π Elevate your cybersecurity game with ThreatLocker Zero Trust Endpoint Protection Platform. A deny-by-default approach ensures you're shielded from zero-days, malware, and more.
Learn more: https://thehackernews.com/2024/03/implementing-zero-trust-controls-for.html
Learn more: https://thehackernews.com/2024/03/implementing-zero-trust-controls-for.html
π11π6π€―3π₯1
Mandiant connects WINELOADER backdoor to Midnight Blizzard, a Russian SVR-linked hacking group. Malware targeted German political parties with wine-tasting phishing scams.
Read more: https://thehackernews.com/2024/03/russian-hackers-use-wineloader-malware.html
Read more: https://thehackernews.com/2024/03/russian-hackers-use-wineloader-malware.html
π17π₯8π7π2π€―2
π German authorities dismantle Nemesis Market, a major darknet marketplace that facilitated the global trade of drugs, stolen data, and cybercrime services.
Learn more: https://thehackernews.com/2024/03/german-police-seize-nemesis-market-in.html
Learn more: https://thehackernews.com/2024/03/german-police-seize-nemesis-market-in.html
π27π€11π8π€―2
North Korea-linked Kimsuky threat group expands its arsenal, now using CHM files to deliver malware designed to infiltrate systems and exfiltrate sensitive data globally.
Find details here: https://thehackernews.com/2024/03/n-korea-linked-kimsuky-shifts-to.html
Find details here: https://thehackernews.com/2024/03/n-korea-linked-kimsuky-shifts-to.html
π18π€―8π4π3β‘1
β οΈ Iran-linked hackers, MuddyWater, launch new phishing attacks against Israeli organizations. Group hijacks legitimate remote management software in latest campaign.
Learn more: https://thehackernews.com/2024/03/iran-linked-muddywater-deploys-atera.html
Learn more: https://thehackernews.com/2024/03/iran-linked-muddywater-deploys-atera.html
π25π13π₯9π€―8π€3π2
π¨ Researchers uncover "GoFetch" vulnerability in Apple M-series chips, potentially allowing attackers to extract secret cryptographic keys.
Learn more: https://thehackernews.com/2024/03/new-gofetch-vulnerability-in-apple-m.html
Learn more: https://thehackernews.com/2024/03/new-gofetch-vulnerability-in-apple-m.html
π₯21π16π€―10π5π4
Researchers uncover a clever cyber attack involving stolen browser cookies & malicious code in Python packages. Topgg's GitHub account among the targets. Beware of rogue dependencies!
Read: https://thehackernews.com/2024/03/hackers-hijack-github-accounts-in.html
Read: https://thehackernews.com/2024/03/hackers-hijack-github-accounts-in.html
π₯13π10π4π€―3
π¨ CISA adds 3 security flaws to its KEV catalog due to active exploitation. Flaws include severe vulnerabilities in Fortinet, Ivanti, and Nice systems.
Agencies must apply fixes by April 15, 2024.
Learn more: https://thehackernews.com/2024/03/cisa-alerts-on-active-exploitation-of.html
Agencies must apply fixes by April 15, 2024.
Learn more: https://thehackernews.com/2024/03/cisa-alerts-on-active-exploitation-of.html
π15π€―8π₯3π2
π¨ U.S. Treasury sanctions three cryptocurrency exchanges: Bitpapa, Crypto Explorer, and TOEP. These exchanges allegedly helped Russia evade sanctions imposed after the Ukraine invasion.
Learn more: https://thehackernews.com/2024/03/us-sanctions-3-cryptocurrency-exchanges.html
Learn more: https://thehackernews.com/2024/03/us-sanctions-3-cryptocurrency-exchanges.html
π16π9π€―9π4π€4
U.S. Department of Justice indicts 7 Chinese nationals linked to hacking group APT31, implicated in cyber espionage targeting U.S. critics, journalists, officials, and businesses for over 14 years.
Learn more: https://thehackernews.com/2024/03/us-charges-7-chinese-nationals-in-major.html
Learn more: https://thehackernews.com/2024/03/us-charges-7-chinese-nationals-in-major.html
π19π7π3
How can organizations ensure the security of their sensitive data?
