Beware of SCARLETEEL!

The latest cyber attack 🔒👨‍💻 targeting containerized 💻 environments to steal proprietary data and software but using crypto-miner malware to distract defenders.

Learn more: https://thehackernews.com/2023/03/hackers-exploit-containerized.html

China-based hackers Mustang Panda are using a new custom backdoor called MQsTTang in their latest social engineering campaign against European entities.

Learn more: https://thehackernews.com/2023/03/chinese-hackers-targeting-european.html

🚨 ALERT: Royal ransomware is back and targeting U.S. and international organizations!

It infiltrates networks, disables #antivirus software and steals data before deploying ransomware.

Learn how to protect yourself with CISA's latest advisory: https://thehackernews.com/2023/03/us-cybersecurity-agency-raises-alarm.html

Heads up, techies! Experts have uncovered 2 severe vulnerabilities in TPM 2.0 library that could impact billions of devices, including enterprise computers, IoT devices, and embedded systems.

Read: https://thehackernews.com/2023/03/new-flaws-in-tpm-20-library-pose-threat.html

A new ATM #malware strain dubbed FiXS has been observed targeting Mexican banks.

It is hidden inside a not-malicious-looking program, is vendor-agnostic, and is capable of infecting any teller machine that supports CEN/XFS.

Learn more: https://thehackernews.com/2023/03/new-fixs-atm-malware-targeting-mexican.html

Ready to bust the 9 most dangerous myths about file-based attacks?

Join our upcoming WEBINAR and become a hero in the fight against patient zero infections and zero-day security events!

Watch it here: https://thehacker.news/file-based-threats-webinar

⚡ Researchers have discovered new side-channel attacks on the CRYSTALS-Kyber encryption algorithm, which the U.S. government selected last year as a quantum-resistant algorithm.

Learn more: https://thehackernews.com/2023/03/experts-discover-flaw-in-us-govts.html

Researchers warn that "insufficient" forensic visibility into Google Cloud Platform could leave organizations blind to potential data exfiltration attacks.

Learn more: https://thehackernews.com/2023/03/experts-reveal-google-cloud-platforms.html

Suspected core members of the DoppelPaymer ransomware group, responsible for numerous large-scale cyberattacks, have been arrested by German and Ukrainian authorities with support of Dutch police & the FBI.

Read: https://thehackernews.com/2023/03/core-members-of-doppelpaymer-ransomware.html

🚨 Heads up, fashionistas!

If you're using the Shein shopping app, beware of a recent bug that has been capturing and transmitting your clipboard contents to a remote server.

Learn more: https://thehackernews.com/2023/03/sheins-android-app-caught-transmitting.html

Recent LastPass breach was caused by a simple mistake - an engineer's failure to update Plex software on his home computer.

Read: https://thehackernews.com/2023/03/lastpass-hack-engineers-failure-to.html

This is a stark reminder of the importance of keeping software up to date to prevent vulnerabilities from being exploited.

🚨 ALERT! If you're using MeetsApp or MeetUp on your Android device, you need to be aware of this!

Pakistani hackers are using these apps to target political and military personalities in India with CapraRAT backdoor.

Learn more: https://thehackernews.com/2023/03/transparent-tribe-hackers-distribute.html

Cybersecurity researchers have discovered a new information stealer, dubbed "SYS01stealer," targeting critical government infrastructure employees, manufacturing companies, and other sectors.

Learn more about it here: https://thehackernews.com/2023/03/sys01stealer-new-threat-using-facebook.html

Chinese cyberespionage hackers are targeting high-profile government entities in Southeast Asia with a new version of the Soul modular framework.

Learn more: https://thehackernews.com/2023/03/sharp-panda-using-new-soul-framework.html

CISA has added 3 more flaws to its Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation:

CVE-2022-35914 - Teclib GLPI RCE
CVE-2022-33891 - Apache Spark Command Injection
CVE-2022-28810 - Zoho ADSelfService Plus RCE

Read: https://thehackernews.com/2023/03/cisas-kev-catalog-updated-with-3-new.html

North Korea-linked Lazarus Group targeted a South Korean financial firm by exploiting a zero-day vulnerability in certificate software.

Learn more: https://thehackernews.com/2023/03/lazarus-group-exploits-zero-day.html

⚡ Severe flaws have been uncovered in the popular Jenkins Automation Server, affecting all versions prior to 2.319.2.

Dubbed "CorePlague," the flaws could lead to code execution attacks and potentially compromise your server completely.

https://thehackernews.com/2023/03/jenkins-security-alert-new-security.html

🚨Attention! Fortinet has released security patches for 15 new flaws, including a critical vulnerability (CVE-2023-25610) affecting FortiOS and FortiProxy that could allow attackers to take control of affected systems.

Details: https://thehackernews.com/2023/03/new-critical-flaw-in-fortios-and.html

8220 Gang hackers are now using a new weapon in their arsenal — ScrubCrypt Crypter — to carry out cryptojacking attacks by exploiting the Oracle WebLogic vulnerability.

Read details: https://thehackernews.com/2023/03/new-scrubcrypt-crypter-used-in.html

Iranian hacking group is posing as a U.S. think tank to target women involved in Middle East political affairs and human rights.

Learn more: https://thehackernews.com/2023/03/iranian-hackers-target-women-involved.html