to.html
Learn more: https://thehackernews.com/2023/02/researchers-link-sidewinder-group-to.html
π31π₯14β‘8π€―4π2π1
π¨ ALERT: Cybercriminals are using a new version of OxtaRAT backdoor to target Armenian entities.
Read details: https://thehackernews.com/2023/02/armenian-entities-hit-by-new-version-of.html
Read details: https://thehackernews.com/2023/02/armenian-entities-hit-by-new-version-of.html
π17β‘15π±6π€5π₯3π3π2π€―1
RambleOn: A new Android malware targeting South Korean journalists has been discovered.
Learn more: https://thehackernews.com/2023/02/experts-warn-of-rambleon-android.html
Learn more: https://thehackernews.com/2023/02/experts-warn-of-rambleon-android.html
π20π€10π6π€―6
π¨ GoDaddy, the web hosting services provider, reveals a multi-year security breach that allowed unknown actors to install malware and siphon source code related to some of its services.
Learn more: https://thehackernews.com/2023/02/godaddy-discloses-multi-year-security.html
Learn more: https://thehackernews.com/2023/02/godaddy-discloses-multi-year-security.html
π46π23π€―22β‘10π₯7π±2
ALERT: Twitter is limiting the use of SMS-based two-factor authentication to its Blue subscribers only.
If you're not a Blue subscriber, you'll need to switch to other methods, an authenticator app or a hardware security key, by March 20, 2023.
Read: https://thehackernews.com/2023/02/twitter-limits-sms-based-2-factor.html
If you're not a Blue subscriber, you'll need to switch to other methods, an authenticator app or a hardware security key, by March 20, 2023.
Read: https://thehackernews.com/2023/02/twitter-limits-sms-based-2-factor.html
π€74π58π€―40π22π±14π9π₯7β‘5
The Hacker News pinned Β«Hey π Hacker News Telegram community, We are excited to invite you to register for 3 upcoming CYBERSECURITY WEBINARS that we believe will be incredibly informative and valuable. 1οΈβ£ MythBusting Special: 9 Myths about File-based Threats Do you have misconceptionsβ¦Β»
An employee at the popular cryptocurrency exchange platform, Coinbase, recently fell victim to a cyber attack scam, leading to a small amount of employee data being compromised.
Learn more: https://thehackernews.com/2023/02/coinbase-employee-falls-for-sms-scam-in.html
Learn more: https://thehackernews.com/2023/02/coinbase-employee-falls-for-sms-scam-in.html
π18π10π9β‘6
ALERT: SideCopy, a Pakistani-origin threat group, is using an updated version of the backdoor ReverseRAT to target Indian government entities.
Learn more: https://thehackernews.com/2023/02/researchers-warn-of-reverserat-backdoor.html
Learn more: https://thehackernews.com/2023/02/researchers-warn-of-reverserat-backdoor.html
π19π10π±8π€5β‘2
Cyber espionage group, Earth Kitsune, is up to their old tricks again.
This time they've hacked a pro-North Korean organization's website and distributed their latest backdoor, WhiskerSpy, to unsuspecting visitors.
https://thehackernews.com/2023/02/north-korean-cyber-espionage-group.html
This time they've hacked a pro-North Korean organization's website and distributed their latest backdoor, WhiskerSpy, to unsuspecting visitors.
https://thehackernews.com/2023/02/north-korean-cyber-espionage-group.html
π17π€13π₯9β‘2π2
Fortinet has released security updates to address 40 vulnerabilities in its software, including FortiWeb, FortiOS, FortiNAC & FortiProxy.
Details: https://thehackernews.com/2023/02/fortinet-issues-patches-for-40-flaws.html
Details: https://thehackernews.com/2023/02/fortinet-issues-patches-for-40-flaws.html
π±22π11π4π€3
Samsung introduces Message Guard, a new feature to safeguard users from zero-click malware and spyware via attacks.
