GitHub's "Push Protection" feature is now available to all public repositories, helping to prevent accidental key and secret leaks in code.

Learn more: https://thehackernews.com/2023/05/github-extends-push-protection-to.html

🔥 It's official: Twitter is finally taking a step towards privacy by rolling out support for🔒encrypted direct 📨 messages!

Learn more: https://thehackernews.com/2023/05/twitter-finally-rolling-out-encrypted.html

But it's only available for verified users and their affiliates for now.

⚡Warning: A nascent botnet called Andoryu is currently exploiting a critical vulnerability (CVE-2023-25717) to hijack Ruckus Wireless AP devices.

Learn more at: https://thehackernews.com/2023/05/andoryu-botnet-exploits-critical-ruckus.html

Alert! 9 new ransomware families emerge from leaked Babuk source code, capable of targeting Linux and ESXi environments

https://thehackernews.com/2023/05/babuk-source-code-sparks-9-new.html

Spanish Police dismantles cybercrime gang with 40 arrests! Hackers, fraudsters, and money launderers taken down!

Read details: https://thehackernews.com/2023/05/spanish-police-takes-down-massive.html

Researchers uncover new APT group Red Stinger targeting Eastern Europe since 2020. Attackers exfiltrated snapshots, USB drives, keyboard strokes, and microphone recordings.

Read details: https://thehackernews.com/2023/05/new-apt-group-red-stinger-targets.html

🚨 Heads up! A severe security flaw has been discovered in a popular WordPress plugin! Patchstack has revealed an unauthenticated privilege escalation flaw in Essential Addons for Elementor!

Read: https://thehackernews.com/2023/05/severe-security-flaw-exposes-over.html

It is crucial to update to version 5.7.2 ASAP!

🔒 Beware of the Bl00dy Ransomware Gang! U.S. agencies sound the alarm on cyberattacks targeting vulnerable PaperCut servers in the education sector.

Read details: https://thehackernews.com/2023/05/bl00dy-ransomware-gang-strikes.html

BPFDoor, an undetected malware variant, has resurfaced with enhanced evasiveness.

Find out how this Linux backdoor has remained hidden for years, posing a serious threat to compromised environments.

Read details: https://thehackernews.com/2023/05/new-variant-of-linux-backdoor-bpfdoor.html

Attention Netgear RAX30 users! 5 new flaws revealed!

Hackers could hijack your devices, tamper with settings, and control your smart home. Act fast! Update to patch the vulnerabilities.

Read details: https://thehackernews.com/2023/05/netgear-routers-flaws-expose-users-to.html

Greatness is a new phishing-as-a-service platform that enables cybercriminals to more easily target Microsoft 365 users.

Read: https://thehackernews.com/2023/05/new-phishing-as-service-platform-lets.html

Avoid clicking on unfamiliar links or opening suspicious attachments.

Macros out, Follina vulnerability in!

Cybercriminals are using obfuscated PowerShell scripts to exploit this vulnerability and infect systems with XWorm malware.

Read: https://thehackernews.com/2023/05/xworm-malware-exploits-follina.html

A former Ubiquiti employee gets 6-year prison term for posing as a hacker and whistleblower in a $2 million cryptocurrency extortion scheme.

Read: https://thehackernews.com/2023/05/former-ubiquiti-employee-gets-6-years.html

Beware of the new campaign targeting poorly managed MS SQL servers!

A powerful malware called "CLR SqlShell" is exploiting vulnerable database servers for #cryptocurrency mining and ransomware attacks.

Read: https://thehackernews.com/2023/05/clr-sqlshell-malware-targets-ms-sql.html

🔒 Beware of hypervisor jackpotting! Linux and VMware ESXi systems under attack by the new ransomware-as-service (RaaS) operation MichaelKors.

Read details: https://thehackernews.com/2023/05/new-michaelkors-ransomware-as-service.html

Researchers reveal a powerful backdoor called Merdoor being used by the hacking group Lancefly in their targeted attacks on South and Southeast Asia.

Learn more: https://thehackernews.com/2023/05/researchers-uncover-powerful-backdoor.html

RA Group, a newly emerged ransomware gang, is rapidly expanding its operations, targeting organizations in the U.S. and South Korea.

Read details here: https://thehackernews.com/2023/05/new-ransomware-gang-ra-group-hits-us.html

⚠️ ALERT: Critical security flaws discovered in industrial cellular routers' cloud platforms!

Exploitation could give hackers full control over thousands of devices, posing severe risks to OT networks.

Read deatils here: https://thehackernews.com/2023/05/industrial-cellular-routers-at-risk-11.html

🚨 Threat Alert! A Golang variant of Cobalt Strike, known as Geacon, is drawing attention in the cybersecurity world due to a rise in Geacon payloads on VirusTotal.

Read: https://thehackernews.com/2023/05/hackers-using-golang-variant-of-cobalt.html

While some are part of red-team operations, others exhibit malicious intent.

Water Orthrus group returns, leveraging pay-per-install networks to deploy the new CopperStealth & CopperPhish malware. These are infecting targeted systems with rootkits and deploying phishing kits, respectively.

Learn more about this: https://thehackernews.com/2023/05/water-orthrus-copperstealer-malware.html

🔥 New findings reveal that affiliates associated with the Qilin ransomware-as-a-service scheme earn a staggering 80-85% of 💰 ransom payments.

Read details: https://thehackernews.com/2023/05/inside-qilin-ransomware-affiliates-take.html