Sophisticated WoofLocker toolkit update hides malicious JavaScript in PNG images, tricks users with fake tech support scams using advanced fingerprinting and redirection mechanisms.

Read: https://thehackernews.com/2023/08/wooflocker-toolkit-hides-malicious.html

HiatusRAT malware creators return, targeting Taiwan-based orgs & U.S. military procurement system.

Upgraded malware now supports multiple architectures & hosted on new VPSs.

Read details: https://thehackernews.com/2023/08/hiatusrat-malware-resurfaces-taiwan.html

Malware-infected Windows & macOS machines are now being used as proxy exit nodes, allowing threat actors to reroute requests.

Read: https://thehackernews.com/2023/08/this-malware-turned-thousands-of-hacked.html

A high-severity flaw in WinRAR could let hackers remotely run code on Windows systems.

Learn more about CVE-2023-40477: https://thehackernews.com/2023/08/new-winrar-vulnerability-could-allow.html

Critical security flaw (CVE-2023-26359) in Adobe ColdFusion added to CISA's catalog of known exploited vulnerabilities.

Read: https://thehackernews.com/2023/08/critical-adobe-coldfusion-flaw-added-to.html

Affects ColdFusion 2018 and 2021. Patched by Adobe in March, but active exploitation evidence is concerning.

Beware #macOS users! A sneaky variant of the XLoader malware hides inside an app called "OfficeNote."

Think you're boosting productivity? You might be compromising security!

Read details: https://thehackernews.com/2023/08/new-variant-of-xloader-macos-malware.html

Carderbee, a new threat cluster, is targeting organizations in Hong Kong and Asia.

The breach uses software supply chain attacks and a Microsoft signed certificate to fetch PlugX from a remote server.

Read more: https://thehackernews.com/2023/08/carderbee-attacks-hong-kong.html

Beware Roblox developers! Malicious packages on the npm repository have been found. These imposters are deploying Luna Token Grabber to snatch credentials.

Read details: https://thehackernews.com/2023/08/over-dozen-malicious-npm-packages.html

🛡️ Beware of Spacecolon! This malicious tool is spreading Scarab ransomware globally. France, Mexico, Poland, Slovakia, Spain, and Turkey are among the top targets.

Read detais: https://thehackernews.com/2023/08/spacecolon-toolset-fuels-global-surge.html

A Syrian threat actor, EVLF, has been identified as the developer of malware tools CypherRAT and CraxsRAT. These tools can control a device's camera, location, and mic remotely.

Read details: https://thehackernews.com/2023/08/syrian-threat-actor-evlf-unmasked-as.html

Meta is set to support end-to-end encryption for Messenger chats by year-end. Meta redesigned over 100 Messenger features to keep your chats both safe and seamless.

Read: https://thehackernews.com/2023/08/meta-set-to-enable-default-end-to-end.html

FBI alerts of a potential cash out by North Korean actors, linked to $40M in stolen cryptocurrency. This group is currently holding 1,580 bitcoins from various crypto heists across six wallets.

Read details: https://thehackernews.com/2023/08/north-korean-affiliates-suspected-in.html

Agile isn't just for devs anymore! Watch how an attacker develops and releases malware iterations targeting cloud credentials.

Learn more: https://thehackernews.com/2023/08/agile-approach-to-mass-cloud-credential.html

The U.S. Justice Department indicts two founders of Tornado Cash, a cryptocurrency mixer service, for laundering over $1 billion in criminal proceeds.

Read details: https://thehackernews.com/2023/08/tornado-cash-founders-charged-in.html

🔥 Thousands of Openfire XMPP servers remain unpatched against a high-severity flaw, CVE-2023-32315, exposing them to exploits.

Read details: https://thehackernews.com/2023/08/thousands-of-unpatched-openfire-xmpp.html

Don't wait – update now to prevent potential breaches.

🚨 Heads up! The recent WinRAR vulnerability was exploited as a zero-day since April to compromise traders' devices and withdraw money from broker accounts.

Read: https://thehackernews.com/2023/08/winrar-security-flaw-exploited-in-zero.html

🖥️ A new malware called "Whiffy Recon" is targeting Windows devices and scanning for Wi-Fi access points to triangulate infected devices' exact location every 60 seconds.

Learn more about it: https://thehackernews.com/2023/08/new-whiffy-recon-malware-triangulates.html

Connecting to that ☕️ coffee shop's Wi-Fi? Beware! Attackers might be eavesdropping.

MiTM attacks, Rogue hotspots, Spoofing… Sounds complex?

Discover what these threats mean for you when using public Wi-Fi: https://thehackernews.com/2023/08/the-hidden-dangers-of-public-wi-fi.html

New Telekopye toolkit lets scammers easily create phishing pages. It's like a DIY scam-in-a-box powered by Telegram!

Learn more: https://thehackernews.com/2023/08/new-telegram-bot-telekopye-powering.html

North Korea's Lazarus Group hackers are exploiting a security flaw in Zoho ManageEngine to deploy the QuiteRAT trojan.

The key targets are Europe and U.S. internet infrastructure and healthcare entities.

Read: https://thehackernews.com/2023/08/lazarus-group-exploits-critical-zoho.html