🔒 With endless cyber threats, the 'spray 'n pray' approach is costing you big time. Discover the secret to prioritizing your resources and efforts on what truly matters.

Don’t miss out – read the full article now: https://thehackernews.com/2024/05/4-step-approach-to-mapping-and-securing.html

💸 Indian national pleads guilty to stealing over $37M through fake Coinbase website.

In separate cases, a Ukrainian arrested for aiding North Korean IT workers; Vietnamese charged for helping Chinese remote IT workers commit wire fraud.

Read: https://thehackernews.com/2024/05/indian-national-pleads-guilty-to-37.html

🚨 BreachForums domain is back online just 2 weeks after a law enforcement takedown!

Trap or blunder?

Learn more: https://thehackernews.com/2024/05/breachforums-returns-just-weeks-after.html

It's now selling: 1.3 TB database with 560M Ticketmaster customers' data for $500K!

Microsoft uncovers Moonstone Sleet, a new North Korean hacker group targeting various sectors with ransomware and custom malware, using fake companies and tools to infiltrate targets.

Details here: https://thehackernews.com/2024/05/microsoft-uncovers-moonstone-sleet-new.html

💻 Malachi Mullings, a 31-year-old from Georgia, has been sentenced to 10 years for laundering $4.5 million through BEC and 💔 romance scams.

Learn how they pulled off the scam: https://thehackernews.com/2024/05/us-sentences-31-year-old-to-10-years.html

🎉 Introducing GRC Mastery — Cyber Security GRC Training for beginners.

📽️ Video modules, assessments, quizzes.
🏆 Master risk management, audit, compliance, asset management.
🔭 Capstone Project: NIST assessment.
🎓 Earn a certificate.

Check it out: https://grcmastery.com

🇧🇷💰 New campaign targets Brazilian banks with AllaSenha, a custom AllaKore RAT variant. The malware steals banking credentials and uses Azure cloud for C2.

Learn more: https://thehackernews.com/2024/05/brazilian-banks-targeted-by-new.html

🚨 Attention: Check Point discovers zero-day vulnerability CVE-2024-24919 in Network Security VPN gateway products, exploited in the wild.

Read more here: https://thehackernews.com/2024/05/check-point-warns-of-zero-day-attacks.html

🔧 Ensure your systems are patched with the latest hotfixes.

Employee offboarding is crucial for security. 63% of businesses may have ex-employees with data access. Automate SaaS security to reduce risks.

Learn more at: https://thehackernews.com/2024/05/new-research-warns-about-weak.html

A malicious Python package, pytoileur, has been found in PyPI, aiming at cryptocurrency theft. Downloaded 316 times and re-uploaded after removal, this highlights significant risks in open-source ecosystems.

Learn more: https://thehackernews.com/2024/05/cybercriminals-abuse-stackoverflow-to.html

🚨 Warning: Okta warns of a vulnerability in the cross-origin authentication feature of their Customer Identity Cloud (CIC) that attackers are increasingly exploiting for credential stuffing attacks.

Learn more: https://thehackernews.com/2024/05/okta-warns-of-credential-stuffing.html

Ready to win the Cybersecurity war?

Join our webinar to master the basics and learn how to simplify your cybersecurity efforts with CIS Controls & Benchmarks.

Save yor seat now: https://thehacker.news/cyberthreat-war

🔥 U.S. takes down "911 S5," the world's largest BOTNET, spanning 190 countries and 19 MILLION infected devices.

Chinese ADMIN arrested, leading to disruption of 23 domains, 70+ servers, and seizure of $30 million in assets.

Details: https://thehackernews.com/2024/05/us-dismantles-worlds-largest-911-s5.html

🛡️ Europol's Operation Endgame has successfully dismantled major MALWARE loader networks like IcedID, SystemBC, PikaBot, SmokeLoader, Bumblebee, and TrickBot.

Read > https://thehackernews.com/2024/05/europol-dismantles-100-servers-linked.html

Over 100 servers down and 2,000 domains confiscated.

New vulnerabilities are disclosed hourly, new exploits for old vulnerabilities are publicly released and threat actors are updating their techniques continuously.

Knowing where and how to prioritize your security resources to achieve the greatest impact with the least time invested is critical.

📅 Join Intruder’s webinar on June 12, 2024 to discover the secrets of efficient exposure management: https://thn.news/exposure-management

Can’t make it? Register for the webinar and a copy will be sent.

🚨 Attention WordPress users! Researchers have discovered several vulnerabilities in popular WordPress plugins that allow attackers to create rogue admin accounts and backdoors.

🔗 Learn more: https://thehackernews.com/2024/05/researchers-uncover-active-exploitation.html

🚨 RedTail cryptocurrency mining malware now exploits a critical Palo Alto Networks firewall flaw (CVE-2024-3400) with a CVSS score of 10.0, making it more dangerous than ever.

Learn more: https://thehackernews.com/2024/05/redtail-crypto-mining-malware.html

Ensure your firewalls are patched and secure!

🤖 Struggling with constant alerts and talent shortages?

Learn how AI-driven tools can revolutionize your Security Operations Center by automating alert triage and enhancing efficiency.

Discover the key steps to building an autonomous SOC strategy: https://thehackernews.com/2024/05/how-to-build-your-autonomous-soc.html

Researchers uncover LilacSquid, a previously unknown cyber espionage group targeting IT, energy, and pharmaceutical sectors in the U.S., Europe, and Asia since 2021.

Learn more: https://thehackernews.com/2024/05/cyber-espionage-alert-lilacsquid.html

🚨 Cloudflare disrupts month-long phishing campaign by Russia-aligned FlyingYeti targeting Ukraine. Learn how they exploited housing and utility anxieties to infect targets with COOKBOX malware.

Read: https://thehackernews.com/2024/05/flyingyeti-exploits-winrar.html