🔒 Beware of the Bl00dy Ransomware Gang! U.S. agencies sound the alarm on cyberattacks targeting vulnerable PaperCut servers in the education sector.

Read details: https://thehackernews.com/2023/05/bl00dy-ransomware-gang-strikes.html

BPFDoor, an undetected malware variant, has resurfaced with enhanced evasiveness.

Find out how this Linux backdoor has remained hidden for years, posing a serious threat to compromised environments.

Read details: https://thehackernews.com/2023/05/new-variant-of-linux-backdoor-bpfdoor.html

Attention Netgear RAX30 users! 5 new flaws revealed!

Hackers could hijack your devices, tamper with settings, and control your smart home. Act fast! Update to patch the vulnerabilities.

Read details: https://thehackernews.com/2023/05/netgear-routers-flaws-expose-users-to.html

Greatness is a new phishing-as-a-service platform that enables cybercriminals to more easily target Microsoft 365 users.

Read: https://thehackernews.com/2023/05/new-phishing-as-service-platform-lets.html

Avoid clicking on unfamiliar links or opening suspicious attachments.

Macros out, Follina vulnerability in!

Cybercriminals are using obfuscated PowerShell scripts to exploit this vulnerability and infect systems with XWorm malware.

Read: https://thehackernews.com/2023/05/xworm-malware-exploits-follina.html

A former Ubiquiti employee gets 6-year prison term for posing as a hacker and whistleblower in a $2 million cryptocurrency extortion scheme.

Read: https://thehackernews.com/2023/05/former-ubiquiti-employee-gets-6-years.html

Beware of the new campaign targeting poorly managed MS SQL servers!

A powerful malware called "CLR SqlShell" is exploiting vulnerable database servers for #cryptocurrency mining and ransomware attacks.

Read: https://thehackernews.com/2023/05/clr-sqlshell-malware-targets-ms-sql.html

🔒 Beware of hypervisor jackpotting! Linux and VMware ESXi systems under attack by the new ransomware-as-service (RaaS) operation MichaelKors.

Read details: https://thehackernews.com/2023/05/new-michaelkors-ransomware-as-service.html

Researchers reveal a powerful backdoor called Merdoor being used by the hacking group Lancefly in their targeted attacks on South and Southeast Asia.

Learn more: https://thehackernews.com/2023/05/researchers-uncover-powerful-backdoor.html

RA Group, a newly emerged ransomware gang, is rapidly expanding its operations, targeting organizations in the U.S. and South Korea.

Read details here: https://thehackernews.com/2023/05/new-ransomware-gang-ra-group-hits-us.html

⚠️ ALERT: Critical security flaws discovered in industrial cellular routers' cloud platforms!

Exploitation could give hackers full control over thousands of devices, posing severe risks to OT networks.

Read deatils here: https://thehackernews.com/2023/05/industrial-cellular-routers-at-risk-11.html

🚨 Threat Alert! A Golang variant of Cobalt Strike, known as Geacon, is drawing attention in the cybersecurity world due to a rise in Geacon payloads on VirusTotal.

Read: https://thehackernews.com/2023/05/hackers-using-golang-variant-of-cobalt.html

While some are part of red-team operations, others exhibit malicious intent.

Water Orthrus group returns, leveraging pay-per-install networks to deploy the new CopperStealth & CopperPhish malware. These are infecting targeted systems with rootkits and deploying phishing kits, respectively.

Learn more about this: https://thehackernews.com/2023/05/water-orthrus-copperstealer-malware.html

🔥 New findings reveal that affiliates associated with the Qilin ransomware-as-a-service scheme earn a staggering 80-85% of 💰 ransom payments.

Read details: https://thehackernews.com/2023/05/inside-qilin-ransomware-affiliates-take.html

Chinese nation-state actor Mustang Panda is utilizing custom firmware implants for TP-Link routers and compromising networks to launch sophisticated attacks.

Find out details here: https://thehackernews.com/2023/05/chinas-mustang-panda-hackers-exploit-tp.html

U.S. DOJ charges a Russian hacker for launching massive ransomware attacks against thousands of victims worldwide and offers a reward of up to $10 million for information leading to his arrest.

Read details here: https://thehackernews.com/2023/05/us-offers-10-million-bounty-for-capture.html

SideWinder, a state-sponsored group, uses a network of phishing domains to target government and financial sectors in Pakistan and China.

Learn about their attack techniques: https://thehackernews.com/2023/05/state-sponsored-sidewinder-hacker.html

🔒 Heads up! Belkin's Wemo Mini Smart Plug V2 has been found to have a critical unpatched vulnerability that could potentially allow remote control by attackers.

Read: https://thehackernews.com/2023/05/serious-unpatched-vulnerability.html

🚨 ALERT: Financially motivated UNC3944 cyber attackers are leveraging Microsoft Azure Serial Console to gain full administrative access to virtual machines!

Learn more about this unique attack method: https://thehackernews.com/2023/05/threat-group-unc3944-abusing-azure.html

OilAlpha, a hacking group with suspected ties to Yemen's Houthi movement, is on the rise. Find out how they're using encrypted chat messengers and link shorteners to launch attacks.

Learn about their tactics: https://thehackernews.com/2023/05/oilalpha-emerging-houthi-linked-cyber.html

🔒 Cisco has released crucial updates to address 9 vulnerabilities in its Small Business Series Switches. Attackers could exploit these flaws remotely to run arbitrary code or cause a DoS.

Read details: https://thehackernews.com/2023/05/critical-flaws-in-cisco-small-business.html

Safeguard Your Network Now!