Researchers discover a new #Golang-based Linux malware that hides as a system process on servers running eCommerce websites.

Read: https://thehackernews.com/2021/11/new-golang-based-linux-malware.html

Web hosting company GoDaddy suffers a major data breach affecting over 1 MILLION of its managed WordPress hosting customers, exposing their:

—WordPress admin password set at the time of installation,
—sFTP, database users & passwords,
—SSL private keys

https://thehackernews.com/2021/11/godaddy-data-breach-exposes-over-1.html

Researchers have spotted a more elusive & stealthy version of BrazKing Android malware in the wild, capable of stealing two-factor authentication codes and launching fraudulent transactions from infected devices.

Read details: https://thehackernews.com/2021/11/more-stealthier-version-of-brazking.html

Researchers publish details of two vulnerabilities [CVE-2021-2145 and CVE-2021-2310] in Oracle VM VirtualBox that could allow an attacker to compromise the hypervisor and cause a denial of service (DoS).

Read : https://thehackernews.com/2021/11/researchers-detail-privilege-escalation.html

⚡Apple has sued Israeli spyware firm NSO Group for allowing state-sponsored attackers to illegally hack and spy on its iPhone users via the Pegasus malware.

Read details — https://thehackernews.com/2021/11/apple-sues-israels-nso-group-for-spying.html

Over 9 million Android devices are infected with a new class of information-stealing malware disguised as dozens of arcade, shooter and strategy games, distributed through #Huawei's AppGallery marketplace.

Read: https://thehackernews.com/2021/11/over-9-million-android-phones-running.html

Several users in the Middle East are being targeted by the hacker group APT C-23 with a new variant of their Android spyware that is stealthy and even more persistent.

Read details: https://thehackernews.com/2021/11/apt-c-23-hackers-using-new-android.html

Researchers uncover details of new vulnerabilities in MediaTek's audio DSP embedded in 37% of all smartphones and IoT devices.

Read: https://thehackernews.com/2021/11/eavesdropping-bugs-in-mediatek-chips.html

Exploiting these flaws could allow attackers to carry out a "massive eavesdrop campaign" without the users' knowledge.

VMware has released updates to address two security vulnerabilities (CVE-2021-21980, CVE-2021-22049) in vCenter Server and Cloud Foundation that could be abused by a remote attacker to gain access to sensitive information.

https://thehackernews.com/2021/11/vmware-warns-of-newly-discovered.html

⚠️Warning — Hackers are actively exploiting a new zero-day variant of a recently disclosed privilege escalation vulnerability affecting the Windows Installer software component.

Read details: https://thehackernews.com/2021/11/warning-hackers-exploiting-new-windows.html

A new Iranian hacking group has been discovered exploiting a critical vulnerability in Microsoft Windows' MSHTML platform to target Farsi-speaking victims with PowerShell-based information stealer.

https://thehackernews.com/2021/11/hackers-using-microsoft-mshtml-flaw-to.html

Hackers are using a new JavaScript malware strain as a loader to distribute remote access Trojans (RATs) and information stealers.

Read details: https://thehackernews.com/2021/11/this-new-stealthy-javascript-loader.html

Amid NSO Group scandal, the Israeli government has dramatically reduced the number of countries to which cybersecurity firms may sell offensive hacking and surveillance tools, excluding 65 nations from the export list.

Read: https://thehackernews.com/2021/11/israel-bans-sales-of-hacking-and.html

An APT hacker group targeted biomanufacturing companies with the help of a custom malware loader called "Tardigrade."

Read details: https://thehackernews.com/2021/11/hackers-targeting-biomanufacturing.html

Italian antitrust authority has fined both Apple and Google €10 million each for using "aggressive" data practices and failing to clearly inform consumers about the commercial use of their personal data.

Read details: https://thehackernews.com/2021/11/italys-antitrust-regulator-fines-google.html

In an international operation coordinated by INTERPOL, codenamed HAECHI-II, police arrest more than 1,000 suspected cybercriminals and seize a total of nearly $27 million in illicit funds.

Read: https://thehackernews.com/2021/11/interpol-arrests-over-1000-cyber.html

About 86% of all compromised Google Cloud accounts are used by hackers to mine cryptocurrencies, while other instances are used to install ransomware or stage phishing attacks.

Read details: https://thehackernews.com/2021/11/hackers-using-compromised-google-cloud.html

State-sponsored hacker group ScarCruft is using a new malware called Chinotto for Windows and Android devices to spy on North Korea defectors, journalists and human rights activists.

Read details: https://thehackernews.com/2021/11/new-chinotto-spyware-targets-north.html

⚡ Researchers uncover 4 separate Android banking trojan dropper campaigns that infected more than 300,000 devices via the Google Play Store in 2021.

Read details: https://thehackernews.com/2021/11/4-android-banking-trojan-campaigns.html

WIRTE hacker group targets governments, diplomatic entities, military organizations, law firms, and financial institutions, mostly in the Middle East.

Read details: https://thehackernews.com/2021/11/wirte-hacker-group-targets-government.html

Researcher disclose details of an unpatched vulnerability (CVE-2021-24084) in the Windows OS—known to Microsoft since October 2020—that could allow an attacker to gain unauthorized access to the file system and read arbitrary files.

Details: https://thehackernews.com/2021/11/unpatched-unauthorized-file-read.html