Attention developers! Lolip0p, a threat actor, has uploaded rogue packages to the PyPI repository with the goal of dropping malware on compromised systems.

Read: https://thehackernews.com/2023/01/researchers-uncover-3-pypi-packages.html

🔥 Don't wait until it's too late!

Zoho ManageEngine users, patch your instances now to avoid falling victim to critical CVE-2022-47966 vulnerability.

Details: https://thehackernews.com/2023/01/zoho-manageengine-poc-exploit-to-be.html

Researchers are about to release PoC exploit code.

Researchers have demonstrated that GitHub Codespaces, a widely used development environment, can be abused by cybercriminals to distribute malware.

Read: https://thehackernews.com/2023/01/hackers-can-abuse-legitimate-github.html

Researchers have discovered severe SSRF vulnerabilities in 4 Microsoft Azure services, which could have potentially enabled cybercriminals to gain unauthorized access to critical cloud resources.

Read: https://thehackernews.com/2023/01/microsoft-azure-services-flaws-couldve.html

Unlock the power of automation to supercharge your SOC!

Learn about the 4 key phases for expanding coverage and how automation can shorten investigation and triage processes, and automatically respond to known threats.

Read: https://thehackernews.com/2023/01/4-places-to-supercharge-your-soc-with.html

⚡ CISA Alerts - New security vulnerabilities found in Industrial Control Systems (ICS) from Siemens, GE Digital and Contec.

Read: https://thehackernews.com/2023/01/cisa-warns-of-flaws-in-siemens-ge.html

U.S. cybersecurity agency urges immediate action to protect against potential security breaches.

Attention Git users — Critical vulnerabilities have been identified in the Git source code version control system that could enable RCE attacks.

Read: https://thehackernews.com/2023/01/git-users-urged-to-update-software-to.html

Software updates have been released to address the issue. Don't wait, update now!

Network security alert!

New critical vulnerabilities have been found in Netcomm and TP-Link routers that could potentially lead to remote code execution attacks.

Read details: https://thehackernews.com/2023/01/critical-security-vulnerabilities.html

Update your router's firmware to the latest version to protect your network.

Researchers uncover a new wave of "BackdoorDiplomacy" malware attacks targeting Iranian government entities.

Read details: https://thehackernews.com/2023/01/iranian-government-entities-under.html

An ongoing cyber attack campaign, known as "Earth Bogle," is using geopolitical lures in combination with cloud storage, social media, and phishing emails to deliver the NjRAT trojan to victims in the Middle East and North Africa.

Read: https://thehackernews.com/2023/01/earth-bogle-campaign-unleashes-njrat.html

Buckle up, Mailchimp users!

Another security breach has hit the popular email marketing service, compromising over 100 customers' information through internal support and account admin tools.

Read details: https://thehackernews.com/2023/01/mailchimp-suffers-another-security.html

U.S. DoJ announces the arrest of Anatoly Legkodymov, the co-founder of Hong Kong-based #cryptocurrency exchange Bitzlato, for aiding criminals, including ransomware attackers and drug trafficking.

Read details: https://thehackernews.com/2023/01/bitzlato-crypto-exchange-founder.html

A new study by cybersecurity experts shows that analyzing metadata of malicious LNK files can elp identify relationships b/w threat actors.

Read: https://thehackernews.com/2023/01/new-research-delves-into-world-of.html

LNK files have become a popular method for initial access to deliver & execute malware payloads.

Another day, another vulnerability!

Researchers have uncovered a new vulnerability affecting multiple services related to Microsoft Azure, which could result in RCE attacks, data theft, and lateral movement within Azure services.

https://thehackernews.com/2023/01/new-microsoft-azure-vulnerability.html

Researchers are warning of a new Chinese #malware called "BOLDMOVE" that exploited a recently discovered vulnerability in Fortinet FortiOS SSL-VPN (CVE-2022-42475) as a zero-day to attack government entities & managed service providers.

https://thehackernews.com/2023/01/new-chinese-malware-spotted-exploiting.html

Big fines for WhatsApp!

Irish Data Protection Commission imposed a €5.5 million penalty for violating data protection laws when processing users' personal information.

Details: https://thehackernews.com/2023/01/whatsapp-hit-with-55-million-fine-for.html

Russian state-sponsored cyber espionage group Gamaredon is back and targeting Ukraine's military and law enforcement entities through Telegram.

Read: https://thehackernews.com/2023/01/gamaredon-group-launches-cyberattacks.html

Beware of 'Roaming Mantis' cybercriminals spreading an updated version of its mobile malware, called "Wroba", — it now hijacks DNS settings of connected Wi-Fi routers for malicious attacks.

Read details: https://thehackernews.com/2023/01/roaming-mantis-spreading-mobile-malware.html

Researchers have successfully shut down a large-scale AD fraud scheme known as VASTFLUX, which targeted a total of 11 million devices and involved over 1,700 spoofed apps.

Details: https://thehackernews.com/2023/01/massive-ad-fraud-scheme-targeted-over.html

New findings indicate that the Sliver C2 framework is gaining popularity among threat actors as a versatile alternative to traditional C2 tools such as Cobalt Strike and Metasploit.

Read details: https://thehackernews.com/2023/01/threat-actors-turn-to-sliver-as-open.html