Ransomware threat alert! 🔒🚨

U.S. cybersecurity agency has added 5 actively exploited flaws to its CVE catalog, including 3 impacting Veritas Backup Exec Agent software.

Details: https://thehackernews.com/2023/04/cisa-warns-of-5-actively-exploited.html

Apply patches now to secure your network against potential threats.

🔐 Secure your business with Wazuh!

🛡️ This powerful open-source security platform offers threat detection, vulnerability management, compliance, and cloud security!

Discover: https://thehackernews.com/2023/04/protecting-your-business-with-wazuh.html

1 Million+ WordPress Sites Infected💥

Balada Injector malware exploits theme and plugin vulnerabilities to breach sites, steal data, create fake admin accounts, and maintain persistent access.

🔍 Find out more: https://thehackernews.com/2023/04/over-1-million-wordpress-sites-infected.html

Estonian National busted for smuggling U.S. electronics to Russia🔒🇷🇺 , including Metasploit Pro exploitation and hacking tool.

Andrey Shevlyakov faces 20 yrs in prison for evading export restrictions:

Learn more: https://thehackernews.com/2023/04/estonian-national-charged-in-us-for.html

🌐 2023 Cyber Security Trends Revealed!

Learn more: https://thehackernews.com/2023/04/top-10-cybersecurity-trends-for-2023.html

📱 App security
☁️ Cloud security
📲 Mobile security
🏠 IoT
👩‍💻 Remote work
💼 Cyber insurance
🚫 Zero trust & VPNs
🤖 AI
🔍 Attack detection tools
💼 Outsourcing cybersecurity

🚨 Malicious loader apps are being traded on the criminal underground for up to $20,000, used to trojanize Android applications and evade Google Play Store defenses.

🔗 Read More: https://thehackernews.com/2023/04/cybercriminals-turn-to-android-loaders.html

Attention .NET developers!

Cybersecurity researchers have uncovered a sophisticated typosquatting campaign that deployed cryptocurrency stealer malware via 13 malicious NuGet packages.

Read on for details: https://thehackernews.com/2023/04/cryptocurrency-stealer-malware.html

After accessing cloud environments, 92% of critical assets lie just one hop away. 🤯

Protect your organization's valuable assets by implementing effective security measures.

Download this report to learn how: https://thn.news/xm-research-report

🚨 Microsoft and Citizen Lab expose QuaDream spyware! iPhone users targeted by ENDOFDAYS zero-click exploit. Journalists, activists & more at risk.

👉 Read more & share to spread awareness: https://thehackernews.com/2023/04/israel-based-spyware-firm-quadream.html

🚨 PATCH TUESDAY!

Microsoft has released security updates for 97 flaws, including one that's being actively exploited in ransomware attacks.

https://thehackernews.com/2023/04/urgent-microsoft-issues-patches-for-97.html

Other vendors such as Adobe, Apple, Cisco, Google, Linux, Firefox & more have also released patches recently.

🕵️‍♂️ OpenAI launches bug bounty program!

Rewards range from $200 to $20,000 for discovering vulnerabilities in ChatGPT and related systems.

Learn more: https://thehackernews.com/2023/04/chatgpt-security-openais-bug-bounty.html

New Python-based hacking tool "Legion" found being marketed on Telegram! Legion targets a wide range of web services, including email providers, cloud services, server management systems, databases, and payment platforms.

Learn more: https://thehackernews.com/2023/04/new-python-based-legion-hacking-tool.html

Pakistan-based Transparent Tribe hacker group is targeting India's education sector with Crimson RAT, a malware that can exfiltrate data, capture screenshots, and steal credentials.

Read details: https://thehackernews.com/2023/04/pakistan-based-transparent-tribe.html

Lazarus hacker group shifts focus, evolving tools & tactics in operation DeathNote! Now targeting automotive, academic, and defense sectors globally.

Learn more: https://thehackernews.com/2023/04/lazarus-hacker-group-evolves-tactics.html

🔥 WhatsApp introduces a new "Device Verification" feature designed to prevent account takeover attacks.

Learn more: https://thehackernews.com/2023/04/whatsapp-introduces-new-device.html

🔐 Meet the rising cybercriminal gang, "Read The Manual" Locker! Operating as a private RaaS provider, this group has a business-like set-up & sophisticated tactics.

Learn about their unique approach to #ransomware in the latest report: https://thehackernews.com/2023/04/rtm-locker-emerging-cybercrime-group.html

Google launches new initiatives to improve vulnerability management & increase transparency in addressing security threats!

It's forming:
✅ Hacking Policy Council
✅ Exploitation Transparency
✅ Security Research Legal Defense Fund

Read: https://thehackernews.com/2023/04/google-launches-new-cybersecurity.html

U.S. CISA adds two new vulnerabilities to its KEV catalog, warning of active exploitation of Android and Novi Survey flaws.

Malicious apps, signed by China's Pinduoduo, discovered exploiting these Android vulnerability to pilfer user data.

Details: https://thehackernews.com/2023/04/severe-android-and-novi-survey.html

🚨 ALERT: Kodi confirms data breach!

Hackers steal MyBB forum database containing user data and private messages. Over 400K user records were attempted to be sold on the now-defunct BreachForums.

Read details: https://thehackernews.com/2023/04/kodi-confirms-data-breach-400k-user.html

🚨 Heads up! New Zaraza bot credential-stealing malware is on the loose! Spotted on a Russian Telegram hacker channel, it targets 38 web browsers and steals login credentials for bank accounts, crypto wallets, and more.

Read details: https://thehackernews.com/2023/04/new-zaraza-bot-credential-stealer-sold.html