Microsoft uncovers Moonstone Sleet, a new North Korean hacker group targeting various sectors with ransomware and custom malware, using fake companies and tools to infiltrate targets.

Details here: https://thehackernews.com/2024/05/microsoft-uncovers-moonstone-sleet-new.html

💻 Malachi Mullings, a 31-year-old from Georgia, has been sentenced to 10 years for laundering $4.5 million through BEC and 💔 romance scams.

Learn how they pulled off the scam: https://thehackernews.com/2024/05/us-sentences-31-year-old-to-10-years.html

🎉 Introducing GRC Mastery — Cyber Security GRC Training for beginners.

📽️ Video modules, assessments, quizzes.
🏆 Master risk management, audit, compliance, asset management.
🔭 Capstone Project: NIST assessment.
🎓 Earn a certificate.

Check it out: https://grcmastery.com

🇧🇷💰 New campaign targets Brazilian banks with AllaSenha, a custom AllaKore RAT variant. The malware steals banking credentials and uses Azure cloud for C2.

Learn more: https://thehackernews.com/2024/05/brazilian-banks-targeted-by-new.html

🚨 Attention: Check Point discovers zero-day vulnerability CVE-2024-24919 in Network Security VPN gateway products, exploited in the wild.

Read more here: https://thehackernews.com/2024/05/check-point-warns-of-zero-day-attacks.html

🔧 Ensure your systems are patched with the latest hotfixes.

Employee offboarding is crucial for security. 63% of businesses may have ex-employees with data access. Automate SaaS security to reduce risks.

Learn more at: https://thehackernews.com/2024/05/new-research-warns-about-weak.html

A malicious Python package, pytoileur, has been found in PyPI, aiming at cryptocurrency theft. Downloaded 316 times and re-uploaded after removal, this highlights significant risks in open-source ecosystems.

Learn more: https://thehackernews.com/2024/05/cybercriminals-abuse-stackoverflow-to.html

🚨 Warning: Okta warns of a vulnerability in the cross-origin authentication feature of their Customer Identity Cloud (CIC) that attackers are increasingly exploiting for credential stuffing attacks.

Learn more: https://thehackernews.com/2024/05/okta-warns-of-credential-stuffing.html

Ready to win the Cybersecurity war?

Join our webinar to master the basics and learn how to simplify your cybersecurity efforts with CIS Controls & Benchmarks.

Save yor seat now: https://thehacker.news/cyberthreat-war

🔥 U.S. takes down "911 S5," the world's largest BOTNET, spanning 190 countries and 19 MILLION infected devices.

Chinese ADMIN arrested, leading to disruption of 23 domains, 70+ servers, and seizure of $30 million in assets.

Details: https://thehackernews.com/2024/05/us-dismantles-worlds-largest-911-s5.html

🛡️ Europol's Operation Endgame has successfully dismantled major MALWARE loader networks like IcedID, SystemBC, PikaBot, SmokeLoader, Bumblebee, and TrickBot.

Read > https://thehackernews.com/2024/05/europol-dismantles-100-servers-linked.html

Over 100 servers down and 2,000 domains confiscated.

New vulnerabilities are disclosed hourly, new exploits for old vulnerabilities are publicly released and threat actors are updating their techniques continuously.

Knowing where and how to prioritize your security resources to achieve the greatest impact with the least time invested is critical.

📅 Join Intruder’s webinar on June 12, 2024 to discover the secrets of efficient exposure management: https://thn.news/exposure-management

Can’t make it? Register for the webinar and a copy will be sent.

🚨 Attention WordPress users! Researchers have discovered several vulnerabilities in popular WordPress plugins that allow attackers to create rogue admin accounts and backdoors.

🔗 Learn more: https://thehackernews.com/2024/05/researchers-uncover-active-exploitation.html

🚨 RedTail cryptocurrency mining malware now exploits a critical Palo Alto Networks firewall flaw (CVE-2024-3400) with a CVSS score of 10.0, making it more dangerous than ever.

Learn more: https://thehackernews.com/2024/05/redtail-crypto-mining-malware.html

Ensure your firewalls are patched and secure!

🤖 Struggling with constant alerts and talent shortages?

Learn how AI-driven tools can revolutionize your Security Operations Center by automating alert triage and enhancing efficiency.

Discover the key steps to building an autonomous SOC strategy: https://thehackernews.com/2024/05/how-to-build-your-autonomous-soc.html

Researchers uncover LilacSquid, a previously unknown cyber espionage group targeting IT, energy, and pharmaceutical sectors in the U.S., Europe, and Asia since 2021.

Learn more: https://thehackernews.com/2024/05/cyber-espionage-alert-lilacsquid.html

🚨 Cloudflare disrupts month-long phishing campaign by Russia-aligned FlyingYeti targeting Ukraine. Learn how they exploited housing and utility anxieties to infect targets with COOKBOX malware.

Read: https://thehackernews.com/2024/05/flyingyeti-exploits-winrar.html

🚨 Active Exploitation Alert!

CISA has added two high-severity vulnerabilities to the KEV catalog due to active exploitation:

CVE-2024-1086 (Linux kernel)
CVE-2024-24919 (Check Point)

Read: https://thehackernews.com/2024/05/cisa-alerts-federal-agencies-to-patch.html

🤖 OpenAI, Meta, and TikTok uncover multiple AI-powered influence operations from China, Iran, Israel, and Russia, aimed at manipulating public opinion through generated content and fake accounts.

Learn more: https://thehackernews.com/2024/05/openai-meta-tiktok-disrupt-multiple-ai.html

🚨 Cyber Alert: APT28, the Russian GRU-backed threat actor, has been linked to sophisticated campaigns targeting European networks with HeadLace malware and credential-harvesting web pages.

🔗 Read: https://thehackernews.com/2024/05/russian-hackers-target-europe-with.html