⚠️ Adobe Acrobat Reader users, beware! CISA adds high-severity flaw in Adobe Acrobat Reader to its Known Exploited Vulnerabilities list.

Read: https://thehackernews.com/2023/10/us-cybersecurity-agency-warns-of.html

Don't wait – update your software now.

🛡️ Microsoft's October 2023 Patch Tuesday: 103 new vulnerabilities addressed, including 2 zero-days and 13 critical ones.

Find details for CVE-2023-36563 and CVE-2023-41763 and other flaws here — https://thehackernews.com/2023/10/microsoft-releases-october-2023-patches.html

Update now to protect your systems.

🔐 Protect your organization's data! Password security is crucial. Discover the risks of password reuse and how to mitigate them with Specops Password Policy.

Read: https://thehackernews.com/2023/10/take-offensive-approach-to-password.html

🕵️‍♂️ Over 17,000 WordPress sites hit by Balada Injector malware in Sept 2023, double the August numbers.

Find out how attackers exploiting vulnerabilties to inject malicious scripts and gain persistent access.

Read details: https://thehackernews.com/2023/10/over-17000-wordpress-sites-compromised.html

📢 Security Advisory : Two major security flaws in the Curl data transfer library exposed. CVE-2023-38545, the worst of them, could lead to code execution.

Learn more about them here: https://thehackernews.com/2023/10/two-high-risk-security-flaws-discovered.html

Patch your systems and software immediately.

Cybersecurity experts uncover an ongoing threat to government and telecom entities in Asia. Learn how a campaign named "Stayin' Alive" is deploying malware.

Check out the details: https://thehackernews.com/2023/10/researchers-uncover-ongoing.html

Microsoft's Defender for Endpoint just thwarted a large-scale encryption attack by Akira ransomware.

How? Find out more: https://thehackernews.com/2023/10/microsoft-defender-thwarts-akira.html

📈 Employee usage of GenAI apps has risen by 44%. Unintentional exposure? Targeted attacks? LayerX delves into understanding the risks and offering business solutions.

Read: https://thehackernews.com/2023/10/how-to-guard-your-data-from-exposure-in.html

⚠️ Ever heard of an IP address in hexadecimal notation? It's the latest disguise hackers use to deploy DDoS malware on Linux systems.

Find out more: https://thehackernews.com/2023/10/shellbot-uses-hex-ips-to-evade.html

🚨 Malicious NuGet package distributing SeroXen RAT targets .NET developers. The malicious user behind this package has released 6 other suspicious packages, with 2.1 million downloads.

Read: https://thehackernews.com/2023/10/malicious-nuget-package-targeting-net.html

🚨 The FBI and CISA issue advisory on AvosLocker ransomware gang. They use open-source tools, leave minimal traces, and targeting U.S. critical infrastructure sectors.

Learn more: https://thehackernews.com/2023/10/fbi-cisa-warn-of-rising-avoslocker.html

🚨 Beware! DarkGate malware is now spreading through instant messaging apps like Skype & Microsoft Teams. Stay cautious and don't open suspicious documents!

Learn more: https://thehackernews.com/2023/10/darkgate-malware-spreading-via.html

Researchers shed light on hacking group ToddyCat's latest arsenal of tools. Designed for data theft, their tactics are more advanced than ever.

Find details here: https://thehackernews.com/2023/10/researchers-unveil-toddycats-new-set-of.html

A new cyber campaign targets EU military & political leaders focusing on gender equality. The cyber collective behind it blurs lines between financial and espionage motives.

Learn more: https://thehackernews.com/2023/10/new-peapod-cyberattack-campaign.html

🔐 Big news! Microsoft plans to phase out the '90s NT LAN Manager (NTLM) in favor of a stronger focus on Kerberos for authentication in Windows 11.

Learn more: https://thehackernews.com/2023/10/microsoft-to-phase-out-ntlm-in-favor-of.html

🚨 EtherHiding — New threat detected!

Malicious actors are using Binance's Smart Chain (BSC) contracts to host malicious code and serve it on compromised WordPress sites to distribute malware.

Learn more: https://thehackernews.com/2023/10/binances-smart-chain-exploited-in-new.html

🔒 Signal has refuted viral reports of a zero-day flaw in its encrypted messaging app. After thorough investigation, the company found no evidence to support the claim.

Find details here: https://thehackernews.com/2023/10/signal-debunks-zero-day-vulnerability.html

Discover the dangerous capabilities of SpyNote, an Android banking trojan. It records audio, logs keystrokes, SMS messages, and captures screenshots without detection.

Find out more about this invasive spyware: https://thehackernews.com/2023/10/spynote-beware-of-this-android-trojan.html

SaaS Security breaches often stem from misconfigured settings. Learn how 'SaaS Security on Tap' video series tackles the key concepts.

Watch them here: https://thehackernews.com/2023/10/the-fast-evolution-of-saas-security.html

🚨 WinRAR users, be alert! Pro-Russian hackers exploited a recent vulnerability (CVE-2023-38831) in the software. Ensure your version is updated!

Read details: https://thehackernews.com/2023/10/pro-russian-hackers-exploiting-recent.html