Researchers warn that "insufficient" forensic visibility into Google Cloud Platform could leave organizations blind to potential data exfiltration attacks.

Learn more: https://thehackernews.com/2023/03/experts-reveal-google-cloud-platforms.html

Suspected core members of the DoppelPaymer ransomware group, responsible for numerous large-scale cyberattacks, have been arrested by German and Ukrainian authorities with support of Dutch police & the FBI.

Read: https://thehackernews.com/2023/03/core-members-of-doppelpaymer-ransomware.html

🚨 Heads up, fashionistas!

If you're using the Shein shopping app, beware of a recent bug that has been capturing and transmitting your clipboard contents to a remote server.

Learn more: https://thehackernews.com/2023/03/sheins-android-app-caught-transmitting.html

Recent LastPass breach was caused by a simple mistake - an engineer's failure to update Plex software on his home computer.

Read: https://thehackernews.com/2023/03/lastpass-hack-engineers-failure-to.html

This is a stark reminder of the importance of keeping software up to date to prevent vulnerabilities from being exploited.

🚨 ALERT! If you're using MeetsApp or MeetUp on your Android device, you need to be aware of this!

Pakistani hackers are using these apps to target political and military personalities in India with CapraRAT backdoor.

Learn more: https://thehackernews.com/2023/03/transparent-tribe-hackers-distribute.html

Cybersecurity researchers have discovered a new information stealer, dubbed "SYS01stealer," targeting critical government infrastructure employees, manufacturing companies, and other sectors.

Learn more about it here: https://thehackernews.com/2023/03/sys01stealer-new-threat-using-facebook.html

Chinese cyberespionage hackers are targeting high-profile government entities in Southeast Asia with a new version of the Soul modular framework.

Learn more: https://thehackernews.com/2023/03/sharp-panda-using-new-soul-framework.html

CISA has added 3 more flaws to its Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation:

CVE-2022-35914 - Teclib GLPI RCE
CVE-2022-33891 - Apache Spark Command Injection
CVE-2022-28810 - Zoho ADSelfService Plus RCE

Read: https://thehackernews.com/2023/03/cisas-kev-catalog-updated-with-3-new.html

North Korea-linked Lazarus Group targeted a South Korean financial firm by exploiting a zero-day vulnerability in certificate software.

Learn more: https://thehackernews.com/2023/03/lazarus-group-exploits-zero-day.html

⚡ Severe flaws have been uncovered in the popular Jenkins Automation Server, affecting all versions prior to 2.319.2.

Dubbed "CorePlague," the flaws could lead to code execution attacks and potentially compromise your server completely.

https://thehackernews.com/2023/03/jenkins-security-alert-new-security.html

🚨Attention! Fortinet has released security patches for 15 new flaws, including a critical vulnerability (CVE-2023-25610) affecting FortiOS and FortiProxy that could allow attackers to take control of affected systems.

Details: https://thehackernews.com/2023/03/new-critical-flaw-in-fortios-and.html

8220 Gang hackers are now using a new weapon in their arsenal — ScrubCrypt Crypter — to carry out cryptojacking attacks by exploiting the Oracle WebLogic vulnerability.

Read details: https://thehackernews.com/2023/03/new-scrubcrypt-crypter-used-in.html

Iranian hacking group is posing as a U.S. think tank to target women involved in Middle East political affairs and human rights.

Learn more: https://thehackernews.com/2023/03/iranian-hackers-target-women-involved.html

⚠️Heads up, folks! IceFire, a Windows-based ransomware strain, is now targeting Linux-powered enterprise networks by exploiting a vulnerability in IBM Aspera Faspex file-sharing software.

Learn more: https://thehackernews.com/2023/03/icefire-linux-ransomware.html

Researchers warn of security vulnerabilities in remote desktop programs such as Sunlogin and AweSun being exploited by threat actors to deploy the PlugX malware.

Read details: https://thehackernews.com/2023/03/hackers-exploiting-remote-desktop.html

North Korean hackers using new malware families to target media and technology organizations in the U.S. and Europe.

Learn more: https://thehackernews.com/2023/03/north-korean-unc2970-hackers-expands.html

Cybersecurity experts are warning about a new variant of the Android banking trojan, Xenomorph, which has surfaced with new capabilities to target more than 400 banking and financial institutions.

Read: https://thehackernews.com/2023/03/xenomorph-android-banking-trojan.html

A new China-linked hacking campaign has been observed targeting unpatched devices to drop malware and establish long-term persistence.

Read details: https://thehackernews.com/2023/03/china-linked-hackers-targeting.html

👏 International law enforcement authorities shut down the online infrastructure of the cross-platform NetWire RAT and arrested a Croatian national believed to be the site's administrator.

Learn more: https://thehackernews.com/2023/03/international-law-enforcement-takes.html

Heads up! An updated version of the Prometei modular malware has infected over 10,000 systems globally since Nov 2022 in Brazil, Indonesia, and Turkey.

Learn more: https://thehackernews.com/2023/03/new-version-of-prometei-botnet-infects.html