🔒 Learn how to secure your web applications in a world where malicious attacks are getting smarter.

Don't miss our cybersecurity webinar on identifying and tackling security blind spots with experts from F5 and OPSWAT.

Save you spot now: https://thehackernews.com/2024/03/new-webinar-avoiding-application.html

🛡️ Mishandled API keys & passwords are a ticking time bomb 💣 in your software.

Don't wait for disaster – make security a non-negotiable part of your dev cycle.

Learn more: https://thehackernews.com/2024/03/behind-scenes-art-of-safeguarding-non.html

Buying the wrong #dataprotection solution is a #disaster waiting to happen.

Gain a better understanding of data protection challenges and establish your buying criteria using Zerto's Data Protection Buyers Guide!

Get the free full guide here: https://thn.news/data-protection-buyers-guide

A sneaky new service called "Darcula" is helping cybercriminals steal your info. They're impersonating postal services, airlines, even the IRS and using iMessage and Google Messages to slip past firewalls.

Learn more ➟ https://thehackernews.com/2024/03/darcula-phishing-network-leveraging-rcs.html

Finland's Poliisi has accused APT31, a Chinese nation-state actor, of a cyber attack on the country's Parliament in 2020-2021.

Learn more ➟ https://thehackernews.com/2024/03/finland-blames-chinese-hacking-group.html

⚠️ 🐧 Linux users, beware! A nasty piece of malware named DinodasRAT is on the loose, targeting China, Taiwan, Turkey, and Uzbekistan. It's a C++ juggernaut capable of stealing a treasure trove of sensitive data.

Read details ➟ https://thehackernews.com/2024/03/linux-version-of-dinodasrat-spotted-in.html

⚠️ 👩‍💻 PyPI under attack...again.

🐍 Python's Package Index temporarily shut down new user sign-ups and project creation due to a surge of malicious typosquatting attempts.

Learn more: https://thehackernews.com/2024/03/pypi-halts-sign-ups-amid-surge-of.html

Malware aimed to snag cryptocurrency wallets and more.

💻 A new vulnerability, CVE-2024-28085, dubbed "WallEscape," impacts the "wall" command in util-linux, potentially exposing passwords or altering clipboards on Linux distros like Ubuntu & Debian.

Read more ➟ https://thehackernews.com/2024/03/new-linux-bug-could-lead-to-user.html

🚨 ALERT: TheMoon botnet, previously thought to be inactive, is back.

Over 40,000 hijacked routers & IoT devices power Faceless, a criminal proxy service used to steal data, attack financial systems, & spread malware like SolarMarker & IcedID.

Read ➟ https://thehackernews.com/2024/03/themoon-botnet-resurfaces-exploiting.html

⚠️ New security flaws found in Dormakaba's Saflok RFID locks could allow attackers to easily forge keycards and access any room, affecting MILLIONS of hotel locks worldwide.

Read: https://thehackernews.com/2024/03/dormakaba-locks-used-in-millions-of.html

Outdated pen testing is expensive & leaves holes in your security. With automation and AI, companies can now affordably assess network security regularly, spotting vulnerabilities before attackers do.

💪 Find out how: https://thehackernews.com/2024/03/the-golden-age-of-automated-penetration.html

🛑URGENT SECURITY ALERT!

Secret backdoor found in XZ Utils compression library used by major Linux distros, like Fedora, Kali Linux, and openSUSE. Attackers could breach SSH and take control of systems.

https://thehackernews.com/2024/03/urgent-secret-backdoor-found-in-xz.html

Update and review your systems immediately.

⚠️ Mac users, beware! Malicious ads and fake websites are spreading dangerous malware like Atomic Stealer, which can steal your passwords, cryptocurrency, and other sensitive data.

Learn more: https://thehackernews.com/2024/03/hackers-target-macos-users-with.html

🚨 Android users beware! Vultur, the notorious banking trojan, is back with upgraded new remote control features, encrypted communication, and stealthy techniques.

Learn more: https://thehackernews.com/2024/04/vultur-android-banking-trojan-returns.html

📱⚠️ Malicious Android apps found on the Google Play Store!

Experts uncover VPN apps hijacking users' devices, covertly turning them into proxy nodes for cybercriminals and fueling botnet operations.

Details here: https://thehackernews.com/2024/04/malicious-apps-caught-secretly-turning.html

🔍 Logs are the foundation of monitoring efforts, especially on Windows.

"EventSentry" harnesses the power of detailed log monitoring & real-time validation to detect malware attacks early.

Read: https://thehackernews.com/2024/04/detecting-windows-based-malware-through.html

Don't let blind spots compromise your security.

Who’s using AI tools in your organization? Find out in minutes with Nudge Security. Start a free trial and discover every SaaS account ever created by anyone in your org, including generative AI tools.

The best part? You’ll have a full inventory in minutes and you don’t even have to know what apps you’re looking for. No agents, browser plug-ins or network proxies required.

https://thn.news/mitigate-ai-risks

🛑 TA558 threat actor launches massive phishing campaign targeting Latin American sectors, deploying Venom RAT. Hotels, finance, government among primary targets in Spain, Mexico, U.S., Colombia, Brazil, and more.

Learn more: https://thehackernews.com/2024/04/massive-phishing-campaign-strikes-latin.html

Google agrees to delete BILLION of browsing records to settle class action lawsuit, alleging tracking without consent in Chrome's Incognito Mode.

Find details here: https://thehackernews.com/2024/04/google-to-delete-billions-of-browsing.html

China-linked hacker group Earth Freybug is now using a new malware named "UNAPIMON" to fly under the radar.

Learn more: https://thehackernews.com/2024/04/china-linked-hackers-deploy-new.html

Researchers shed light on their espionage and financially motivated activities.