Knock knock, who's there? Akuvox E11. And apparently, a dozen security flaws too! 😱

Check out this article to learn more: https://thehackernews.com/2023/03/researchers-uncover-over-dozen-security.html

Beware of AI-generated YouTube videos! Threat actors are using them to spread stealer malware like Raccoon, RedLine, and Vidar.

Learn more: https://thehackernews.com/2023/03/warning-ai-generated-youtube-video.html

Cyber criminals are using fake ChatGPT-branded Chrome extensions to distribute malware and hijack Facebook accounts.

Learn more: https://thehackernews.com/2023/03/fake-chatgpt-chrome-extension-hijacking.html

A malicious cyber operation has been targeting websites aimed at East Asian audiences and redirecting visitors to adult-themed content.

Learn more: https://thehackernews.com/2023/03/large-scale-cyber-attack-hijacks-east.html

Fortinet researchers have discovered an advanced and highly targeted threat actor that is exploiting a zero-day security vulnerability (CVE-2022-41328) in FortiOS. This flaw could potentially result in the execution of arbitrary code.

Learn more: https://thehackernews.com/2023/03/fortinet-fortios-flaw-exploited-in.html

🚨 Heads up, everyone!

Cybercriminal group DEV-1101 is using an open-source AiTM phishing kit to launch attacks at scale. It can bypass MFA protections and steal passwords and session cookies.

Learn more about this: https://thehackernews.com/2023/03/microsoft-warns-of-large-scale-use-of.html

GoBruteforcer, a new Golang-based malware, is using brute-force attacks to target web servers running phpMyAdmin, MySQL, FTP, and Postgres.

Learn more: https://thehackernews.com/2023/03/gobruteforcer-new-golang-based-malware.html

Researchers have discovered a cyberattack on an East Asian data-loss prevention company that targeted its high-value government and military customers.

Learn more: https://thehackernews.com/2023/03/tick-apt-targeted-high-value-customers.html

Move over Monero, Dero cryptocurrency is the new target of cryptojacking campaigns.

Researchers say the higher rewards and better anonymity features make it an attractive target for cybercriminals.

Learn more: https://thehackernews.com/2023/03/new-cryptojacking-operation-targeting.html

➡️ Microsoft's latest Patch Tuesday update for March 2023 is here with security patches for 80 new flaws, including two actively exploited vulnerabilities.

Learn more: https://thehackernews.com/2023/03/microsoft-rolls-out-patches-for-80-new.html

YoroTrooper... this new threat actor has been compromising government and energy organizations and is using common #malware, like AveMaria/Warzone RAT, LodaRAT, and Meterpreter, to gain remote access.

Learn more: https://thehackernews.com/2023/03/yorotrooper-stealing-credentials-and.html

Heads up to all Adobe ColdFusion users! A critical flaw, CVE-2023-26360, has been found and exploited in the wild.

Learn more: https://thehackernews.com/2023/03/cisa-issues-urgent-warning-adobe.html

CVE-2019-18935 strikes again!

A critical security flaw in Progress Telerik UI for ASP AJAX was exploited by multiple threat actors, including a nation-state group, to breach a U.S. federal agency's web server.

Learn more: https://thehackernews.com/2023/03/multiple-hacker-groups-exploit-3-year.html

Law enforcement agencies in Europe and the U.S. have taken down ChipMixer, the world's largest centralized crypto mixer service, that laundered over $3.75 billion worth of digital assets linked directly to cybercrime and illicit activities.

Read: https://thehackernews.com/2023/03/authorities-shut-down-chipmixer.html

⚠️💰🔒 Heads up, folks!

Researchers reveal a new strain of malware, possibly deployed as a decoy by TeamTNT, to mine Monero and conceal data exfiltration.

Learn more: https://thehackernews.com/2023/03/cryptojacking-group-teamtnt-suspected.html

Chinese and Russian cybercriminals are upping their game with a new malware called SILKLOADER to evade detection and propagate Cobalt Strike.

Learn more: https://thehackernews.com/2023/03/chinese-and-russian-hackers-using.html

Winter Vivern, also known as UAC-0114, has been linked to campaigns targeting government agencies and private businesses in India, Lithuania, Slovakia, and the Vatican.

Learn more: https://thehackernews.com/2023/03/winter-vivern-apt-group-targeting.html

Uh-oh! Google has just uncovered 18 zero-day vulnerabilities in #Samsung's Exynos chips, some of which can be exploited remotely to completely take over your phone.

Learn more: https://thehackernews.com/2023/03/google-uncovers-18-severe-security.html

Don't fall for fake messaging apps! Researchers have discovered trojanized versions of Telegram and WhatsApp infecting Android and Windows users with cryptocurrency clipper malware.

Learn more: https://thehackernews.com/2023/03/lookalike-telegram-and-whatsapp.html

Watch out, HinataBot is here!

A new Golang-based botnet exploits unpatched vulnerabilities and weak credentials to take over routers and servers and launch DDoS attacks.

Learn more: https://thehackernews.com/2023/03/new-golang-based-hinatabot-exploiting.html

💻🛡️🔒 Outdated security strategies leaving you exposed?

Discover the power of the Identity Perimeter & Zero Trust Access in our can't-miss webinar featuring Dor Dali of Cyolo.

👉 Register now: https://thehackernews.com/2023/03/thn-webinar-3-research-backed-ways-to.html

Get practical tips to protect your business!