🚨 PATCH TUESDAY!

Microsoft has released security updates for 97 flaws, including one that's being actively exploited in ransomware attacks.

https://thehackernews.com/2023/04/urgent-microsoft-issues-patches-for-97.html

Other vendors such as Adobe, Apple, Cisco, Google, Linux, Firefox & more have also released patches recently.

🕵️‍♂️ OpenAI launches bug bounty program!

Rewards range from $200 to $20,000 for discovering vulnerabilities in ChatGPT and related systems.

Learn more: https://thehackernews.com/2023/04/chatgpt-security-openais-bug-bounty.html

New Python-based hacking tool "Legion" found being marketed on Telegram! Legion targets a wide range of web services, including email providers, cloud services, server management systems, databases, and payment platforms.

Learn more: https://thehackernews.com/2023/04/new-python-based-legion-hacking-tool.html

Pakistan-based Transparent Tribe hacker group is targeting India's education sector with Crimson RAT, a malware that can exfiltrate data, capture screenshots, and steal credentials.

Read details: https://thehackernews.com/2023/04/pakistan-based-transparent-tribe.html

Lazarus hacker group shifts focus, evolving tools & tactics in operation DeathNote! Now targeting automotive, academic, and defense sectors globally.

Learn more: https://thehackernews.com/2023/04/lazarus-hacker-group-evolves-tactics.html

🔥 WhatsApp introduces a new "Device Verification" feature designed to prevent account takeover attacks.

Learn more: https://thehackernews.com/2023/04/whatsapp-introduces-new-device.html

🔐 Meet the rising cybercriminal gang, "Read The Manual" Locker! Operating as a private RaaS provider, this group has a business-like set-up & sophisticated tactics.

Learn about their unique approach to #ransomware in the latest report: https://thehackernews.com/2023/04/rtm-locker-emerging-cybercrime-group.html

Google launches new initiatives to improve vulnerability management & increase transparency in addressing security threats!

It's forming:
✅ Hacking Policy Council
✅ Exploitation Transparency
✅ Security Research Legal Defense Fund

Read: https://thehackernews.com/2023/04/google-launches-new-cybersecurity.html

U.S. CISA adds two new vulnerabilities to its KEV catalog, warning of active exploitation of Android and Novi Survey flaws.

Malicious apps, signed by China's Pinduoduo, discovered exploiting these Android vulnerability to pilfer user data.

Details: https://thehackernews.com/2023/04/severe-android-and-novi-survey.html

🚨 ALERT: Kodi confirms data breach!

Hackers steal MyBB forum database containing user data and private messages. Over 400K user records were attempted to be sold on the now-defunct BreachForums.

Read details: https://thehackernews.com/2023/04/kodi-confirms-data-breach-400k-user.html

🚨 Heads up! New Zaraza bot credential-stealing malware is on the loose! Spotted on a Russian Telegram hacker channel, it targets 38 web browsers and steals login credentials for bank accounts, crypto wallets, and more.

Read details: https://thehackernews.com/2023/04/new-zaraza-bot-credential-stealer-sold.html

🔐 URGENT: Google releases out-of-band updates for a new actively exploited zero-day vulnerability (CVE-2023-2033) in Chrome browser.

Read details: https://thehackernews.com/2023/04/google-releases-urgent-chrome-update-to.html

First one addressed this year! Update to version 112.0.5615.121 ASAP!

Chinese nation-state group HOODOO targets Taiwanese media organization using open-source red teaming tool GC2, exploiting Google's infrastructure.

Read details: https://thehackernews.com/2023/04/google-uncovers-apt41s-use-of-open.html

Cybercriminal syndicates FIN7 and ex-Conti members have teamed up to launch Domino malware attacks, which are being used to deliver information stealers and backdoors like Cobalt Strike.

Read details: https://thehackernews.com/2023/04/fin7-and-ex-conti-cybercrime-gangs-join.html

Researchers have uncovered a new QBot malware campaign that is using hijacked business correspondence to lure unsuspecting victims into installing the banking trojan.

Learn more about this: https://thehackernews.com/2023/04/new-qbot-banking-trojan-campaign.html

The latest campaign has targeted users in several countries.

Israeli spyware vendor QuaDream is reportedly shutting down its operations after its REIGN hacking toolset was exposed by Citizen Lab and Microsoft.

Read details: https://thehackernews.com/2023/04/israeli-spyware-vendor-quadream-to-shut.html

A new LockBit ransomware operation has surfaced and this time, it's targeting Apple's macOS devices.

Read details: https://thehackernews.com/2023/04/lockbit-ransomware-now-targeting-apple.html

In a new twist to malware distribution, threat actors are using YouTube videos to distribute the Aurora information stealer via "highly evasive" in2al5d p3in4er loader.

Read on to learn more: https://thehackernews.com/2023/04/youtube-videos-distributing-aurora.html

New malware strain, Goldoson, has been detected in over 60 Android apps with more than 100 million downloads from the Google Play Store.

Read details: https://thehackernews.com/2023/04/goldoson-android-malware-infects-over.html

Iranian MuddyWater hacker group has been found using the legitimate SimpleHelp remote support software to maintain persistence on victim devices.

Read details: https://thehackernews.com/2023/04/iranian-hackers-using-simplehelp-remote.html