🚨 Urgent: Thousands of internet-accessible ActiveMQ instances are at risk.

HelloKitty ransomware group is actively exploiting a critical Remote Code Execution (RCE) flaw, CVE-2023-46604, in Apache ActiveMQ.

Find details here ➡️ https://thehackernews.com/2023/11/hellokitty-ransomware-group-exploiting.html

📣 FIRST announces CVSS v4.0, the latest version of the Common Vulnerability Scoring System. Discover how this update addresses critical vulnerabilities.

Details here: https://thehackernews.com/2023/11/first-announces-cvss-40-new.html

🔐 Researchers uncover vulnerabilities in 34 Windows drivers that non-privileged hackers can exploit to take control of your device and execute code.

Read details: https://thehackernews.com/2023/11/researchers-find-34-windows-drivers.html

🕵️‍♂️ Iranian state-backed hackers, MuddyWater, has evolved its tactics. They're now using N-able's Advanced Monitoring Agent in their latest spear-phishing campaign.

Read details: https://thehackernews.com/2023/11/irans-muddywater-targets-israel-in-new.html

Simplify SaaS Security.

Discover, assess, and control your organization's SaaS usage with Wing Security's "Essential SSPM" tool. A freemium model that makes securing your cloud-based operations easy.

Read more: https://thehackernews.com/2023/11/saas-security-is-now-accessible-and.html

Mozi botnet's sudden drop in malicious activity traced back to a mysterious "kill switch."

Read more ➡️ https://thehackernews.com/2023/11/mysterious-kill-switch-disrupts-mozi.html

⚡ Alert: 48 malicious npm packages discovered. They can secretly compromise your system with a reverse shell.

Read details: https://thehackernews.com/2023/11/48-malicious-npm-packages-found.html

🚨 Beware: WhatsApp mods for #Android hiding a dangerous spyware, CanesSpy!

Your phone could be compromised without you knowing.

Find out more: https://thehackernews.com/2023/11/canesspy-spyware-discovered-in-modified.html

⚠️ ALERT: Cybercriminals are using compromised business accounts to lure victims with "revealing photos of young women," distributing NodeStealer malware.

Protect your account, read the full story: https://thehackernews.com/2023/11/nodestealer-malware-hijacking-facebook.html

Discover how predictive AI is shaping the future of cybersecurity. Learn how BlackBerry's Cylance AI is outperforming the competition in malware protection.

Read the article now: https://thehackernews.com/2023/11/predictive-ai-in-cybersecurity-outcomes.html

🚨Kinsing hackers exploit the new Linux flaw, Looney Tunables (CVE-2023-4911), to breach cloud environments for root access.

Read more ➡️ https://thehackernews.com/2023/11/kinsing-actors-exploit-linux-flaw-to.html

🛡️ Google's new "Independent security review" badge in the Play Store's Data safety section will help you identify secure Android apps.

Find out more: https://thehackernews.com/2023/11/google-play-store-introduces.html

Okta discloses that the recent security breach has impacted 134 of its customers. Unauthorized access to session tokens raises concerns about session hijacking.

Details inside: https://thehackernews.com/2023/11/oktas-recent-customer-support-data.html

StripedFly, a stealthy malware posing as a crypto miner, has infected over a million devices worldwide and has flown under the radar for 5 years.

Learn more: https://thehackernews.com/2023/11/stripedfly-malware-operated-unnoticed.html

💰 The U.S. Treasury Department imposes sanctions on Russian woman, Ekaterina Zhdanova, for laundering virtual currency for elites and cybercriminal groups, including Ryuk ransomware.

Learn more: https://thehackernews.com/2023/11/us-treasury-targets-russian-money.html

Google warns of hackers exploiting its Calendar service to host command-and-control (C2) infrastructure.

Learn more: https://thehackernews.com/2023/11/google-warns-of-hackers-absing-calendar.html

Iranian-linked Agonizing Serpens APT group using novel wiper malware and tactics to target Israeli education and tech sectors.

Learn more: https://thehackernews.com/2023/11/iranian-hackers-launches-destructive.html

⚠️ Android Alert! SecuriDropper, a sneaky malware delivery service, outsmarts #Google's latest security measures.

Discover how it slips past defenses: https://thehackernews.com/2023/11/securidropper-new-android-dropper-as.html

🚨 Alert! QNAP releases patches for 2 critical security flaws in NAS operating system. Remote attackers could execute commands via network.

Details here: https://thehackernews.com/2023/11/qnap-releases-patch-for-2-critical.html

Don't wait – update your NAS devices immediately.

Jupyter Infostealer is back with stealthy changes. Cyber attackers use manipulated SEO tactics to trick users into downloading malware and stealing data.

Learn more: https://thehackernews.com/2023/11/new-jupyter-infostealer-version-emerges.html

⚠️ Alert: Critical vulnerabilities discovered in Veeam's IT monitoring platform. Protect your system with the latest fix.

Details here: https://thehackernews.com/2023/11/critical-flaws-discovered-in-veeam-one.html