🚨 GootLoader malware evolves with new versions, using SEO poisoning and disguised payloads to compromise systems.

Learn about its latest threats and tactics: https://thehackernews.com/2024/07/gootloader-malware-delivers-new.html

🛡️ Webinar Alert: Critical ITDR Capabilities Every Professional Must Know.

Join us to learn about the key features that ensure robust identity protection. Get real-life scenarios and actionable tips.

Register now: https://thehacker.news/securing-digital-identity

Don't miss this exclusive webinar.

Learn about Continuous Threat Exposure Management (CTEM) and how it enhances cybersecurity by improving visibility, vulnerability management, and validation.

Learn more: https://thehackernews.com/2024/07/blueprint-for-success-implementing-ctem.html

⚠️ A recent DDoS attack reached a staggering 840 million packets per second, according to OVHcloud.

MikroTik routers played a significant role, with many compromised devices amplifying the attack.

Read: https://thehackernews.com/2024/07/ovhcloud-hit-with-record-840-million.html

Apple removes 25 VPN apps, incl. ProtonVPN, Red Shield, NordVPN, & Le VPN, from Russian App Store following government request, sparking concerns over digital freedom and escalating censorship.

Read details: https://thehackernews.com/2024/07/apple-removes-vpn-apps-from-russian-app.html

Four unpatched Gogs Git flaws (CVE-2024-39930 to 39933) let attackers breach instances, steal/modify code, or plant backdoors.

Read more: https://thehackernews.com/2024/07/critical-vulnerabilities-disclosed-in.html

~7,300 exposed instances; 60% in China. Users urged to disable SSH and registration.

Experts report a surge in Mekotio trojan attacks in Latin America. It installs via MSI files and AHK scripts, stealing banking information through fake pop-ups, keystroke logging, and screenshots.

Learn more: https://thehackernews.com/2024/07/experts-warn-of-mekotio-banking-trojan.html

Cybersecurity Disconnect — Only 5% of CISOs report to CEOs; 2/3 are 2 levels down.

Learn key strategies for CISOs to bridge the communication gap with boards, justify cybersecurity budgets, and report risks effectively.

Read: https://thehackernews.com/2024/07/5-key-questions-cisos-must-ask.html

Eldorado, a new ransomware-as-a-service (RaaS), targets Windows and Linux systems using Golang, Chacha20, and RSA-OAEP for encryption.

Learn about its capabilities, victims, and the growing ransomware landscape: https://thehackernews.com/2024/07/new-ransomware-as-service-eldorado.html

🚨 Analysis of malware logs on the dark web uncovered 3,300+ users child abuse material consumers. Notably, 4.2% had multiple credentials, indicating persistent offenders.

Read: https://thehackernews.com/2024/07/dark-web-malware-logs-expose-3300-users.html

New APT group CloudSorcerer targets Russian govt entities using #Microsoft Graph, Yandex Cloud, & Dropbox for C2, with GitHub as an initial C2 server, adapting its behavior dynamically based on host processes like mspaint.exe.

Learn more: https://thehackernews.com/2024/07/new-apt-group-cloudsorcerer-targets.html

Unknown threat actors are spreading trojanized jQuery via npm, GitHub, and jsDelivr in a complex supply chain attack.

Malware hides in the seldom-used 'end' function of jQuery, used by 'fadeTo'.

Learn more: https://thehackernews.com/2024/07/trojanized-jquery-packages-found-on-npm.html

🌏 Global cybersecurity agencies warn about China-linked APT40's rapid exploit adaptation, targeting vulnerabilities in widely-used software across multiple countries.

Learn more: https://thehackernews.com/2024/07/cybersecurity-agencies-warn-of-china.html

🚨 Ongoing GuardZoo surveillance targets Middle East military via Android malware. Initiated Oct '19 by Houthi-aligned group, over 450 victims in Yemen, Egypt, Oman, Qatar, Saudi Arabia, Turkey, UAE.

Learn more: https://thehackernews.com/2024/07/guardzoo-malware-targets-over-450.html

Researchers reveal Jenkins Script Console vulnerability exploited for crypto mining. Learn about the risks and how to protect your CI/CD infrastructure.

Learn more: https://thehackernews.com/2024/07/hackers-exploiting-jenkins-script.html

⚠️ New BlastRADIUS flaw in RADIUS protocol allows MitM attacks, bypassing integrity checks.

Attackers can modify Access-Request packets undetected, forcing user auth.

https://thehackernews.com/2024/07/radius-protocol-vulnerability-exposes.html

ISPs & orgs must update RADIUS servers, use TLS/IPSec, and avoid PAP/CHAP methods.

🛠️ Discover the security and privacy risks of leading customer service chatbots with the new Exposure Rating tool—an advanced risk assessment for your website!

Learn more: https://thehackernews.com/expert-insights/2024/07/9-customer-service-chatbots-ranked-for.html

🚨 New OpenSSH vulnerability (CVE-2024-6409) found in RHEL 9's versions 8.7p1 & 8.8p1, allowing RCE via race condition in privsep child process.

Read: https://thehackernews.com/2024/07/new-openssh-vulnerability-discovered.html

⚠️ Active exploits detected! This bug is distinct from CVE-2024-6387 but shares similarities.

Crypto analysts expose HuiOne Guarantee, a key platform for cybercriminals in SE Asia.

Linked to $11B in transactions, HuiOne offers money laundering, tech, & data services, supporting pig butchering scams.

Read: https://thehackernews.com/2024/07/crypto-analysts-expose-huione.html

Microsoft's latest Patch Tuesday update addresses 143 security flaws, with 2 already under active exploitation. Critical vulnerabilities include issues in Hyper-V and MSHTML.

Timely updates can prevent significant security incidents. Experts stress the importance of regular updates and vigilance.

Find details here: https://thehackernews.com/2024/07/microsofts-july-update-patches-143.html

ITDR is revolutionizing identity protection in the fight against ransomware.

Identity protection lags 20 years behind, but ITDR provides comprehensive coverage and real-time threat mitigation.

Learn more: https://thehackernews.com/2024/07/true-protection-or-false-promise.html

Have you evaluated your ITDR solutions recently? Don't wait until it's too late.