Cisco has just released a security update to fix a critical vulnerability (CVE-2023-20078) in its IP Phone 6800, 7800, 7900, and 8800 Series products.

Learn more: https://thehackernews.com/2023/03/critical-flaw-in-cisco-ip-phone-series.html

Lucky Mouse hackers strike again with a new Linux version of SysUpdate malware toolkit that can now bypass security measures and evade reverse engineering.

Learn more: https://thehackernews.com/2023/03/sysupdate-malware-strikes-again-with.html

A malicious Python package has been found on PyPI containing a fully-featured information stealer and remote access trojan.

Learn more: https://thehackernews.com/2023/03/experts-identify-fully-featured-info.html

Watch out! A new cryptojacking scheme is in town, preying on poorly configured Redis database servers and using the trusted file transfer service transfer[.]sh to sneak in their malicious payloads.

Learn more: https://thehackernews.com/2023/03/new-cryptojacking-campaign-leverages.html

Beware of SCARLETEEL!

The latest cyber attack 🔒👨‍💻 targeting containerized 💻 environments to steal proprietary data and software but using crypto-miner malware to distract defenders.

Learn more: https://thehackernews.com/2023/03/hackers-exploit-containerized.html

China-based hackers Mustang Panda are using a new custom backdoor called MQsTTang in their latest social engineering campaign against European entities.

Learn more: https://thehackernews.com/2023/03/chinese-hackers-targeting-european.html

🚨 ALERT: Royal ransomware is back and targeting U.S. and international organizations!

It infiltrates networks, disables #antivirus software and steals data before deploying ransomware.

Learn how to protect yourself with CISA's latest advisory: https://thehackernews.com/2023/03/us-cybersecurity-agency-raises-alarm.html

Heads up, techies! Experts have uncovered 2 severe vulnerabilities in TPM 2.0 library that could impact billions of devices, including enterprise computers, IoT devices, and embedded systems.

Read: https://thehackernews.com/2023/03/new-flaws-in-tpm-20-library-pose-threat.html

A new ATM #malware strain dubbed FiXS has been observed targeting Mexican banks.

It is hidden inside a not-malicious-looking program, is vendor-agnostic, and is capable of infecting any teller machine that supports CEN/XFS.

Learn more: https://thehackernews.com/2023/03/new-fixs-atm-malware-targeting-mexican.html

Ready to bust the 9 most dangerous myths about file-based attacks?

Join our upcoming WEBINAR and become a hero in the fight against patient zero infections and zero-day security events!

Watch it here: https://thehacker.news/file-based-threats-webinar

⚡ Researchers have discovered new side-channel attacks on the CRYSTALS-Kyber encryption algorithm, which the U.S. government selected last year as a quantum-resistant algorithm.

Learn more: https://thehackernews.com/2023/03/experts-discover-flaw-in-us-govts.html

Researchers warn that "insufficient" forensic visibility into Google Cloud Platform could leave organizations blind to potential data exfiltration attacks.

Learn more: https://thehackernews.com/2023/03/experts-reveal-google-cloud-platforms.html

Suspected core members of the DoppelPaymer ransomware group, responsible for numerous large-scale cyberattacks, have been arrested by German and Ukrainian authorities with support of Dutch police & the FBI.

Read: https://thehackernews.com/2023/03/core-members-of-doppelpaymer-ransomware.html

🚨 Heads up, fashionistas!

If you're using the Shein shopping app, beware of a recent bug that has been capturing and transmitting your clipboard contents to a remote server.

Learn more: https://thehackernews.com/2023/03/sheins-android-app-caught-transmitting.html

Recent LastPass breach was caused by a simple mistake - an engineer's failure to update Plex software on his home computer.

Read: https://thehackernews.com/2023/03/lastpass-hack-engineers-failure-to.html

This is a stark reminder of the importance of keeping software up to date to prevent vulnerabilities from being exploited.

🚨 ALERT! If you're using MeetsApp or MeetUp on your Android device, you need to be aware of this!

Pakistani hackers are using these apps to target political and military personalities in India with CapraRAT backdoor.

Learn more: https://thehackernews.com/2023/03/transparent-tribe-hackers-distribute.html

Cybersecurity researchers have discovered a new information stealer, dubbed "SYS01stealer," targeting critical government infrastructure employees, manufacturing companies, and other sectors.

Learn more about it here: https://thehackernews.com/2023/03/sys01stealer-new-threat-using-facebook.html

Chinese cyberespionage hackers are targeting high-profile government entities in Southeast Asia with a new version of the Soul modular framework.

Learn more: https://thehackernews.com/2023/03/sharp-panda-using-new-soul-framework.html

CISA has added 3 more flaws to its Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation:

CVE-2022-35914 - Teclib GLPI RCE
CVE-2022-33891 - Apache Spark Command Injection
CVE-2022-28810 - Zoho ADSelfService Plus RCE

Read: https://thehackernews.com/2023/03/cisas-kev-catalog-updated-with-3-new.html

North Korea-linked Lazarus Group targeted a South Korean financial firm by exploiting a zero-day vulnerability in certificate software.

Learn more: https://thehackernews.com/2023/03/lazarus-group-exploits-zero-day.html