🔒 U.S. Treasury imposes sanctions on Sinbad, a virtual currency 💰 mixer used by Lazarus Group to launder millions from heists.

Learn more: https://thehackernews.com/2023/11/us-treasury-sanctions-sinbad.html

⚠️ CACTUS ransomware campaign has been observed exploiting vulnerabilities in the Qlik Sense cloud analytics and business intelligence platform for initial access to targeted environments.

Learn more ➥ https://thehackernews.com/2023/11/cactus-ransomware-exploits-qlik-sense.html

🕵️‍♂️💻 WEBINAR ALERT:

Insider threats are a silent danger. Join our expert-led webinar to learn innovative approaches to master application detection and response, safeguarding your IT environment.

Save your seat now ➥ https://thehacker.news/app-detection-response

North Korean hackers have stolen an estimated 💰 $3 BILLION in crypto assets, with $1.7 billion taken in 2022 📈 alone, as a means to bypass sanctions against the country.

Find details here ➥ https://thehackernews.com/2023/11/north-koreas-lazarus-group-rakes-in-3.html

Modern websites rely on 3rd-party apps, but can you trust them with your data?

Traditional antivirus-based approaches aren't enough for web security. A proactive approach is key, reducing false alarms and prioritizing real risks.

Read the report: https://thehackernews.com/2023/11/discover-why-proactive-web-security.html

Goodbye inbox clutter!

#Google introduces RETVec, a powerful multilingual text vectorizer, to enhance #Gmail's ability to detect spam and malicious emails.

It detects character-level manipulations in over 100 languages.

Read here ➥ https://thehackernews.com/2023/11/google-unveils-retvec-gmails-new.html

🔒 🕵️‍♂️ Identifying and categorizing third-party connections is key to understanding security threats.

Discover how SaaS Security Posture Management (SSPM) can shed light on your risks.

Read here ➥ https://thehackernews.com/2023/11/this-free-solution-provides-essential.html

🔐 Discover 7 incredible ways AI is transforming security operations:

✅ Information Management
✅ Malware Analysis
✅ Tool Development
✅ Risk Evaluation
✅ Tabletop Exercises
✅ Incident Response
✅ Threat Intelligence

Learn more ➥ https://thehackernews.com/2023/11/7-uses-for-generative-ai-to-enhance.html

🚨 Urgent: Update your devices ASAP!

Two critical security flaws in iOS, macOS, and Safari are under attack. Learn about CVE-2023-42916 & CVE-2023-42917 and how they can expose your sensitive data while browsing.

Details here ➥ https://thehackernews.com/2023/12/zero-day-alert-apple-rolls-out-ios.html

🚨 Attention: Zyxel released patches for 15 security issues in NAS, firewall, and AP devices. Includes 3 critical flaws allowing authentication bypass and command injection.

Details here ➥ https://thehackernews.com/2023/12/zyxel-releases-patches-to-fix-15-flaws.html

U.S. Treasury's OFAC sanctions North Korea-linked prolific hacking group Kimsuky and 8 foreign-based agents for gathering intelligence and processing stolen assets.

🔗 Read more ➥ https://thehackernews.com/2023/12/us-treasury-sanctions-north-korean.html

🔐 PRIVACY ALERT:

WhatsApp has introduced a new feature called 'Secret Code' that now lets you set custom unique passwords for your private chats, adding an extra layer of security.

Learn how to enable it ➥ https://thehackernews.com/2023/12/whatsapps-new-secret-code-feature-lets.html

🛡️ Gcore, a security provider, faced two massive DDoS attacks in November 2023, with peak strengths of 📈 1.1 and 1.6 Tbps.

Learn how attackers used 💥 SYN flood and PSH, ACK traffic to attack targeted servers.

Find details here ➥ https://thehackernews.com/2023/12/discover-how-gcore-thwarted-powerful.html

🚨 Chinese-speaking threat actor targeting Uzbekistan Ministry of Foreign Affairs and South Korean users with dangerous SugarGh0st RAT.

Read more about this latest cyber incident ➥ https://thehackernews.com/2023/12/chinese-hackers-using-sugargh0st-rat-to.html

New Android #malware called FjordPhantom is defrauding banking customers in Indonesia, Thailand, and Vietnam.

It steals sensitive information by loading legitimate banking apps in a virtual container.

Learn more about FjordPhantom ➥ https://thehackernews.com/2023/12/new-fjordphantom-android-malware.html

💻 DOJ and FBI dismantle Qakbot #malware and botnet, but is the threat really gone? Find out the aftermath and mitigation strategies.

Learn more ➥ https://thehackernews.com/2023/12/qakbot-takedown-aftermath-mitigations.html

Russian national Vladimir Dunaev found guilty for developing TrickBot #malware, facing up to 35 years in prison.

Details here ➥ https://thehackernews.com/2023/12/russian-hacker-vladimir-dunaev.html

🕵️ 🚨 Agent Racoon malware infiltrates organizations in the U.S., Middle East, and Africa. Learn how this malware leverages DNS to create a secret channel for backdoor access.

Details here ➥ https://thehackernews.com/2023/12/agent-racoon-backdoor-targets.html

Microsoft warns of new CACTUS ransomware attacks using malvertising lures to deploy DanaBot as an initial access vector.

Learn more ➥ https://thehackernews.com/2023/12/microsoft-warns-of-malvertising-scheme.html

🚨 LogoFAIL: Critical vulnerabilities in UEFI Code from multiple firmware/BIOS vendors can be exploited by threat actors to bypass security technologies and deliver a malicious payload.

Learn more ➥ https://thehackernews.com/2023/12/logofail-uefi-vulnerabilities-expose.html