⚠️ Warning - Chinese espionage group UNC5221 attacking Ivanti Connect Secure VPN & Policy Secure devices, and using custom web shells like BUSHWALK, CHAINLINE, FRAMESTING, and LIGHTWIRE variant.

Details here → https://thehackernews.com/2024/02/warning-new-malware-emerges-in-attacks.html

Patch ASAP!

Sysadmins, beware!

New HeadCrab 2.0 malware is using fileless techniques to turn Redis servers into a botnet for illegal cryptocurrency mining.

Details here → https://thehackernews.com/2024/02/headcrab-20-goes-fileless-targeting.html

🛡️ U.S. government took down a China-linked 'KV-botnet' malware network that hijacked hundreds of SOHO routers to target critical infrastructure such as power grids and hospitals.

More details here → https://thehackernews.com/2024/02/us-feds-shut-down-china-linked-kv.html

Alert, Docker users! A cryptojacking campaign called "Commando Cat" is exploiting exposed APIs. Secure your instances now.

Learn more → https://thehackernews.com/2024/02/exposed-docker-apis-under-attack-in.html

🔐 Is your vulnerability management program truly effective?

Learn how tracking metrics like cyber hygiene, scan coverage, and risk score can boost 💪 your organization's security.

Get the insights you need: https://thehackernews.com/2024/02/why-right-metrics-matter-when-it-comes.html

🚨 FritzFrog botnet returns, using Log4Shell, memory-resident payloads, and PwnKit to exploit unpatched INTERNAL systems. Employing new tactics to stay hidden and evade detection.

Learn more about FritzFrog → https://thehackernews.com/2024/02/fritzfrog-returns-with-log4shell-and.html

Cloudflare, a web infrastructure company, suffered nation-state attack. Hackers accessed documentation, source code, and attempted data center breach.

Read full story for details: https://thehackernews.com/2024/02/cloudflare-breach-nation-state-hackers.html

🔒 INTERPOL disrupted a massive cybercrime network with 1,900 IP addresses. 70 suspects identified, 31 arrested across Europe, South Sudan, and Zimbabwe.

Details here → https://thehackernews.com/2024/02/interpol-arrests-31-in-global-operation.html

Former CIA software engineer sentenced to 40 years in prison for leaking classified documents to WikiLeaks and possessing child pornography.

Read details: https://thehackernews.com/2024/02/former-cia-engineer-sentenced-to-40.html

🚨 Over 2,000 Ukrainian computers compromised by the DirtyMoe malware, capable of cryptojacking and launching denial-of-service attacks.

Details here → https://thehackernews.com/2024/02/dirtymoe-malware-infects-2000-ukrainian.html

🔥 Russian hacking group APT28, known as Fancy Bear, is using NTLM relay attacks to breach high-value organizations worldwide, including foreign affairs, energy, defense and finance.

Read more: https://thehackernews.com/2024/02/russian-apt28-hackers-targeting-high.html

🚨 URGENT → AnyDesk, a popular remote desktop software, suffered a breach, resulting in the compromise of its production systems.

Here's what you need to do:

✓ Update to the latest version ASAP!
✓ Change your password

Details here: https://thehackernews.com/2024/02/anydesk-hacked-popular-remote-desktop.html

⚡ Mastodon users, beware!

A critical security flaw (CVE-2024-23832) affecting the decentralized social network could allow attackers to impersonate and take over any account.

Find details here → https://thehackernews.com/2024/02/mastodon-vulnerability-allows-hackers.html

U.S. Treasury Department has just imposed sanctions on 6 Iranian officials linked to cyberattacks on critical infrastructure, including a US water treatment plant.

Read details here → https://thehackernews.com/2024/02/us-sanctions-6-iranian-officials-for.html

Cybercriminals are targeting Mexican users with a new variant of the Mispadu banking malware, exploiting a patched Windows SmartScreen bypass flaw.

Read details here: https://thehackernews.com/2024/02/new-mispadu-banking-trojan-exploiting.html

NSO Group's Pegasus spyware targeted nearly 3 dozen journalists, activists, and lawyers in Jordan, raising concerns about privacy violations and government abuse.

Read: https://thehackernews.com/2024/02/pegasus-spyware-targeted-iphones-of.html

60% of cybersecurity incidents are repeats! Learn how combining industry frameworks like NIST & MITRE can help you proactively manage cyber risks & prevent future attacks.

Read: https://thehackernews.com/2024/02/combined-security-practices-changing.html

Threat actor "Patchwork" uses romance scams to spread espionage apps in India and Pakistan. Learn how they infiltrated Android devices with VajraSpy malware.

Read more 👉 https://thehackernews.com/2024/02/patchwork-using-romance-scam-lures-to.html

Tired of juggling cybersecurity tools?

Cato XDR simplifies it all with a SASE-based approach for faster threat detection & response.

See how it works in 20 mins! ➡️ https://thehackernews.com/2024/02/hands-on-review-sase-based-xdr-from.html

A Belarusian-Latvian national linked to the defunct cryptocurrency exchange BTC-e faces up to 25 years in prison for an alleged $4 billion money-laundering scheme.

Learn more about this major cybercrime case: https://thehackernews.com/2024/02/belarusian-national-linked-to-btc-e.html

🌍 U.S. imposes visa restrictions on those (developers, sellers, beneficiaries, and companies) involved in illegal surveillance through commercial spyware like Pegasus.

Learn more: https://thehackernews.com/2024/02/us-imposes-visa-restrictions-on-those.html