New TrickMo variant uses advanced evasion to steal credentials & intercept 2FA codes.

It deploys fake login screens, keylogging, & screen recording to target banking users.

https://thehackernews.com/2024/09/trickmo-android-trojan-exploits.html

It also exploits #Android's Accessibility Services for full device control.

A 17-year-old was arrested after launching a #cyberattack on TfL, exposing the sensitive data of thousands.

This isn't an isolated event—groups like Scattered Spider are exploiting cloud infrastructures, especially in finance and insurance.

Read: https://thehackernews.com/2024/09/17-year-old-arrested-in-connection-with.html

Phishing causes over 80% of unauthorized access. Traditional defenses, like MFA, are vulnerable as attackers bypass them. Beyond Identity’s deterministic security eliminates phishable credentials like passwords and OTPs for stronger protection.

https://thehackernews.com/2024/09/say-goodbye-to-phishing-must-haves-to.html

🚨 CVE-2024-40865, aka GAZEploit, is a new #vulnerability in Apple's Vision Pro headset.

It lets attackers infer virtual keyboard inputs by analyzing eye movements, risking #privacy breaches.

Read: https://thehackernews.com/2024/09/apple-vision-pro-vulnerability-exposed.html

🚨 A newly patched security flaw in Ivanti CSA (CVE-2024-8190) is under active exploitation.

This vulnerability could lead to full system compromise, especially since Ivanti CSA 4.6 has reached end-of-life.

Don’t risk your infrastructure—upgrade to CSA 5.0 and ensure you're protected.

Details here: https://thehackernews.com/2024/09/ivanti-warns-of-active-exploitation-of.html

⚠️ Cybersecurity experts have flagged a new phishing method that manipulates HTTP refresh headers to deliver spoofed login pages and steal credentials.

Learn more: https://thehackernews.com/2024/09/cybercriminals-exploit-http-headers-for.html

Apple has voluntarily dismissed its lawsuit against spyware vendor NSO Group, citing concerns over exposing critical threat intelligence.

Learn more: https://thehackernews.com/2024/09/apple-drops-spyware-case-against-nso.html

🚨 A vulnerability called CloudImposer could have enabled attackers to exploit Google Cloud Composer using dependency confusion for remote code execution.

A successful attack would have allowed code execution and exfiltration of sensitive data, threatening cloud environments globally.

Google has patched this issue, but the incident highlights the ongoing risk of supply chain attacks.

Learn more: https://thehackernews.com/2024/09/google-fixes-gcp-composer-flaw-that.html

⚠️ North Korean hackers are using LinkedIn to spread RustDoor malware, posing as crypto recruiters to target professionals.

They trick victims into downloading booby-trapped coding tests, with macOS backdoor.

Read: https://thehackernews.com/2024/09/north-korean-hackers-target.html

🚨 PCI DSS v4 Deadline Approaching – Are You Ready?

PCI DSS v4.0 prioritizes monitoring payment page scripts. Sections 6.4.3 & 11.6.1 require vigilance on script integrity to block malicious injections.

https://thehackernews.com/2024/09/master-your-pci-dss-v4-compliance-with.html

⏳ Don’t wait—enable real-time monitoring now.

SolarWinds just released critical patches for Access Rights Manager (ARM) vulnerabilities, including one rated 9.0/10 for remote code execution (CVE-2024-28991).

Read: https://thehackernews.com/2024/09/solarwinds-issues-patch-for-critical.html

If you're using ARM, patch now to prevent future attacks.

🚨 Alert: Binance warns of a global clipper #malware threat targeting #cryptocurrency users, intercepting wallet addresses to divert funds to rogue wallets. Significant financial losses reported.

Read: https://thehackernews.com/2024/09/binance-warns-of-rising-clipper-malware.html

Be cautious when downloading apps or plugins!

24 BILLION leaked credentials are driving cyberattacks on SaaS apps, outpacing security teams. MFA isn’t enough—attackers are bypassing it. Tailored SaaS threat intelligence is now essential.

Learn more: https://thehackernews.com/expert-insights/2024/09/how-does-threat-intelligence-apply-to.html

Act now before it’s too late!

🚨 Meta will soon start using public Facebook and Instagram content from U.K. users to train its generative AI models. Users will be notified via in-app prompts and can opt out if they don't want their data used for AI training.

Read: https://thehackernews.com/2024/09/meta-to-train-ai-models-using-public-uk.html

🔐 The U.S. Department of the Treasury sanctions key Intellexa executives behind Predator #spyware, a tool reportedly targeting Angola, the DRC, and Saudi Arabia using new evasion tactics.

Learn more: https://thehackernews.com/2024/09/us-treasury-sanctions-executives-linked.html

Connecting your org’s Google Drive to #ChatGPT grants broad permissions across shared drives, posing cybersecurity risks.

Learn how to track ChatGPT activity in Google Workspace and how Nudge Security can enhance visibility into genAI integrations.

Read: https://thehackernews.com/2024/09/how-to-investigate-chatgpt-activity-in.html

🔒 Google Chrome will switch from KYBER to ML-KEM for quantum-safe encryption in November 2024. As quantum computing becomes more feasible, the encryption landscape is shifting.

Also read about EUCLEAK vulnerability impacts YubiKey devices: https://thehackernews.com/2024/09/google-chrome-switches-to-ml-kem-for.html

⚠️ Critical VMware vCenter vulnerability (CVE-2024-38812) may allow remote code execution. Cybercriminals can exploit it with crafted packets, posing serious risks.

Learn more: https://thehackernews.com/2024/09/patch-issued-for-critical-vmware.html

Make sure you’re not the next victim—patch your systems today.

GSMA is bringing end-to-end encryption (E2EE) to the RCS protocol, ensuring secure messaging between Android and iOS users.

Read: https://thehackernews.com/2024/09/gsma-plans-end-to-end-encryption-for.html

Google Chrome's latest update enhances user privacy and security with improved Safety Check, one-time permissions, and easier notification management.

Learn more: https://thehackernews.com/2024/09/chrome-introduces-one-time-permissions.html

North Korean cyber-espionage group UNC2970 is now targeting aerospace and energy sectors using job-themed phishing lures to deliver a new backdoor, MISTPEN.

Learn more about the techniques: https://thehackernews.com/2024/09/north-korean-hackers-target-energy-and.html