⚠️ Critical Security Update: Progress Software releases hotfixes for critical CVE-2023-40044 and 7 other vulnerabilities in WS_FTP Server.

Find details here: https://thehackernews.com/2023/09/progress-software-releases-urgent.html

Don't wait! Apply the patch to secure your data and systems immediately.

⏰ The Quantum Countdown!

What happens when quantum computers crack the code? Dive into the world of post-quantum cryptography and how it's securing our digital lives.

Read: https://thehackernews.com/2023/09/post-quantum-cryptography-finally-real.html

North Korea's Lazarus Group has targeted a Spanish aerospace company in a cyber espionage attack.

The attack involves fake recruiters on LinkedIn, advanced #malware, and a new payload named LightlessCan.

Learn more: https://thehackernews.com/2023/09/lazarus-group-impersonates-recruiter.html

Using Bing Chat? Stay alert!

Researchers reveal malicious ads lurking in Microsoft's AI-powered #chatbot, leading users to install malware unknowingly.

Learn more about this threat: https://thehackernews.com/2023/09/microsofts-ai-powered-bing-chat-ads-may.html

🕵️‍♂️ Cybercriminals are now using🔒 ASMCrypt, a new advanced evolved version of DoubleFinger, to evade detection by security tools.

Discover how this loader malware operates to spread attacks: https://thehackernews.com/2023/09/cybercriminals-using-new-asmcrypt.html

📢 Attention IT Admins! Multiple vulnerabilities in Exim mail agent exposed. Find out how unauthenticated attackers could exploit these vulnerabilities.

Read: https://thehackernews.com/2023/09/new-critical-security-flaws-expose-exim.html

🚨 Iranian hacking group OilRig strikes again with spear-phishing campaign, deploying a new Menorah malware for cyberespionage.

Learn more: https://thehackernews.com/2023/09/iranian-apt-group-oilrig-using-new.html

🚨 FBI Alert: Dual ransomware attacks are surging, targeting U.S. businesses with multiple variants.

Read: https://thehackernews.com/2023/09/fbi-warns-of-rising-trend-of-dual.html

⚠️ New Android banking trojan Zanubis disguises as a Peruvian government app to infiltrate your device.

Find out how it works in this latest report: https://thehackernews.com/2023/10/zanubis-android-banking-trojan-poses-as.html

🚨 New Threat Alert! BunnyLoader, the latest malware-as-a-service, is up for sale in the dark web. It can steal your data, replace your cryptocurrency addresses, and more.

Learn more: https://thehackernews.com/2023/10/bunnyloader-new-malware-as-service.html

A severe "Zip Slip" vulnerability in OpenRefine data cleanup and transformation tool could lead to code execution attacks.

Find out how attackers exploit this flaw: https://thehackernews.com/2023/10/openrefines-zip-slip-vulnerability.html

🛡️ APIs are the backbone of modern applications, but they come with risks. Learn how to protect your data from API breaches and cyberattacks.

Read details: https://thehackernews.com/2023/10/apis-unveiling-silent-killer-of-cyber.html

💳 Protect Your Payments!

Silent Skimmer - A year-long web skimming campaign targets businesses in Asia, North America, and Latin America, stealing sensitive payment data.

Learn more: https://thehackernews.com/2023/10/silent-skimmer-year-long-web-skimming.html

🚨Beware of LUCR-3 (aka Scattered Spider) – a threat actor targeting Fortune 2000 companies for extortion. Learn how they use victims' tools and applications for data theft.

Read details: https://thehackernews.com/2023/10/lucr-3-scattered-spider-getting-saas-y.html

🔒 Exploiting Cloudflare's Gaps: Threat actors can bypass DDoS protection mechanisms by abusing trust relationships.

Details inside: https://thehackernews.com/2023/10/researcher-reveal-new-technique-to.html

New survey reveals alarming stats: 78% of cybersecurity teams faced API-related security incidents in the past year.

Find out how your peers are responding and why API security is a top priority.

Get insights: https://thehackernews.com/2023/10/api-security-trends-2023-have.html

🔒 Reduce your attack surface and enhance your organization's cybersecurity strategy with Security Configuration Assessment (SCA).

Explore its benefits, including vulnerability identification, compliance, and IT hygiene enhancement:

Read: https://thehackernews.com/2023/10/protecting-your-it-infrastructure-with.html

New survey reveals alarming stats: 78% of cybersecurity teams faced API-related security incidents in the past year.

Find out how your peers are responding and why API security is a top priority.

Get insights: https://thehackernews.com/2023/10/api-security-trends-2023-have.html

🔒Worried about AI-related threats? Join our panel discussion with cybersecurity experts:

- David Primor, Founder & CEO of Cynomi
- Elad Schulman, Founder & CEO of Lasso Security

... and learn practical security policies and practices to shield your clients.

https://thehacker.news/ai-llm-threats?source=social

🚨 Developers, listen up! Over 30 malicious npm packages discovered in the wild. They're after your sensitive data - SSH keys, Kubernetes configs, and more.

Find details here: https://thehackernews.com/2023/10/over-3-dozen-data-stealing-malicious.html