A new cyberespionage campaign has targeted over 80 organizations in Europe, exploiting vulnerabilities in Roundcube webmail servers. The attackers were able to steal user credentials.

Learn more: https://thehackernews.com/2024/02/russian-linked-hackers-breach-80.html

🚨 Alert: Anatsa dropper apps bypass Google Play protections and Android 13 restrictions, now targeting users in Slovakia, Slovenia, and Czechia to steal banking information.

Learn more: https://thehackernews.com/2024/02/anatsa-android-trojan-bypasses-google.html

🛑 Meta Platforms took action against 8 spyware firms targeting users on iOS, Android, and Windows devices. Their capabilities include data collection, camera use, and microphone access.

Learn more: https://thehackernews.com/2024/02/meta-warns-of-8-spyware-firms-targeting.html

Cybersecurity pros say NDR's advanced detection and adaptive approach are the keys to beating sophisticated threats.

Stop chasing false alarms! See how NDR reduces noise and lets your team focus on what matters.

Read more: https://thehackernews.com/2024/02/bye-bye-siem-hello-risk-based-alerting.html

International law enforcement agencies seize multiple darknet domains operated by LockBit, a notorious ransomware group, in a major takedown.

Find details here: https://thehackernews.com/2024/02/lockbit-ransomwares-darknet-domains.html

⚠️ Critical security flaw (CVE-2024-25600) in Bricks theme for WordPress (used by 25,000+ sites) is being exploited by attackers to run malicious PHP code on vulnerable installations.

Learn more: https://thehackernews.com/2024/02/wordpress-bricks-theme-under-active.html

Iranian and Hezbollah-backed hackers launched cyber attacks to sway public opinion during the Israel-Hamas conflict, highlighting the evolving nature of modern warfare.

Learn more: https://thehackernews.com/2024/02/iran-and-hezbollah-hackers-launch.html

🚨 North Korean hackers target the defense sector with the 'Dream Job' campaign. They're using cyberattacks to steal sensitive defense technologies and advance their weapons programs.

Learn more: https://thehackernews.com/2024/02/new-report-reveals-north-korean-hackers.html

⚡ BREAKING: Major Blow to Cybercrime! LockBit, 'world's most harmful ransomware group', taken down:

- Source code seized
- Key players arrested
- 200+ LockBit-linked crypto accounts frozen
- Decryption keys obtained to aid victims

Read: https://thehackernews.com/2024/02/lockbit-ransomware-operation-shut-down.html

SaaS data leaks often result from misconfigurations.

Stay ahead of attackers with a NIST-aligned checklist to protect your SaaS apps. Secure your SaaS stack with the right settings, not just fancy tools.

Read more here: https://thehackernews.com/2024/02/saas-compliance-through-nist.html

⚠️ Warning: New malicious Python packages discovered on PyPI targeting open-source software supply chains using DLL side-loading to evade detection and spread malware.

Learn more: https://thehackernews.com/2024/02/new-malicious-pypi-packages-caught.html

Heads up, Cloud Security professionals!

A novel malware named Migo is targeting Redis servers for cryptojacking. It disables security measures, injects XMRig miner, and hides processes. Linked to known groups like TeamTNT.

Learn more: https://thehackernews.com/2024/02/new-migo-malware-targeting-redis.html

🚨 Attention VMware users!

New flaws identified (CVE-2024-22245 & CVE-2024-22250) in the EAP plugin. Attackers could exploit them to hijack Active Directory accounts and privileged EAP sessions.

UNINSTALL it immediately.

Learn more: https://thehackernews.com/2024/02/vmware-alert-uninstall-eap-now-critical.html

A new Russia-aligned influence operation is targeting Ukraine with disinformation campaigns and credential-harvesting attacks.

Details here ➡️ https://thehackernews.com/2024/02/russian-hackers-target-ukraine-with.html

🔐 Big news for privacy fans! Say goodbye to sharing your number with everyone you message!

Signal Messenger has finally introduced a "usernames" feature, allowing you to keep your phone number private.

Learn how to activate it: https://thehackernews.com/2024/02/signal-introduces-usernames-allowing.html

🚨 New Malware Alert: VietCredCare is targeting Facebook advertisers in Vietnam, hijacking accounts with positive Meta ad credits.

The stolen accounts are used to post political content or to propagate phishing and affiliate scams.

Learn more: https://thehackernews.com/2024/02/new-vietcredcare-stealer-targeting.html

Legacy systems + no security pro = open doors for hackers.

Ransomware, phishing, state actors... Healthcare data is gold for criminals. See the alarming stats & why your defenses need an overhaul.

Learn more: https://thehackernews.com/2024/02/cybersecurity-for-healthcarediagnosing.html

⚠️ Millions of Android, Linux, and ChromeOS devices are vulnerable new Wi-Fi attacks! Hackers can steal data or spy on you.

Details here: https://thehackernews.com/2024/02/new-wi-fi-vulnerabilities-expose.html

No patch yet, manually configure CA certificates for protection.

A software likely used by Russian Consular Department may have been compromised in a cyberattack linked to North Korea, delivering the Konni RAT malware.

Learn more: https://thehackernews.com/2024/02/russian-government-software-backdoored.html

🚨 Threat Alert: Hackers are now weaponizing SSH-Snake, an open-source, self-replicating, fileless network mapping tool, for malicious purposes.

Find details here: https://thehackernews.com/2024/02/cybercriminals-weaponizing-open-source.html