New Go-Based "GoTrim" Botnet Threatens WordPress Sites: Protect Your Admin Account Now!

Details: https://thehackernews.com/2022/12/new-gotrim-botnet-attempting-to-break.html

FBI has charged 6 individuals and seized 48 domains linked to DDoS-for-hire service platforms.

Read: https://thehackernews.com/2022/12/fbi-charges-6-seizes-48-domains-linked.html

Have you heard about how attackers can use SVG files to secretly sneak QBot malware onto Windows systems?

Read this report for more details: https://thehackernews.com/2022/12/hacking-using-svg-files-to-smuggle-qbot.html

Open source repositories under attack: hackers flood NuGet, NPM, and PyPi with over 144,000 malicious packages

Details: https://thehackernews.com/2022/12/hackers-bombard-open-source.html

MoneyMonger!

Be on alert for a new Android malware campaign using money-lending apps to blackmail victims with stolen personal information.

Read: https://thehackernews.com/2022/12/android-malware-campaign-leverages.html

Windows users, beware!

Microsoft has reclassified SPNEGO Extended Negotiation Security vulnerability as CRITICAL because it can be exploited to perform RCE attacks via Windows app protocols that use authentication, such as HTTP, SMB, and RDP.

https://thehackernews.com/2022/12/microsoft-reclassifies-spnego-extended.html

GitHub is making its secret scanning service available for free to all public repositories and also plans to require 2-factor authentication for "distinct groups of users."

Read: https://thehackernews.com/2022/12/github-announces-free-secret-scanning.html

U.S. cybersecurity agency CISA has added two critical vulnerabilities in Veeam Backup & Replication software to its list of known exploited vulnerabilities, as they are actively being exploited in attacks.

Details: https://thehackernews.com/2022/12/cisa-alert-veeam-backup-and-replication.html

NIST has formally retired the widely used 27-year-old SHA-1 cryptographic algorithm, bringing cryptographic security into the modern age.

Read: https://thehackernews.com/2022/12/goodbye-sha-1-nist-retires-27-year-old.html

Microsoft has identified a cross-platform botnet malware that is targeting private Minecraft servers with DDoS attacks.

Details: https://thehackernews.com/2022/12/minecraft-servers-under-attack.html

Chinese MirrorFace APT hacker group has been blamed for a malicious campaign aimed at Japanese political entities.

Read: https://thehackernews.com/2022/12/researchers-uncover-mirrorface-cyber.html

A former Twitter employee has been sentenced to three and a half years in prison for spying on data about certain individuals and passing it on to the Saudi government.

Read: https://thehackernews.com/2022/12/ex-twitter-employee-gets-35-years-jail.html

Researchers have uncovered a new cyberattack campaign targeting Ukrainian government entities via trojanized Windows 10 operating system installers to perform post-exploitation activities.

Read: https://thehackernews.com/2022/12/trojanized-windows-10-installer-used-in.html

Multiple high-severity vulnerabilities [CVE-2022-38023, CVE-2022-37966, CVE-2022-37967, CVE-2022-45141] have been discovered in Samba software that could potentially allow hackers to gain control of the affected systems.

Read: https://thehackernews.com/2022/12/samba-issues-security-updates-to-patch.html

🔥 Gmail just got a whole lot more secure with Google's new Client-Side Encryption!

With the new feature, emails are encrypted on your end before they are sent, providing an extra layer of protection against cyberattacks and surveillance.

https://thehackernews.com/2022/12/gmail-encryption.html

#privacy #tech

Facebook has taken steps to disrupt accounts and infrastructure operated by spyware vendors from a number of countries, including the United States, China, Russia, Israel, and India, targeting individuals in about 200 countries.

Read: https://thehackernews.com/2022/12/facebook-cracks-down-on-spyware-vendors.html

Agenda ransomware joins the growing list of malware strains written in cross-platform Rust programming language.

Read: https://thehackernews.com/2022/12/new-agenda-ransomware-variant-written.html

Despite Google's efforts to disrupt the blockchain-based Glupteba botnet in the past, the operators resurfaced in June 2022 with a new and more sophisticated malware campaign.

Read: https://thehackernews.com/2022/12/glupteba-botnet-continues-to-thrive.html

A malicious PyPI package pretending to be an SDK for SentinelOne has been discovered, leading to a data theft campaign called SentinelSneak.

Read details: https://thehackernews.com/2022/12/researchers-discover-malicious-pypi.html

New findings suggest that the KmsdBot botnet is potentially acting as a DDoS-for-hire service for cybercriminals.

READ: https://thehackernews.com/2022/12/kmsdbot-botnet-suspected-of-being-used.html