Macros out, Follina vulnerability in!

Cybercriminals are using obfuscated PowerShell scripts to exploit this vulnerability and infect systems with XWorm malware.

Read: https://thehackernews.com/2023/05/xworm-malware-exploits-follina.html

A former Ubiquiti employee gets 6-year prison term for posing as a hacker and whistleblower in a $2 million cryptocurrency extortion scheme.

Read: https://thehackernews.com/2023/05/former-ubiquiti-employee-gets-6-years.html

Beware of the new campaign targeting poorly managed MS SQL servers!

A powerful malware called "CLR SqlShell" is exploiting vulnerable database servers for #cryptocurrency mining and ransomware attacks.

Read: https://thehackernews.com/2023/05/clr-sqlshell-malware-targets-ms-sql.html

🔒 Beware of hypervisor jackpotting! Linux and VMware ESXi systems under attack by the new ransomware-as-service (RaaS) operation MichaelKors.

Read details: https://thehackernews.com/2023/05/new-michaelkors-ransomware-as-service.html

Researchers reveal a powerful backdoor called Merdoor being used by the hacking group Lancefly in their targeted attacks on South and Southeast Asia.

Learn more: https://thehackernews.com/2023/05/researchers-uncover-powerful-backdoor.html

RA Group, a newly emerged ransomware gang, is rapidly expanding its operations, targeting organizations in the U.S. and South Korea.

Read details here: https://thehackernews.com/2023/05/new-ransomware-gang-ra-group-hits-us.html

⚠️ ALERT: Critical security flaws discovered in industrial cellular routers' cloud platforms!

Exploitation could give hackers full control over thousands of devices, posing severe risks to OT networks.

Read deatils here: https://thehackernews.com/2023/05/industrial-cellular-routers-at-risk-11.html

🚨 Threat Alert! A Golang variant of Cobalt Strike, known as Geacon, is drawing attention in the cybersecurity world due to a rise in Geacon payloads on VirusTotal.

Read: https://thehackernews.com/2023/05/hackers-using-golang-variant-of-cobalt.html

While some are part of red-team operations, others exhibit malicious intent.

Water Orthrus group returns, leveraging pay-per-install networks to deploy the new CopperStealth & CopperPhish malware. These are infecting targeted systems with rootkits and deploying phishing kits, respectively.

Learn more about this: https://thehackernews.com/2023/05/water-orthrus-copperstealer-malware.html

🔥 New findings reveal that affiliates associated with the Qilin ransomware-as-a-service scheme earn a staggering 80-85% of 💰 ransom payments.

Read details: https://thehackernews.com/2023/05/inside-qilin-ransomware-affiliates-take.html

Chinese nation-state actor Mustang Panda is utilizing custom firmware implants for TP-Link routers and compromising networks to launch sophisticated attacks.

Find out details here: https://thehackernews.com/2023/05/chinas-mustang-panda-hackers-exploit-tp.html

U.S. DOJ charges a Russian hacker for launching massive ransomware attacks against thousands of victims worldwide and offers a reward of up to $10 million for information leading to his arrest.

Read details here: https://thehackernews.com/2023/05/us-offers-10-million-bounty-for-capture.html

SideWinder, a state-sponsored group, uses a network of phishing domains to target government and financial sectors in Pakistan and China.

Learn about their attack techniques: https://thehackernews.com/2023/05/state-sponsored-sidewinder-hacker.html

🔒 Heads up! Belkin's Wemo Mini Smart Plug V2 has been found to have a critical unpatched vulnerability that could potentially allow remote control by attackers.

Read: https://thehackernews.com/2023/05/serious-unpatched-vulnerability.html

🚨 ALERT: Financially motivated UNC3944 cyber attackers are leveraging Microsoft Azure Serial Console to gain full administrative access to virtual machines!

Learn more about this unique attack method: https://thehackernews.com/2023/05/threat-group-unc3944-abusing-azure.html

OilAlpha, a hacking group with suspected ties to Yemen's Houthi movement, is on the rise. Find out how they're using encrypted chat messengers and link shorteners to launch attacks.

Learn about their tactics: https://thehackernews.com/2023/05/oilalpha-emerging-houthi-linked-cyber.html

🔒 Cisco has released crucial updates to address 9 vulnerabilities in its Small Business Series Switches. Attackers could exploit these flaws remotely to run arbitrary code or cause a DoS.

Read details: https://thehackernews.com/2023/05/critical-flaws-in-cisco-small-business.html

Safeguard Your Network Now!

In 2022, Apple prevented:

✅ Over $2B in fraudulent transactions.
✅ Rejected 1.7M app submissions for privacy/security violations.
✅ Terminated 428K developer accounts for potential fraud.
✅ Blocked 105K fake developer account creations.
✅ Deactivated 282M bogus customer accounts.
✅ Thwarted 198M fraudulent new accounts.
✅ Blocked 57K untrustworthy apps from illegitimate storefronts.
✅ Reviewed 6.1M app submissions, leading to rejections for spam, copycats, misleading info, hidden features, and privacy violations.
✅ Blocked 147M fraudulent ratings/reviews.
✅ Intercepted 3.9M attempts to install/launch illicitly distributed apps.
✅ Blocked 3.9M stolen credit cards, banned 714K accounts for fraud.
✅ Blocked $2.09B in fraudulent transactions on the App Store.

Read details here: https://thehackernews.com/2023/05/apple-thwarts-2-billion-in-app-store.html

Darknet kingpin pleads guilty! Skynet Market operator pleads guilty in Missouri court, selling financial info of thousands of victims.

Read details here: https://thehackernews.com/2023/05/darknet-carding-kingpin-pleads-guilty.html

⚠️ ALERT: The notorious 8220 Gang strikes again!

They are exploiting a six-year-old critical security flaw in Oracle WebLogic servers to build a botnet for crypto mining.

Read details: https://thehackernews.com/2023/05/8220-gang-exploiting-oracle-weblogic.html

Cyber warfare escalates amidst rising tensions between China and Taiwan. Find out how malicious actors are using phishing lures and trojans to compromise sensitive information.

Details here: https://thehackernews.com/2023/05/escalating-china-taiwan-tensions-fuel.html