Iranian government-sponsored hackers have been blamed for compromising a U.S. federal agency by exploiting the Log4Shell vulnerability in an unpatched VMware Horizon server.

Details: https://thehackernews.com/2022/11/iranian-hackers-compromised-us-federal.html

Multiple security vulnerabilities have been reported in F5 BIG-IP and BIG-IQ devices that can be exploited to completely compromise affected systems.

Read: https://thehackernews.com/2022/11/high-severity-vulnerabilities-reported.html

A Ukrainian hacker wanted by the U.S. for more than a decade has been arrested by Swiss authorities for his role in the notorious Zeus cybercrime ring that stole millions of dollars from victims' bank accounts.

https://thehackernews.com/2022/11/fbi-wanted-leader-of-notorious-zeus.html

More than 1,300 companies around the world were attacked by the Hive ransomware-as-a-service (RaaS) scheme, netting the hackers $100 million in illicit payments.

Read: https://thehackernews.com/2022/11/hive-ransomware-attackers-extorted-100.html

LodaRAT malware has resurfaced with new updated variants that are being deployed in conjunction with other sophisticated malware, such as RedLine Stealer and Neshta.

Read: https://thehackernews.com/2022/11/lodarat-malware-resurfaces-with-new.html

Researchers warn about hackers who are constantly distributing new malicious Python packages in an ongoing supply chain attack to spread W4SP stealer #malware.

Read: https://thehackernews.com/2022/11/w4sp-stealer-constantly-targeting.html

Meta reportedly fired or disciplined more than two dozen employees and contractors for allegedly compromising and taking over users' Facebook and Instagram accounts.

Read: https://thehackernews.com/2022/11/meta-reportedly-fires-dozens-of.html

Atlassian has released security patches to address two critical vulnerabilities (CVE-2022-43781 and CVE-2022-43782) affecting Bitbucket Server, Data Center, and Crowd products.

Read: https://thehackernews.com/2022/11/atlassian-releases-patches-for-critical.html

Microsoft researchers warn of an ongoing malware campaign (by DEV-0569) leveraging Google Ads to widely distribute various post-compromise payloads, including Royal ransomware.

Details: https://thehackernews.com/2022/11/microsoft-warns-of-hackers-using-google.html

Chinese Mustang Panda hackers have been linked to a spate of spear-phishing attacks targeting governments, educational institutions, and research facilities around the world.

Details: https://thehackernews.com/2022/11/chinese-mustang-panda-hackers-actively.html

Indian government has released a draft of the much-awaited "Digital Personal #DataProtectionBill 2022," marking the fourth such effort since July 2018.

Details: https://thehackernews.com/2022/11/indian-government-publishes-draft-of.html

Google researchers have identified 34 different cracked versions of the Cobalt Strike hacking toolkit in the wild that are being abused by hackers for malicious purposes.

Read: https://thehackernews.com/2022/11/google-identifies-34-cracked-versions.html

Google has won a lawsuit against two Russian nationals in connection with blockchain-based Glupteba botnet operations.

Read: https://thehackernews.com/2022/11/google-wins-lawsuit-against-russians.html

Daixin team ransomware claims to have compromised AirAsia airline and stolen personal data of 5 million passengers and all employees.

Read: https://thehackernews.com/2022/11/daixin-ransomware-gang-steals-5-million.html

Notorious Emotet malware has returned with renewed vigor as part of a large-volume malspam campaign, dropping payloads like IcedID and Bumblebee.

Details: https://thehackernews.com/2022/11/notorious-emotet-malware-returns-with.html

The U.S. Department of Justice has seized seven domain names linked to a "pig butchering" #cryptocurrency scam in which the fraudsters took more than $10 million from five victims.

Read: https://thehackernews.com/2022/11/us-authorities-seize-domains-used-in.html

Luna Moth gang has invested "significantly" in call centers to target businesses with callback phishing campaigns and extorted hundreds of thousands of dollars from multiple victims in the legal and retail sectors.

Read: https://thehackernews.com/2022/11/luna-moth-gang-invests-in-call-centers.html

Researchers have warned of an emerging Go-based malware called "Aurora Stealer" that is increasingly being used in campaigns to steal sensitive information from compromised hosts.

Read: https://thehackernews.com/2022/11/researchers-warn-of-cyber-criminals.html

Researchers warn against the Windows malware ViperSoftX, which infects users' Chromium-based web browsers with malicious extensions to steal login credentials, clipboard data, and cryptocurrencies.

Read: https://thehackernews.com/2022/11/this-malware-installs-malicious-browser.html

Nighthawk, a nascent and legitimate penetration testing framework with Cobalt Strike-like capabilities, is likely to become the hackers' next favorite post-exploitation tool.

Read: https://thehackernews.com/2022/11/nighthawk-likely-to-become-hackers-new.html