FTC bans another data broker, InMarket, for selling our movements without consent. Protect yourself: learn how they track you & what you can do

Read: https://thehackernews.com/2024/01/ftc-bans-inmarket-for-selling-precise.html

Hackers Feast on Unpatched ActiveMQ! CVE-2023-46604, a critical remote code execution flaw, is back in the spotlight.

Learn more: https://thehackernews.com/2024/01/apache-activemq-flaw-exploited-in-new.html

Update your Apache ASAP or risk ransomware, rootkits, and botnets.

Java & Android libraries vulnerable to new supply chain attack — MavenGate!

Hackers can hijack popular abandoned libraries & inject malware into your apps.

Click to read more: https://thehackernews.com/2024/01/hackers-hijack-popular-java-and-android.html

North Korea's ScarCruft targeting media & experts.

A new attack campaign using fake threat reports & infected ZIPs aimed at gathering intel on defense strategies.

Find details here: https://thehackernews.com/2024/01/north-korean-hackers-weaponize-fake.html

Cybercrime Marketplace Mastermind, 21, Walks Free (Mostly) – Fitzpatrick, the Creator of BreachForums, Avoids Prison but Faces 20 Years of Supervision.

Read: https://thehackernews.com/2024/01/breachforums-founder-sentenced-to-20.html

Apple fixes first "in-the-wild" zero-day of 2024. Update iPhones, iPads, and Macs NOW!

Details: https://thehackernews.com/2024/01/apple-issues-patch-for-critical-zero.html

Atlassian Confluence RCE flaw under active attack (CVE-2023-22527). Hackers are scanning the web within 3 days of disclosure.

Learn more ➡️ https://thehackernews.com/2024/01/40000-attacks-in-3-days-critical.html

Patch NOW - Don't wait for a "whoami" knock at your server door.

Cracked software? Beware!

Malicious "Activator" booby-traps DMG files on macOS, tricking users into granting admin access. It then steals crypto wallet data and system info.

Learn more: https://thehackernews.com/2024/01/activator-alert-macos-malware-hides-in.html

Did you download Warbeast2000 or Kodiak2k from npm? If so, your SSH keys 🔑 might be compromised! These packages steal keys & upload them to GitHub.

🔒 Find details here: https://thehackernews.com/2024/01/malicious-npm-packages-exfiltrate-1600.html

VexTrio, the shadowy entity controlling a massive network of 70,000+ domains, is finally in the spotlight. This "traffic broker" fuels countless scams & malware campaigns, including ClearFake, SocGholish, & more.

Read: https://thehackernews.com/2024/01/vextrio-uber-of-cybercrime-brokering.html

At Georgetown, gain the tactical skills to plan for and respond to information security threats. Attend our webinar on 2/2.

View event: https://thehackernews.co/497Ugvd

DDoS Attacks on Steroids!

Gcore Radar reveals attacks now hitting 1.6 Terabits, a 5x surge. Are your servers ready for 2024's cybertsunami?

Read the report for critical insights: https://thehackernews.com/2024/01/from-megabits-to-terabits-gcore-radar.html

🔒 GoAnywhere users, listen up! Critical bug lets anyone become admin.

Remember Cl0p ransomware? They hit 130 victims using a Fortra's GoAnywhere flaw last year. Now, CVE-2024-0204 is even worse. Update to 7.4.1 immediately.

Learn more: https://thehackernews.com/2024/01/patch-your-goanywhere-mft-immediately.html

🛡️ Australia, the U.K., and the U.S. unite to sanction Russian REvil hacker tied to the Medibank data breach, exposing sensitive healthcare data of millions.

Get the details → https://thehackernews.com/2024/01/us-uk-australia-sanction-russian-revil.html

ANYRUN tracked a new XenoRAT stego campaign using images with Base64-encoded MZ files.


⚠️ Campaign changes:

⚙️ Switched from uploaddeimagens[.]com[.]br to wallpapercave[.]com

⚙️ Anti-VM, .lnk startup launch, VBS script execution.


Get free ANYRUN trial: https://thn.news/BbqF9eSL

Employees are IT free agents, adopting any SaaS they need, anywhere, anytime.

Nudge Security sees EVERYTHING (even 3rd & 4th party risks!), helping you regain control without stifling productivity.

Discover your hidden SaaS mess now: https://thehackernews.com/2024/01/what-is-nudge-security-and-how-does-it.html

Critical Misconfiguration Found in Google Kubernetes Engine (GKE) - Posing a threat to over 250,000 clusters. Any Gmail account could exploit it to take control of your clusters.

Learn more: https://thehackernews.com/2024/01/google-kubernetes-misconfig-lets-any.html

🔧 Don't trust every library blindly. While it may save time, dependencies can introduce hidden vulnerabilities.

Learn how to identify 'unknown risks' in your code and protect your apps from stealthy supply chain attacks.

Read: https://thehackernews.com/2024/01/the-unknown-risks-of-software-supply.html

Kasseika, the latest #ransomware kid on the block, is using a sneaky trick called BYOVD to disarm your defenses before encrypting your files.

It even leaves no trace by wiping event logs.

Learn more: https://thehackernews.com/2024/01/kasseika-ransomware-using-byovd-trick.html

🕵️‍♂️ Russian state-backed APT29 hacker group breached HP Enterprise's cloud emails, stealing confidential data from cybersecurity and key departments.

Details here → https://thehackernews.com/2024/01/tech-giant-hp-enterprise-hacked-by.html

The breach remained undetected for over 6 months.