The 23-year-old responsible for the 2020 Twitter hack, which compromised 130 high-profile accounts (including those of Bill Gates & Elon Musk) and defrauded users of $120,000, has pleaded guilty and could face up to 70 years in prison.

Read: https://thehackernews.com/2023/05/mastermind-behind-twitter-2020-hack.html

New malware alert! DownEx is targeting Central Asian government organizations in a sophisticated espionage campaign.

Learn more about it: https://thehackernews.com/2023/05/sophisticated-downex-malware-campaign.html

Hackers can steal NTLM credentials with zero clicks! Beware of CVE-2023-29324, the Windows MSHTML Platform vulnerability.

Check out the details now: https://thehackernews.com/2023/05/experts-detail-new-zero-click-windows.html

Google has just unveiled a range of new privacy, safety, and security features at Google I/O. The updates are aimed at protecting users from phishing attacks, cyber threats, and more.

Check out this article to learn more: https://thehackernews.com/2023/05/google-announces-new-privacy-safety-and.html

✅ Improved data control and transparency
✅ Gmail's Dark Web Scan
✅ Effortless deletion of Maps search history
✅ AI-powered Safe Browsing
✅ Expansion of Content Safety API
✅ About this Image
✅ Passwordless future with Passkey Sign-In
✅ Spam View in Google Drive

GitHub's "Push Protection" feature is now available to all public repositories, helping to prevent accidental key and secret leaks in code.

Learn more: https://thehackernews.com/2023/05/github-extends-push-protection-to.html

🔥 It's official: Twitter is finally taking a step towards privacy by rolling out support for🔒encrypted direct 📨 messages!

Learn more: https://thehackernews.com/2023/05/twitter-finally-rolling-out-encrypted.html

But it's only available for verified users and their affiliates for now.

⚡Warning: A nascent botnet called Andoryu is currently exploiting a critical vulnerability (CVE-2023-25717) to hijack Ruckus Wireless AP devices.

Learn more at: https://thehackernews.com/2023/05/andoryu-botnet-exploits-critical-ruckus.html

Alert! 9 new ransomware families emerge from leaked Babuk source code, capable of targeting Linux and ESXi environments

https://thehackernews.com/2023/05/babuk-source-code-sparks-9-new.html

Spanish Police dismantles cybercrime gang with 40 arrests! Hackers, fraudsters, and money launderers taken down!

Read details: https://thehackernews.com/2023/05/spanish-police-takes-down-massive.html

Researchers uncover new APT group Red Stinger targeting Eastern Europe since 2020. Attackers exfiltrated snapshots, USB drives, keyboard strokes, and microphone recordings.

Read details: https://thehackernews.com/2023/05/new-apt-group-red-stinger-targets.html

🚨 Heads up! A severe security flaw has been discovered in a popular WordPress plugin! Patchstack has revealed an unauthenticated privilege escalation flaw in Essential Addons for Elementor!

Read: https://thehackernews.com/2023/05/severe-security-flaw-exposes-over.html

It is crucial to update to version 5.7.2 ASAP!

🔒 Beware of the Bl00dy Ransomware Gang! U.S. agencies sound the alarm on cyberattacks targeting vulnerable PaperCut servers in the education sector.

Read details: https://thehackernews.com/2023/05/bl00dy-ransomware-gang-strikes.html

BPFDoor, an undetected malware variant, has resurfaced with enhanced evasiveness.

Find out how this Linux backdoor has remained hidden for years, posing a serious threat to compromised environments.

Read details: https://thehackernews.com/2023/05/new-variant-of-linux-backdoor-bpfdoor.html

Attention Netgear RAX30 users! 5 new flaws revealed!

Hackers could hijack your devices, tamper with settings, and control your smart home. Act fast! Update to patch the vulnerabilities.

Read details: https://thehackernews.com/2023/05/netgear-routers-flaws-expose-users-to.html

Greatness is a new phishing-as-a-service platform that enables cybercriminals to more easily target Microsoft 365 users.

Read: https://thehackernews.com/2023/05/new-phishing-as-service-platform-lets.html

Avoid clicking on unfamiliar links or opening suspicious attachments.

Macros out, Follina vulnerability in!

Cybercriminals are using obfuscated PowerShell scripts to exploit this vulnerability and infect systems with XWorm malware.

Read: https://thehackernews.com/2023/05/xworm-malware-exploits-follina.html

A former Ubiquiti employee gets 6-year prison term for posing as a hacker and whistleblower in a $2 million cryptocurrency extortion scheme.

Read: https://thehackernews.com/2023/05/former-ubiquiti-employee-gets-6-years.html

Beware of the new campaign targeting poorly managed MS SQL servers!

A powerful malware called "CLR SqlShell" is exploiting vulnerable database servers for #cryptocurrency mining and ransomware attacks.

Read: https://thehackernews.com/2023/05/clr-sqlshell-malware-targets-ms-sql.html

🔒 Beware of hypervisor jackpotting! Linux and VMware ESXi systems under attack by the new ransomware-as-service (RaaS) operation MichaelKors.

Read details: https://thehackernews.com/2023/05/new-michaelkors-ransomware-as-service.html

Researchers reveal a powerful backdoor called Merdoor being used by the hacking group Lancefly in their targeted attacks on South and Southeast Asia.

Learn more: https://thehackernews.com/2023/05/researchers-uncover-powerful-backdoor.html

RA Group, a newly emerged ransomware gang, is rapidly expanding its operations, targeting organizations in the U.S. and South Korea.

Read details here: https://thehackernews.com/2023/05/new-ransomware-gang-ra-group-hits-us.html