North Korea's Kimsuky group, a.k.a APT43, wields spear-phishing campaigns and is leveraging social engineering to compromise high-value targets. Your inbox could be the next battlefield.

Stay informed: https://thehackernews.com/2023/06/north-koreas-kimsuky-group-mimics-key.html

🐉 Beware of TinyNote backdoor! Camaro Dragon's latest cyber weapon that bypasses antivirus, uses persistence tactics and multiple server communication methods.

Learn more: https://thehackernews.com/2023/06/camaro-dragon-strikes-with-new-tinynote.html

Heads up, Latin America! A powerful botnet named Horabot is targeting Outlook users with phishing emails, compromising their accounts and spreading phishing emails.

Learn more: https://thehackernews.com/2023/06/new-botnet-malware-horabot-targets.html

Amazon slapped with a $30.8 million fine by the FTC over privacy lapses involving Alexa and Ring. This includes breaching children's privacy laws and granting employees access to private videos.

Read details: https://thehackernews.com/2023/06/ftc-slams-amazon-with-308m-fine-for.html

🔐 Impact of information security cannot be underestimated. The EC-Council Certified CISO Hall of Fame Report highlights the remarkable enhancements and organizational benefits experienced by Certified CISOs.

Check out the full report here: https://thehackernews.com/2023/06/cloud-security-tops-concerns-for.html

🚨 TrueBot, the notorious downloader trojan botnet, is back! Cybersecurity researchers reveal its latest activity surge, exposing its dangerous capabilities.

Learn more: https://thehackernews.com/2023/06/alarming-surge-in-truebot-activity.html

Beware! Brazilian cybercriminals are targeting online banking users in Mexico, Peru, and Portugal. Find out how they're using sneaky tactics to compromise accounts.

Read details: https://thehackernews.com/2023/06/brazilian-cybercriminals-using-lolbas.html

🚨 Attention online shoppers! Beware of the insidious Magecart-style web skimmer campaign sweeping across e-commerce websites! Cybercriminals are exploiting trusted sites to host skimmer code, taking advantage of their good reputation.

Read: https://thehackernews.com/2023/06/magento-woocommerce-wordpress-and.html

Microsoft tracks threat actor Lace Tempest's ongoing exploitation of a critical flaw in Progress Software MOVEit Transfer. The flaw enables hackers to authenticate as any user, leading to data exfiltration.

Learn more: https://thehackernews.com/2023/06/microsoft-lace-tempest-hackers-behind.html

Attention network administrators! Zyxel firewalls under attack!

Act now to prevent a potential DoS attack and remote code execution. Check if your devices are affected and apply the latest patches immediately.

Details: https://thehackernews.com/2023/06/zyxel-firewalls-under-attack-urgent.html

Watch out for SMS phishing scams! PostalFurious, a Chinese-speaking gang, is masquerading as postal services to trick users in the U.A.E.

Learn more: https://thehackernews.com/2023/06/chinese-postalfurious-gang-strikes-uae.html

Cyclops ransomware gang, a stealthy menace targeting Windows, macOS, and Linux, is now offering threat actors an information-stealing malware that captures sensitive data and uploads it to a remote server.

Learn more: https://thehackernews.com/2023/06/cyclops-ransomware-gang-offers-go-based.html

🚨 Heads up, Chrome users! Google has released a security update to fix a new high-severity zero-day vulnerability in its web browser that is being actively exploited by hackers in the wild.

Update your browsers now: https://thehackernews.com/2023/06/zero-day-alert-google-issues-patch-for.html

🚨 Beware Android users! Over 60,000 adware apps have been lurking in the shadows, disguising as cracked versions of your favorite apps. Don't fall for the trap!

Learn more: https://thehackernews.com/2023/06/over-60k-adware-apps-posing-as-cracked.html

The first quarter of 2023 showed a significant increase in Cy-X victims. The reason for this could be linked to the ongoing war in Ukraine.

Join us on Thursday 8th June at 14:00 BST / 15:00 CEST, while we uncover the key learnings, trends, patterns, and threat actors from this unique data set.

https://thn.news/f7SHwKEB

Attention crypto users! Find out how cybercriminals are using the Satacom downloader to steal cryptocurrency through Chromium-based browsers.

Read more: https://thehackernews.com/2023/06/new-malware-campaign-leveraging-satacom.html

PowerDrop, the malware designed to fly under the radar, is targeting the U.S. aerospace industry. Learn how it leverages ICMP messages and WMI services to compromise networks undetected.

Learn more: https://thehackernews.com/2023/06/new-powerdrop-malware-targeting-us.html

Attention parents and gamers! Microsoft settles FTC charges for $20 million over unauthorized collection of children's data on Xbox.

Find out what steps are being taken to protect young players: https://thehackernews.com/2023/06/microsoft-to-pay-20-million-penalty-for.html

Barracuda customers, take note! If you've been affected by the zero-day flaw (CVE-2023-2868) in their Email Security Gateway appliances, it's time to replace them ASAP!

Learn more: https://thehackernews.com/2023/06/barracuda-urges-immediate-replacement.html

North Korean hacking group Kimsuky targets think tanks, academia, and news media in a sophisticated social engineering campaign to steal Google credentials and gather strategic intelligence.

Read details here: https://thehackernews.com/2023/06/kimsuky-targets-think-tanks-and-news.html