🚨 Alert! Anatsa banking trojan apps, distributed via Google Play Store, have infected 30,000+ users in the U.S., U.K., Germany, and Switzerland.

Read: https://thehackernews.com/2023/06/anatsa-banking-trojan-targeting-users.html

Exploiting Android accessibility services API, it bypasses fraud controls to hijack transactions.

⚡The takedown of EncroChat, the infamous encrypted phone network used by organized crime, results in 6,558 global arrests and the recovery of €900 million in illicit funds.

Read details: https://thehackernews.com/2023/06/encrochat-bust-leads-to-6558-criminals.html

🔒 Brace yourself for the new Mockingjay process injection technique! This advanced method enables hackers to execute malicious code undetected, bypassing traditional detection mechanisms.

Read details: https://thehackernews.com/2023/06/new-mockingjay-process-injection.html

Asset discovery alone won't cut it in the battle against cyber threats! Uncover the weaknesses and vulnerabilities lurking in your attack surface. Attack Surface Management (ASM) integrates vulnerability prioritization and remediation.

https://thehackernews.com/2023/06/beyond-asset-discovery-how-attack.html

New npm attack discovered! Cybersecurity researchers find an ongoing campaign with a unique execution chain.

Discover details here: https://thehackernews.com/2023/06/new-ongoing-campaign-targets-npm.html

Critical SQL injection vulnerabilities found in Gentoo Soko! Exploiting these flaws could lead to remote code execution (RCE) on affected systems.

Discover the details: https://thehackernews.com/2023/06/critical-sql-injection-flaws-expose.html

A new ransomware threat called 8Base has emerged from the shadows with a "massive spike in activity."

Find out how this group utilizes encryption and 'name-and-shame' techniques to compel victims to pay ransoms.

Details: https://thehackernews.com/2023/06/8base-ransomware-spikes-in-activity.html

CryptosLabs scam ring exposed, amassing €480 million in illegal profits! French-speaking individuals in France, Belgium, and Luxembourg targeted since 2018.

Learn about their tactics: https://thehackernews.com/2023/06/cryptoslabs-scam-ring-targets-french.html

Your drone may be vulnerable! New research reveals electromagnetic fault injection attacks can gain control of drones during firmware updates.

Read: https://thehackernews.com/2023/06/alert-new-electromagnetic-attacks-on.html

🔒 Discover the newly unearthed Windows-based information stealer, ThirdEye! This malware operates stealthily, harvesting sensitive data from infected hosts.

Read more: https://thehackernews.com/2023/06/newly-uncovered-thirdeye-windows-based.html

🚨 A critical flaw in miniOrange's Social Login and Register plugin for WordPress has been exposed, allowing hackers to log in as any user.

Read details: https://thehackernews.com/2023/06/critical-security-flaw-in-social-login.html

Update to version 7.6.5 or later NOW to protect your site!

LetMeSpy, an Android phone monitoring app, suffers a major security breach, compromising sensitive data of thousands. Personal information, messages, and more accessed by unauthorized third-party.

Learn more: https://thehackernews.com/2023/06/android-spy-app-letmespy-suffers-major.html

Andariel, affiliated with North Korea's Lazarus Group, strikes with EarlyRat #malware exploiting Log4j vulnerability.

Learn how they compromise systems: https://thehackernews.com/2023/06/north-korean-hacker-group-andariel.html

⚠️ Attention Android users!

Fluhorse has evolved and become more sophisticated. It conceals its encrypted payload and listens to your SMS messages.

Read details: https://thehackernews.com/2023/06/fluhorse-flutter-based-android-malware.html

Iranian state-sponsored group, MuddyWater, deploys new PhonyC2 framework in targeted cyber attacks. New findings reveal connections to Technion breach and ongoing PaperCut server exploitation.

Details: https://thehackernews.com/2023/06/from-muddyc3-to-phonyc2-irans.html

⚡ Attention all software developers and programmers! MITRE's Top 25 list of dangerous software weaknesses for 2023 is here.

Discover the crucial mistakes to avoid early in your product development process:

https://thehackernews.com/2023/06/mitre-unveils-top-25-most-dangerous.html

Build secure software from the ground up!

Beware of proxyjacking! Vulnerable SSH servers are under attack in a financially motivated campaign, covertly ensnaring them into a proxy network.

Read details: https://thehackernews.com/2023/06/cybercriminals-hijacking-vulnerable-ssh.html

Discover how threat actors exploit unused bandwidth to run services and monetize it.

💪 WhatsApp rolls out an upgrade to its proxy feature! Share more than just texts - a step towards countering internet 🚫 censorship.

Learn more: https://thehackernews.com/2023/06/whatsapp-upgrades-proxy-feature-against.html

North Korea's BlueNoroff, part of Lazarus Group, has upgraded their macOS #malware, Rustbucket, to avoid detection and persist longer.

Find out more here👉 https://thehackernews.com/2023/07/beware-new-rustbucket-malware-variant.html

BlackCat ransomware now spreading via malvertising! Watch out for rogue installers disguised as legitimate apps like WinSCP.

Learn more: https://thehackernews.com/2023/07/blackcat-operators-distributing.html