π‘ Data Security Posture Management (DSPM)
Check out Sentra's DSPM guide to learn about:
πΈHow DSPM protects sensitive data
πΈBenefits of DSPM
πΈDSPM vs CSPM
https://hubs.li/Q02pXSRK0
π‘ Data Security Posture Management (DSPM)
Check out Sentra's DSPM guide to learn about:
πΈHow DSPM protects sensitive data
πΈBenefits of DSPM
πΈDSPM vs CSPM
https://hubs.li/Q02pXSRK0
www.sentra.io
What is DSPM (Data Security Posture Management)? | Sentra
DSPM secures cloud data by ensuring that sensitive data has always the correct security posture, no matter where itβs been moved. Learn more in our guide.
π12π€―3π₯1
π¨ WARNING: Malicious NuGet package 'SqzrFramework480' discovered, potentially targeting developers using Chinese industrial technology.
Read: https://thehackernews.com/2024/03/malicious-nuget-package-linked-to.html
Read: https://thehackernews.com/2024/03/malicious-nuget-package-linked-to.html
π8π3π1
Minecraft servers are under threat! With over 500M users, DDoS attacks are disrupting gameplay and server functionality.
Learn how to protect your server and ensure a smooth gaming experience.
Learn more: https://thehackernews.com/2024/03/crafting-shields-defending-minecraft.html
Learn how to protect your server and ensure a smooth gaming experience.
Learn more: https://thehackernews.com/2024/03/crafting-shields-defending-minecraft.html
π±19π€―12π10π4
π΅οΈββοΈ Latest Cybersecurity reports unveil two China-linked APT groups targeting ASEAN nations in cyberespionage campaign over the past 3 months, involving cyber attacks and espionage with sophisticated #malware.
Learn more: https://thehackernews.com/2024/03/two-chinese-apt-groups-ramp-up-cyber.html
Learn more: https://thehackernews.com/2024/03/two-chinese-apt-groups-ramp-up-cyber.html
π14
β οΈπ¨ Watch out! A new phishing campaign is spreading Agent Tesla, a notorious information stealer and keylogger.
This attack tricks you with emails mimicking bank payment notifications to spread the malware.
Learn more: https://thehackernews.com/2024/03/alert-new-phishing-attack-delivers.html
This attack tricks you with emails mimicking bank payment notifications to spread the malware.
Learn more: https://thehackernews.com/2024/03/alert-new-phishing-attack-delivers.html
π₯16π6
π¨ Alert: Hackers are actively exploiting an unpatched flaw in the popular AI platform Anyscale Ray to steal computing power for cryptocurrency mining.
Details: https://thehackernews.com/2024/03/critical-unpatched-ray-ai-platform.html
This vulnerability (CVE-2023-48022) could expose sensitive company data.
Details: https://thehackernews.com/2024/03/critical-unpatched-ray-ai-platform.html
This vulnerability (CVE-2023-48022) could expose sensitive company data.
π13π5π4π€―2
SASE improves networks but lacks in defending against phishing and takeovers.
Learn how secure browser extensions complete your cyber security strategy: https://thehackernews.com/2024/03/sase-solutions-fall-short-without.html
Learn how secure browser extensions complete your cyber security strategy: https://thehackernews.com/2024/03/sase-solutions-fall-short-without.html
π8π3π€―1
π‘οΈ A now-patched vulnerability (CVE-2024-21388) in Microsoft Edge could have allowed attackers to covertly install browser extensions without user consent.
Find details here: https://thehackernews.com/2024/03/microsoft-edge-bug-could-have-allowed.html
If you use Edge, make sure you've updated to the latest version.
Find details here: https://thehackernews.com/2024/03/microsoft-edge-bug-could-have-allowed.html
If you use Edge, make sure you've updated to the latest version.
π±16π9π7π€―5π₯2
π¨ CISA alerts on a security flaw in Microsoft SharePoint Server now part of the KEV catalog due to active exploitation.
Vulnerability CVE-2023-24955 allows remote code execution for Site Owners.
Read: https://thehackernews.com/2024/03/cisa-warns-hackers-actively-attacking.html
Users urged to patch following May 2023 updates.
Vulnerability CVE-2023-24955 allows remote code execution for Site Owners.
Read: https://thehackernews.com/2024/03/cisa-warns-hackers-actively-attacking.html
Users urged to patch following May 2023 updates.
π€―10π5π2
With a Georgetown master's you'll gain the tactical skills to plan for, respond to, and mitigate information security threats.
https://thehackernews.uk/cybersecurity-webinar-2024
https://thehackernews.uk/cybersecurity-webinar-2024
π11π5π2π€2π₯1π€―1