A malicious package discovered on the Python Package Index (PyPI) has been found employing a steganographic trick to conceal malicious code within image files.

Read: https://thehackernews.com/2022/11/researchers-uncover-pypi-package-hiding.html

Google has awarded a researcher $70,000 for reporting a security vulnerability that can be exploited to bypass the lock screen on all Pixel smartphones.

Read details and watch demo: https://thehackernews.com/2022/11/hacker-rewarded-70000-for-finding-way.html

Researchers warn of massive malicious campaigns targeting customers of leading Indian banks with various banking malware, including Elibomi, FakeReward, AxBanker, IcRAT and IcSpy.

Read: https://thehackernews.com/2022/11/warning-this-widespread-malicious.html

Microsoft has attributed the recent wave of "Prestige" ransomware attacks on Ukraine and Poland to the Russia-sponsored hacking group Sandworm.

Read: https://thehackernews.com/2022/11/microsoft-blames-russian-hackers-for.html

U.S. Department of Justice has announced charges against a Russian-Canadian national for his alleged involvement in LockBit ransomware attacks around the world.

Read: https://thehackernews.com/2022/11/russian-canadian-national-charged-over.html

Researchers discover multiple high-severity flaws in the widely used OpenLiteSpeed Web Server and its enterprise variant that could be exploited for RCE attacks.

https://thehackernews.com/2022/11/multiple-high-severity-flaw-affect.html

RCE: CVE-2022-0073
Privilege Escalation: CVE-2022-0074
Directory Traversal: CVE-2022-0072

Two new malicious dropper apps distributed via Google Play Store have been caught infecting users' Android devices with Xenomorph banking malware.

Read: https://thehackernews.com/2022/11/these-two-google-play-store-apps.html

Two long-running surveillance campaigns have been discovered using Android spyware tools to monitor the Uyghur community in China and elsewhere to collect sensitive information and track their whereabouts.

Read: https://thehackernews.com/2022/11/experts-uncover-two-long-running.html

A recently discovered cyberespionage group dubbed Worok has been found abusing Dropbox API to exfiltrate data stolen by malware hiding in seemingly innocuous image files.

Read: https://thehackernews.com/2022/11/worok-hackers-abuse-dropbox-api-to.html

Researchers have discovered new "KmsdBot" malware leveraging weak SSH credentials to compromise systems with the goal of mining cryptocurrency and conducting targeted DDoS attacks.

Read: https://thehackernews.com/2022/11/new-kmsdbot-malware-hijacking-systems.html

A new malicious campaign has compromised over 15,000 WordPress websites in an attempt to redirect visitors to bogus Q&A portals as part of an SEO poisoning issue.

Read: https://thehackernews.com/2022/11/over-15000-wordpress-sites-compromised.html

Researchers have identified a previously undocumented subgroup of APT41 that has been targeting entities located in East and Southeast Asia and Ukraine with custom Cobalt Strike loader.

Read: https://thehackernews.com/2022/11/new-earth-longzhi-apt-targets-ukraine.html

Google has agreed to pay a record $391.5 million fine to settle with 40 U.S. states over allegations that the company deceived users about the collection of their location data.

Read: https://thehackernews.com/2022/11/google-to-pays-391-million-privacy-fine.html

A suspected Chinese state-sponsored actor breached a digital certificate authority as well as government and defense agencies in several Asian countries.

Read: https://thehackernews.com/2022/11/researchers-say-china-state-backed.html

Researchers have disclosed details of recently reported vulnerabilities in the Zendesk Explore analytics service that could have allowed attackers to gain unauthorized access to information from customer accounts.

Read: https://thehackernews.com/2022/11/researchers-reported-critical-sqli-and.html

Researchers discover a serious vulnerability in Time-Triggered Ethernet (TTE) networking technology used in safety-critical infrastructure such as spacecraft, helicopters and wind turbines and can cause the entire system to fail.

https://thehackernews.com/2022/11/pcspoof-new-vulnerability-affects.html

Researchers have discovered a critical remote code execution vulnerability (CVSS score: 9.8) in #Spotify's Backstage software catalog and developer platform.

Details: https://thehackernews.com/2022/11/critical-rce-flaw-reported-in-spotifys.html

Google plans to roll out Privacy Sandbox for Android in beta for mobile devices running Android 13 starting early next year.

Read: https://thehackernews.com/2022/11/google-to-roll-out-privacy-sandbox-beta.html

Researchers have unearthed new samples of RapperBot botnet #malware capable of launching massive DDoS attacks against game servers.

Read: https://thehackernews.com/2022/11/warning-new-rapperbot-campaign-aims-to.html

Researchers discovered hundreds of databases on Amazon RDS exposing personal identifiable information (PII).

Read: https://thehackernews.com/2022/11/researchers-discover-hundreds-of-amazon.html

North Korean hackers have been observed using an updated version of the Dtrack backdoor to attack a wide range of industries in Germany, Brazil, India, Italy, Mexico, Switzerland, Saudi Arabia, Turkey, and the United States.

https://thehackernews.com/2022/11/north-korean-hackers-targeting-europe.html