Ukraine's cybersecurity team uncovers Russian Sandworm hacking group's infiltration in Kyivstar since May 2023. A cyber espionage story unfolding.

Read more to see how deep the breach goes: https://thehackernews.com/2024/01/russian-hackers-had-covert-access-to.html

🚨 Alert: Ivanti releases updates for a critical security vulnerability (CVE-2023-39336 / CVSS 9.6) in Endpoint Manager, which poses a risk of remote code execution on vulnerable servers.

Learn more: https://thehackernews.com/2024/01/alert-ivanti-releases-patch-for.html

Orange Spain's RIPE account compromised by Raccoon Stealer malware, leading to a BGP traffic hijacking and significant internet outage.

Learn more: https://thehackernews.com/2024/01/orange-spain-faces-bgp-traffic-hijack.html

🚨 Discovered a hidden secret in your company's source code?

It's time for swift action to protect against data breaches and reputational damage.

Learn how with this latest article on effective secrets management: https://thehackernews.com/2024/01/exposed-secrets-are-everywhere-heres.html

🛡️ Researchers uncover "SpectralBlur," a new macOS backdoor linked to North Korean hackers that can remotely control your system.

Find out more 👉 https://thehackernews.com/2024/01/spectralblur-new-macos-backdoor-threat.html

A new wave of cyber attacks in Albania, orchestrated by an Iranian group, uses a destructive malware named No-Justice.

Discover more about this digital warfare: https://thehackernews.com/2024/01/pro-iranian-hacker-group-targeting.html

🚨 A new cyber espionage campaign targets the Netherlands' telecom and IT sectors. The Türkiye-linked Sea Turtle group is behind these politically motivated attacks.

Learn more: https://thehackernews.com/2024/01/sea-turtle-cyber-espionage-campaign.html

North Korea's cyber units have stolen over $600M in crypto in 2023! This massive heist accounts for 1/3 of all crypto thefts last year.

Learn more: https://thehackernews.com/2024/01/north-koreas-cyber-heist-dprk-hackers.html

U.S. Department of Justice charged 19 individuals connected to the xDedic dark web Marketplace, linked to over $68 million in fraud.

Read details here: https://thehackernews.com/2024/01/doj-charges-19-worldwide-in-68-million.html

⚠️ ALERT: NIST warns of significant privacy and security challenges associated with the increasing deployment of Artificial Intelligence systems.

Learn more: https://thehackernews.com/2024/01/nist-warns-of-security-and-privacy.html

Leadership, listen up! Cybersecurity isn't just tech; it's an evolving strategy. Over 40% of organizations haven't updated their cybersecurity strategy in 2 years.

Explore a holistic approach to digital defense that goes beyond just tech: https://thehackernews.com/2024/01/unifying-security-tech-beyond-stack.html

Syrian-based hacker group Anonymous Arabic releases Silver RAT, a powerful malware enabling hidden attacks. It bypasses security measures and launches stealthy applications.

Read the full story: https://thehackernews.com/2024/01/syrian-hackers-distributing-stealthy-c.html

⚡️ Ditch the old castle-and-moat approach!

Discover the future of cybersecurity with Zero Trust Security. Join our webinar with Zscaler and learn to shield your data like never before.

👨‍💻 Reserve Your Webinar Spot ➜ https://thehackernews.com/2024/01/webinar-leverage-zero-trust-security-to.html

🚨 Beware of YouTube videos offering cracked software! They might lead you to download Lumma malware, stealing your sensitive information.

Learn more: https://thehackernews.com/2024/01/beware-youtube-videos-promoting-cracked.html

Collaboration is key in SaaS applications! But did you know 58% of recent security incidents involve data leakage?

Stay informed on safe sharing practices: https://thehackernews.com/2024/01/why-public-links-expose-your-saas.html

⚠️ Attention Kyocera & QNAP users:

Kyocera addresses dangerous CVE-2023-50916 flaw, preventing unauthorized access. QNAP tackles CVE-2023-39296, safeguarding against crashes.

Read details here: https://thehackernews.com/2024/01/alert-new-vulnerabilities-discovered-in.html

⚠️ Warning: Turkish hackers targeting poorly secured MS SQL servers across the U.S., European Union, and Latin America.

Brace yourself for ransomware deployment!

Learn more: https://thehackernews.com/2024/01/turkish-hackers-exploiting-poorly.html

Beware of Water Curupira! This threat actor is spreading PikaBot, more than a malware loader – it's a gateway to ransomware attacks. It grants attackers remote access to your systems.

Learn more: https://thehackernews.com/2024/01/alert-water-curupira-hackers-actively.html

🚨 CISA warns of 6 actively exploited security flaws

╰┈➤ CVE-2023-27524 in Apache Superset.
╰┈➤ CVE-2023-38203 & CVE-2023-29300 in Adobe ColdFusion.
╰┈➤ CVE-2023-41990 in Apple products.
╰┈➤ CVE-2016-20017 in D-Link devices.
╰┈➤ CVE-2023-23752 in Joomla!

Read: https://thehackernews.com/2024/01/cisa-flags-6-vulnerabilities-apple.html

👨‍💻 Microsoft's latest January 2024 Patch Tuesday updates address 48 security flaws. Two of these flaws are rated Critical, while the rest are marked as Important.

Learn more: https://thehackernews.com/2024/01/microsofts-january-2024-windows-update.html

⚠️ FTC bans Outlogic (formerly X-Mode) from selling sensitive 📍 location data, marking a historic first-ever ban on such information sales.

Learn more: https://thehackernews.com/2024/01/ftc-bans-outlogic-x-mode-from-selling.html