Learn more: https://thehackernews.com/2023/02/samsung-introduces-new-feature-to.html
Learn more: https://thehackernews.com/2023/02/samsung-introduces-new-feature-to.html
π₯22π€―10π9β‘2π2π±2π1π€1
A new information stealer called Stealc is being advertised on the dark web, gaining traction among criminal groups.
Learn more: https://thehackernews.com/2023/02/researchers-discover-dozens-samples-of.html
Learn more: https://thehackernews.com/2023/02/researchers-discover-dozens-samples-of.html
π20π16β‘4π±2π€1
Researchers have unveiled a new botnet malware, dubbed "MyloBot," that is spreading rapidly and has already compromised thousands of systems in several countries, including India, the U.S., Indonesia, and Iran.
Read: https://thehackernews.com/2023/02/mylobot-botnet-spreading-rapidly.html
Read: https://thehackernews.com/2023/02/mylobot-botnet-spreading-rapidly.html
π23π±6π€1
Urgent security update for VMware Carbon Black App Control users!
A critical injection vulnerability (CVE-2023-20858) has been discovered that could allow attackers to access the underlying server operating system.
Details: https://thehackernews.com/2023/02/vmware-patches-critical-vulnerability.html
A critical injection vulnerability (CVE-2023-20858) has been discovered that could allow attackers to access the underlying server operating system.
Details: https://thehackernews.com/2023/02/vmware-patches-critical-vulnerability.html
π15π±14π5π₯4β‘3
CISA has updated its Known Exploited Vulnerabilities catalog with three new vulnerabilities that are currently being exploited β IBM Aspera Faspex (CVE-2022-47986) and Mitel MiVoice Connect (CVE-2022-41223 and CVE-2022-40765).
Read more: https://thehackernews.com/2023/02/us-cybersecurity-agency-cisa-adds-three.html
Read more: https://thehackernews.com/2023/02/us-cybersecurity-agency-cisa-adds-three.html
β‘15π8π₯4π2
Hackers are adopting an open source C2 framework called Havoc as an alternative to well-known toolkits like Cobalt Strike and Sliver. Zscaler reports that it was utilized in an attack on an unnamed government organization.
Learn more: https://thehackernews.com/2023/02/threat-actors-adopt-havoc-framework-for.html
Learn more: https://thehackernews.com/2023/02/threat-actors-adopt-havoc-framework-for.html
π₯22π14π2π€2β‘1
A new threat actor called "Hydrochasma" is suspected of carrying out an espionage campaign targeting shipping companies and medical laboratories in Asia.
Learn more: https://thehackernews.com/2023/02/hydrochasma-new-threat-actor-targets.html
Learn more: https://thehackernews.com/2023/02/hydrochasma-new-threat-actor-targets.html
π₯14π9π5β‘2π€2
Open Source ecosystem under attack again! Over 15,000 spam packages have flooded the NPM repository to distribute phishing links.
Learn more: https://thehackernews.com/2023/02/attackers-flood-npm-repository-with.html
Learn more: https://thehackernews.com/2023/02/attackers-flood-npm-repository-with.html
π₯21π14π€5β‘4π±4
β οΈ Attention! Apple has announced three new vulnerabilities impacting iOS, iPadOS, and macOS devices.
Read: https://thehackernews.com/2023/02/apple-warns-of-3-new-vulnerabilities.html
CVE-2023-23520 could let attackers read arbitrary files as root; and CVE-2023-23530 and CVE-2023-23531 could be used to achieve code execution.
Read: https://thehackernews.com/2023/02/apple-warns-of-3-new-vulnerabilities.html
CVE-2023-23520 could let attackers read arbitrary files as root; and CVE-2023-23530 and CVE-2023-23531 could be used to achieve code execution.
π₯65π€―20π19π17π€9π±7β‘6π3
Python developers beware! Cybersecurity researchers have found 41 malicious packages mimicking popular libraries such as HTTP, AIOHTTP, requests, urllib, and urllib3.
Learn more: https://thehackernews.com/2023/02/python-developers-warned-of-trojanized.html
Learn more: https://thehackernews.com/2023/02/python-developers-warned-of-trojanized.html
π€―48π15π₯9π€7π±5β‘3π3