🚨 New JavaScript malware alert! It's stealing online banking credentials.

Affected: Over 50,000+ users across:
- North America
- South America
- Europe
- Japan

Under Attack: Over 40 global financial institutions.

Details here: https://thehackernews.com/2023/12/new-javascript-malware-targeted-50000.html

🆘 Android Users, Beware!

Researchers have uncovered an evolved version of the Chameleon banking malware that bypasses biometric authentication and displays HTML prompts.

Learn more: https://thehackernews.com/2023/12/new-chameleon-android-banking-trojan.html

Predator 🕵️‍♂️ SPYWARE for Android and iOS devices can now survive reboots, offered as an "add-on feature," with a licensing model that runs into 💰 MILLIONS of dollars.

Read details here: https://thehackernews.com/2023/12/multi-million-dollar-predator-spyware.html

⚠️ An Iranian threat actor is targeting Defense organizations with a new backdoor called FalseFont, capable of remote access, file launching, and data transmission.

Learn more: https://thehackernews.com/2023/12/microsoft-warns-of-new-falsefont.html

⚠️ ALERT: Threat actor UAC-0099 continues to target Ukraine with cyberattacks. Learn how they exploit a WinRAR flaw to deliver the 🤖 LONEPAGE malware.

Learn more — https://thehackernews.com/2023/12/uac-0099-using-winrar-exploit-to-target.html

🤖 Nim-Based #malware on the rise.

Attackers are increasingly using Nim language for threats like NimzaLoader and Dark Power ransomware.

Learn more: https://thehackernews.com/2023/12/decoy-microsoft-word-documents-used-to.html

🕵️‍♂️🔒 Indian government and defense entities under attack! A phishing campaign dubbed "Operation RusticWeb" deploys Rust-based malware for intel gathering.

Learn more: https://thehackernews.com/2023/12/operation-rusticweb-rust-based-malware.html

🚨 Rogue WordPress Plugin Alert!

A malicious plugin capable of stealing credit card info has been discovered. It pretends to be "WordPress Cache Addons" and is part of a Magecart campaign targeting e-commerce websites.

Learn more: https://thehackernews.com/2023/12/rogue-wordpress-plugin-exposes-e.html

Two British teens, part of the LAPSUS$ cybercrime gang, sentenced for orchestrating high-profile attacks against companies.

Read: https://thehackernews.com/2023/12/british-lapsus-teen-members-sentenced.html

One receives an indefinite hospital order due to intent to return to cybercrime.

🚨Cloud Atlas, a mysterious cyber espionage group, has launched spear-phishing attacks on Russian enterprises, targeting critical sectors.

Learn how these attacks unfold in this report: https://thehackernews.com/2023/12/cloud-atlas-spear-phishing-attacks.html

Carbanak malware is back, and it's using new tactics in ransomware attacks. Learn how it's impersonating business software to infiltrate systems.

Learn more: https://thehackernews.com/2023/12/carbanak-banking-malware-resurfaces.html

🚨 Poorly secured Linux SSH servers are under attack!

Threat actors are installing tools to guess credentials, co-opt other servers, and launch cryptocurrency mining and DDoS attacks.

Read: https://thehackernews.com/2023/12/warning-poorly-secured-linux-ssh.html

📱 Beware of Xamalicious! It masquerades as legitimate apps on Android devices but secretly carries out fraudulent actions like clicking on ads.

Over 327,000 installs!

Learn more: https://thehackernews.com/2023/12/new-sneaky-xamalicious-android-malware.html

⚠️ALERT: Chinese threat actors exploited a new zero-day vulnerability (CVE-2023-7102) in Barracuda's Email Security Gateway (ESG) appliances.

Learn how they deployed a backdoor on select devices.

Read details: https://thehackernews.com/2023/12/chinese-hackers-exploited-new-zero-day.html

🚨 A new zero-day security flaw discovered in Apache OfBiz ERP system could allow unauthorized access.

CVE-2023-51467 exposes incomplete patch for CVE-2023-49070 with a high CVSS score of 9.8.

Details: https://thehackernews.com/2023/12/critical-zero-day-in-apache-ofbiz-erp.html

Update now to protect your system!

🚨 New Malware Alert - Threat actors are using the Rugmi loader to deliver information stealers like Lumma Stealer and Vidar.

Learn more: https://thehackernews.com/2023/12/new-rugmi-malware-loader-surges-with.html

"Most Sophisticated" SPYWARE attack campaign called 'Operation Triangulation' targeted Apple iOS devices with never-before-seen exploits, including exploiting an unknown hardware feature.

Learn more: https://thehackernews.com/2023/12/most-sophisticated-iphone-hack-ever.html

🚨 Alert - Google Cloud addresses a medium-severity security flaw that could allow attackers to escalate privileges in Kubernetes clusters.

Learn more about this issue: https://thehackernews.com/2023/12/google-cloud-resolves-privilege.html

🔒 Microsoft is disabling the ms-appinstaller protocol handler by default due to its abuse by multiple threat actors for distributing malware.

Read details: https://thehackernews.com/2023/12/microsoft-disables-msix-app-installer.html

💻 North Korean hackers are using spear-phishing attacks to compromise machines and deploy malware like AppleSeed and Meterpreter.

Read more about the cyber threat: https://thehackernews.com/2023/12/kimsuky-hackers-deploying-appleseed.html