Group-IB uncovers #LotusBane, an advanced threat actor using sophisticated methods like DLL side-loading for cyber espionage in Vietnam. Similarities with OceanLotus raise concerns.

Read: https://thehackernews.com/2024/03/new-apt-group-lotus-bane-behind-recent.html

Cisco Talos reveals that GhostSec & Stormous ransomware groups are now offering GhostLocker through a new RaaS program, STMX_GhostLocker, targeting over 15 countries across tech, gov, education & more.

Read: https://thehackernews.com/2024/03/alert-ghostsec-and-stormous-launch.html

VMware releases updates for ESXi, Workstation, and Fusion to patch new security vulnerabilities with potential for code execution by attackers.

Read: https://thehackernews.com/2024/03/vmware-issues-security-patches-for-esxi.html

Check your versions and update ASAP.

U.S. Department of Treasury sanctions individuals and entities of the Intellexa Alliance for distributing #spyware, compromising #privacy and security of government officials and journalists worldwide.

Read: https://thehackernews.com/2024/03/us-cracks-down-on-predatory-spyware.html

Excessive Google Drive permissions can risk your confidential data.

Material Security offers automated protection for your sensitive data, replacing manual checks and complex APIs.

Check it out ➡️ https://thehackernews.com/2024/03/how-to-find-and-fix-risky-sharing-in.html

The Georgetown Master's in #Cybersecurity Risk Management covers business, law, computer science, and organizational change.


Learn more: https://thehackernews.uk/online-masters-cybersecurity

🚨 BlackCat ransomware gang suspected of pulling a major exit scam.

Fake seizure notice posted as they close down, following an alleged refusal to split a $22 Million healthcare ransom payout with affiliates.

Read: https://thehackernews.com/2024/03/exit-scam-blackcat-ransomware-group.html

🛡️ 🔒 Struggling with blind spots in your website's security?

Reflectiz proactively detects vulnerabilities, malicious code, and overlooked trackers on your site to protect against attacks, breaches, and compliance problems.

Learn more: https://thehackernews.com/2024/03/a-new-way-to-manage-your-web-exposure.html

🚨 New malware campaign targets misconfigured servers running Apache Hadoop YARN, Docker, Atlassian Confluence, and Redis to deliver cryptocurrency miners and enable remote access.

Learn more: https://thehackernews.com/2024/03/hackers-exploit-misconfigured-yarn.html

🚨 Beware! Cybercriminals use fake Zoom, Skype, & Google Meet sites to spread RATs (Remote Access Trojans). These steal info, log keystrokes & more, targeting Windows, Android, & Linux.

Learn more: https://thehackernews.com/2024/03/watch-out-for-spoofed-zoom-skype-google.html

⚠️ New Python-based info stealer dubbed 'Snake' is leveraging Facebook messages to capture sensitive data, targeting credentials & cookies for malicious use.

Read: https://thehackernews.com/2024/03/new-python-based-snake-info-stealer.html

Attackers exploit Discord, GitHub, & Telegram to transmit harvested data.

Chinese national working at Google arrested for allegedly stealing sensitive trade secrets in Artificial Intelligence tech & transferring them to rival Chinese companies he was secretly working for.

Learn more: https://thehackernews.com/2024/03/ex-google-engineer-arrested-for.html

Chinese cyber threat group "Evasive Panda" targets Tibetan users with watering hole and supply chain attacks, using backdoor MgBot and new implant Nightdoor.

Read details: https://thehackernews.com/2024/03/chinese-state-hackers-target-tibetans.html

In the evolving world of SaaS, security isn't just about humans anymore. Learn how non-human accounts, from service bots to integrations like Calendly, require the same rigorous security measures.

Read: https://thehackernews.com/2024/03/human-vs-non-human-identity-in-saas.html

🚨 Security Alert: Over 700 WordPress sites hit by brute-force attacks using malicious JavaScript injections, leveraging innocent visitors' browsers to compromise more sites.

Learn more: https://thehackernews.com/2024/03/hacked-wordpress-sites-abusing-visitors.html

⚠️ CISA adds critical JetBrains TeamCity flaw to exploited vulnerabilities list.

If you use TeamCity On-Premises, update NOW. Active attacks allow complete server takeover.

Learn more: https://thehackernews.com/2024/03/cisa-warns-of-actively-exploited.html

Threat actors used QEMU emulator to create stealthy network tunnels during a recent cyberattack, bypassing traditional security defenses with sophisticated tactics.

Learn more: https://thehackernews.com/2024/03/cybercriminals-utilize-qemu-emulator-as.html

🚨 Cisco issued patches for a high-severity flaw (CVE-2024-20337) in Secure Client software on Windows, Linux, and macOS. Attackers could hijack VPN sessions.

Check and update now: https://thehackernews.com/2024/03/cisco-issues-patch-for-high-severity.html

🔒 Meta announces plans for interoperability between WhatsApp, Messenger, and third-party messaging services, maintaining end-to-end encryption in response to the EU's Digital Markets Act.

Learn more: https://thehackernews.com/2024/03/meta-details-whatsapp-and-messenger.html

Explore the lesser-known pitfalls of secrets storage and management. Avoid the top 5 secrets management mistakes that could compromise your infrastructure.

Learn from the pros how to secure your API keys, certificates, and more.

Read: https://thehackernews.com/2024/03/secrets-sensei-conquering-secrets.html