Nation-state hacking groups aligned with China, Iran, North Korea, and Turkey have been targeting journalists in a series of campaigns to spy on them.

Read: https://thehackernews.com/2022/07/state-backed-hackers-targeting.html

Researchers warn of a new malware campaign by Pakistani "Transparent Tribe" hackers targeting students at educational institutions in India.

Read: https://thehackernews.com/2022/07/pakistani-hackers-targeting-indian.html

A former programmer at CIA has been found guilty of leaking a trove of classified hacking tools and exploits dubbed "Vault 7" to WikiLeaks.

Read: https://thehackernews.com/2022/07/former-cia-engineer-convicted-of.html

Mantis botnet was behind the largest HTTPS distributed denial-of-service (DDoS) attack in June 2022, targeting thousands of Cloudflare-powered websites.

Read: https://thehackernews.com/2022/07/mantis-botnet-behind-largest-https-ddos.html

North Korea-based hackers have been linked to cyberattacks targeting small and medium-sized businesses with the H0lyGh0st ransomware.

Read: https://thehackernews.com/2022/07/north-korean-hackers-targeting-small.html

A team of academic researchers has warned of a novel cache-based side-channel deanonymization attack that could be used to defeat anonymity protections and identify a unique website visitor.

Read: https://thehackernews.com/2022/07/new-cache-side-channel-attack-can-de.html

A new vulnerability in "Netwrix Auditor," used by thousands of organizations, could allow attackers to execute arbitrary code on affected devices and compromise Active Directory domains.

Read: https://thehackernews.com/2022/07/new-netwrix-auditor-bug-could-let.html

VoIP phones using Digium's software have been targeted to drop a web shell on their servers as part of an attack campaign aimed at exfiltrating data by downloading and executing additional payloads.

Read: https://thehackernews.com/2022/07/hackers-targeting-voip-servers-by.html

Juniper Networks has released security patches to address several vulnerabilities in Junos OS, Contrail Networking and other products, some of which can be exploited to take control of affected systems.

Read: https://thehackernews.com/2022/07/juniper-releases-patches-for-critical.html

Google has removed the Android app permissions list from the Play Store and instead created a new "Data Safety" section where developers can tell users themselves how their data will be used.

https://thehackernews.com/2022/07/google-removes-app-permissions-list.html

Hackers distributing malicious "password cracking software" for Programmable Logic Controllers (PLCs) and Human-Machine Interfaces (HMIs) to trick operators and industrial engineers into installing Sality malware on critical systems.

Read: https://thehackernews.com/2022/07/hackers-distributing-password-cracking.html

Researchers have raised the alarm about a "sudden" spike in cyberattacks attempting to exploit an unpatched vulnerability in one of the WordPress Page Builder plugin.

Read details: https://thehackernews.com/2022/07/experts-notice-sudden-surge-in.html

Pegasus spyware was used to hack into the devices of dozens of pro-democracy activists in Thailand as part of an extensive espionage operation.

Read details: https://thehackernews.com/2022/07/pegasus-spyware-used-to-hack-devices-of.html

FirmwareBleed — A new study has highlighted an " industry failure" to adopting mitigations for "Speculative Execution" attacks released by AMD and Intel, posing a firmware supply chain threat.

Read details: https://thehackernews.com/2022/07/new-study-finds-most-enterprise-vendors.html

FBI has warned of cyber criminals spreading rogue cryptocurrency apps to defraud investors in the virtual asset space.

It is estimated that the illicit scheme netted 244 victims and caused $42.7 million in losses.

Read: https://thehackernews.com/2022/07/fbi-warns-of-fake-cryptocurrency-apps.html

Researchers uncover dozens of Android applications distributed through the Google Play Store that infect users' smartphones with the Joker, Facestealer, and Coper #malware families.

Read: https://thehackernews.com/2022/07/several-new-play-store-apps-spotted.html

Researchers demonstrated a new Air-Gap attack, dubbed "SATAn," wherein attackers can use SATA cable as a wireless antenna to transmit radio signals from isolated systems without wireless connectivity.

Details: https://thehackernews.com/2022/07/new-air-gap-attack-uses-sata-cable-as.html

Researchers uncover a new macOS spyware, dubbed "CloudMensis" that uses cloud storage as a C&C channel to exfiltrate documents, keystrokes, and screen captures from compromised #Apple devices.

Read details: https://thehackernews.com/2022/07/experts-uncover-new-cloudmensis-spyware.html

Russian state-sponsored APT29 hackers taking advantage of legitimate cloud services such as Google Drive and Dropbox to deliver malicious payloads to compromised systems.

Read details: https://thehackernews.com/2022/07/russian-hackers-using-dropbox-and.html

Russian hackers tricked pro-Ukrainian hacktivists into installing Android malware by distributing it as tools to launch DDoS attacks against Russian websites.

Details: https://thehackernews.com/2022/07/russian-hackers-tricked-ukrainians-with.html