VMware releases critical patches for several products affected by a new set of vulnerabilities (CVE-2022-22954 to CVE-2022-22961), some of which could be exploited for RCE attacks.

Read details: https://thehackernews.com/2022/04/vmware-releases-critical-patches-for.html

Cybersecurity researchers have uncovered a "simple but efficient" persistence mechanism used by a relatively nascent malware loader called Colibri.

Read details: https://thehackernews.com/2022/04/researchers-uncover-how-colibri-malware.html

SharkBot banking trojan has resurfaced on the Google Play Store, disguised as antivirus apps installed by thousands of Android users.

Read: https://thehackernews.com/2022/04/sharkbot-banking-trojan-resurfaces-on.html

Researchers uncover details of a Hamas-linked hacking campaign targeting a group of high-level Israeli targets working for sensitive defense, law enforcement and emergency services organizations.

Details: https://thehackernews.com/2022/04/hamas-linked-hackers-targeting-high.html

Researchers have discovered what is believed to be the first malware targeting Amazon Web Services' (AWS) serverless platform Lambda.

Read details: https://thehackernews.com/2022/04/first-malware-targeting-aws-lambda.html

A number of malicious Android apps on the Google Play Store have infected the devices of thousands of users with Octo banking trojan that targets banks and other financial institutions.

Read details: https://thehackernews.com/2022/04/new-octo-banking-trojan-spreading-via.html

Microsoft has obtained a court order to take control of 7 domains used by the state-sponsored Russian hacking group APT28 to neutralize its attacks on Ukraine.

Read details: https://thehackernews.com/2022/04/microsoft-obtains-court-order-to-take.html

Ukrainian national who was part of the FIN7 hacking group has been sentenced to five years in prison for compromising tens of millions of debit and credit cards.

https://thehackernews.com/2022/04/ukrainian-fin7-hacker-gets-5-year.html

Researchers have uncovered further links between the BlackCat (aka AlphaV) and BlackMatter ransomware families.

Read details: https://thehackernews.com/2022/04/researchers-connect-blackcat-ransomware.html

Researchers have traced cyberattacks on Indian power grid organizations to a state-sponsored hacking group in China.

Read details: https://thehackernews.com/2022/04/chinese-hacker-groups-continue-to.html

Hackers are exploiting recently disclosed critical Spring4Shell vulnerability to execute the Mirai botnet.

Read details: https://thehackernews.com/2022/04/hackers-exploiting-spring4shell.html

“The second Tuesday of every month will be 'just another Tuesday.”

Microsoft to launch a new feature with the release of Windows 10/11 Enterprise E3 — called Autopatch — to help companies automatically keep their systems up-to-date.

Details: https://thehackernews.com/2022/04/microsofts-new-autopatch-feature-to.html

Cybersecurity researchers warn against two different information-stealing malware, named "FFDroider" and "Lightning" Stealer, which are capable of siphoning off data and launching further attacks.

Details: https://thehackernews.com/2022/04/researchers-warn-of-ffdroider-and.html

Parrot Traffic Direction System (TDS) is leveraging over 16,500 compromised websites to spread various malware families, including Campo Loader, Hancitor, IcedID, QBot, Buer Loader, and SocGholish.

https://thehackernews.com/2022/04/over-16500-sites-hacked-to-distribute.html

Google is taking legal action against a scammer who runs fraudulent websites to trick unsuspecting people into buying non-existent puppies.

Read details: https://thehackernews.com/2022/04/google-sues-scammer-for-running-puppy.html

Maintainers of the NGINX web server project have published workarounds to address a publicly discussed potential zero-day #vulnerability affecting the LDAP Reference Implementation.

Read details: https://thehackernews.com/2022/04/nginx-shares-mitigations-for-zero-day.html

At least five senior European Union officials were reportedly targeted with NSO Group's Pegasus surveillance tool.

Read details: https://thehackernews.com/2022/04/eu-officials-reportedly-targeted-with.html

Researchers have reported a critical LFI vulnerability in the developer-focused blogging platform Hashnode that could have let attackers to access sensitive data such as SSH keys, the server's IP address, and other network information.

Read: https://thehackernews.com/2022/04/critical-lfi-vulnerability-reported-in.html

Microsoft releases April 2022 Patch Tuesday updates to fix a total of 128 new flaws.

Read: https://thehackernews.com/2022/04/microsoft-issues-patches-for-2-windows.html

10 of them are classified as critical, 115 as important and three as moderate, with one #vulnerability already publicly known and another being actively exploited.

Law enforcement agencies have raided and seized the site and user database of RaidForums, one of the most notorious hacking forums that sell access to hacked personal data.

Read: https://thehackernews.com/2022/04/fbi-europol-seize-raidforums-hacker.html

A forum administrator and his two accomplices have also been arrested.