🚨 New Linux Trojan Alert!

Meet "Krasue," a stealthy remote access trojan targeting Thai telecom companies. Krasue relies on a rootkit derived from open-source projects to maintain persistence.

Learn more: https://thehackernews.com/2023/12/new-stealthy-krasue-linux-trojan.html

Did you know? Your app notifications could reveal sensitive information.

Governments are seeking push notification records from Apple & Google to track specific individuals, as stated by U.S. Senator Ron Wyden.

Read here ➥ https://thehackernews.com/2023/12/governments-may-spy-on-you-by.html

⚠️ Urgent Security Warning -

A new critical Bluetooth vulnerability (CVE-2023-45866) could enable attackers to take control of Android, Linux, macOS, and iOS devices.

Learn how it works: https://thehackernews.com/2023/12/new-bluetooth-flaw-let-hackers-take.html

🛡️🔗 Strengthen your defenses with Wazuh!

Explore how this OPEN SOURCE security platform integrates threat feeds, enriches threat data, and allows custom threat detection rules.

Check it out: https://thehackernews.com/2023/12/building-robust-threat-intelligence.html

Your mind is a target!

Trust, empathy, ego, and guilt – these traits make us human. Discover how attackers exploit these traits to compromise security.

Read: https://thehackernews.com/2023/12/hacking-human-mind-exploiting.html

COLDRIVER, a threat actor of strategic interest to Russia, is actively engaged in credential theft and improving evasion techniques.

Learn more about this cyber threat: https://thehackernews.com/2023/12/microsoft-warns-of-coldrivers-evolving.html

👨 💼 Leverage your human capital to bridge the cybersecurity skills gap and bolster your organization's security. Join industry veterans Michael Beaupre, Neil Khatod, and Mike Heredia in a fireside chat on December 13th.

Gain expert insights on unlocking the potential of your team and effectively utilizing human resources for enhanced security.

Register now and empower your organization with valuable strategies: https://thn.news/R3K1PX5C

Bitzlato cryptocurrency exchange founder, Anatoly Legkodymov, pleads guilty to aiding money launderers with unlicensed money-transmitting business.

Find details here ➥ https://thehackernews.com/2023/12/founder-of-bitzlato-cryptocurrency.html

Faces up to 5 years in prison.

ALERT: WordPress 6.4.2 released with CRITICAL security patch.

Update your sites now to protect against remote attacks and arbitrary PHP code execution.

Learn more: https://thehackernews.com/2023/12/wordpress-releases-update-642-to.html

⚠️ Macs at risk! Cybercriminals are targeting macOS systems with Trojan-Proxy malware, spreading using pirated software to turn them into "proxy servers" for illegal activities.

Find details here: https://thehackernews.com/2023/12/mac-users-beware-new-trojan-proxy.html

Protect yourself – avoid illegal downloads.

🚨 North Korean threat actor Kimsuky targets South Korean research institutes in a spear-phishing campaign.

Learn how they use backdoors to steal information and execute commands.

Learn more: https://thehackernews.com/2023/12/n-korean-kimsuky-targeting-south-korean.html

🚨 Ransomware-as-a-Service (RaaS) is reshaping cybercrime. Anyone with limited tech skills can now carry out devastating attacks.

Learn how in this article: https://thehackernews.com/2023/12/ransomware-as-service-growing-threat.html

⚠️ IMPORTANT

A set ("5Ghoul") of new major security flaws in 📡 5G mobile network modems impact 714 smartphones models from all major brands—including Apple, Samsung, Google, Xiaomi, OnePlus and more.

Details on 5Ghoul here: https://thehackernews.com/2023/12/new-5g-modems-flaws-affect-ios-devices.html

🔒💻 Experts unveil new evasion tactics of GuLoader malware, a sophisticated shellcode-based downloader for dangerous payloads.

Learn more ➡️ https://thehackernews.com/2023/12/researchers-unveal-guloader-malwares.html

🛡️ 🔒 New Spectre-based side-channel attack SLAM threatens Intel, AMD, and Arm CPUs, potentially leaking sensitive data from kernel memory.

Learn more about SLAM attack : https://thehackernews.com/2023/12/slam-attack-new-spectre-based.html

New process injection technique called "PoolParty" discovered, enabling undetected code execution on Windows systems by bypassing top EDR systems.

Learn more: https://thehackernews.com/2023/12/new-poolparty-process-injection.html

🚨 Beware of Malicious Loan Apps!

18 deceptive Android loan apps on Google Play Store, downloaded 12M+ times. They offer high-interest loans and collect your personal info for blackmail.

Read details here: https://thehackernews.com/2023/12/spyloan-scandal-18-malicious-loan-apps.html

Ever wondered why Social Engineering works so well?

Discover the "Psychology of Social Engineering" in our upcoming WEBINAR. Dive deep into a hacker's mind with expert Tim Chase.!

Don't miss out. Register now: https://thehackernews.com/2023/12/webinar-psychology-of-social.html

Your first 100 days as a vCISO are crucial. Learn how to succeed with our 5-step action plan. Explore vCISO goals, pitfalls to avoid, and key activities for each phase.

Read: https://thehackernews.com/2023/12/playbook-your-first-100-days-as-vciso-5.html

Lazarus Group's new campaign, Operation Blacksmith, utilizes Log4j exploits to deploy Remote Access Trojans (RATs), including NineRAT and DLRAT.

🔗 Read the full article: https://thehackernews.com/2023/12/lazarus-group-using-log4j-exploits-to.html