🚨 Six critical security flaws disclosed in Rsync could allow attackers to execute arbitrary code on clients.

Any server with a public mirror could be exploited, putting SSH keys and other critical files at risk.

Read the full advisory: https://thehackernews.com/2025/01/google-cloud-researchers-uncover-flaws.html

⚠️ Cyber-attacks on ICS/OT are escalating—Are YOU prepared?

⤷ ICS/OT security demands custom strategies, not IT playbooks.
⤷ Cyber-attacks are growing, threatening power grids, water systems, and more.

👉 Check out the SANS Five ICS/OT Cybersecurity Critical Controls: https://thehackernews.com/2025/01/the-high-stakes-disconnect-for-icsot.html

🔒 North Korean hackers behind IT worker fraud linked to 2016 crowdfunding scam!

These attacks aren’t slowing down. With DPRK-backed groups like Lazarus leading crypto thefts, the scale of cybercrime has reached alarming levels.

🔗 Read the full report: https://thehackernews.com/2025/01/north-korean-it-worker-fraud-linked-to.html

🔴 Warning: North Korea’s Lazarus Group is targeting Web3 and cryptocurrency developers!

Fake recruiters on LinkedIn are tricking developers with “coding projects” that lead to malware.

👉 Learn more about their tactics: https://thehackernews.com/2025/01/lazarus-group-targets-web3-developers.html

🧐 A new malvertising campaign is targeting businesses by stealing Google Ads credentials! Here’s how it works:

⤷ Ads that look legitimate lead to fraudulent login pages.
⤷ Phishers steal 2FA codes and credentials.
⤷ The goal? Hijack Google Ads accounts to run fraudulent ads.

🔗 Read more here: https://thehackernews.com/2025/01/google-ads-users-targeted-in.html

🚨 URGENT: A Python-based backdoor is now used in RansomHub ransomware attacks after initial access via a fake browser update.
👇
Want to learn more? Read: https://thehackernews.com/2025/01/python-based-malware-powers-ransomhub.html

🚨 Ivanti has released urgent security updates to fix four critical vulnerabilities affecting EPM, Avalanche, and Application Control Engine. These flaws have been rated 9.8/10 on the CVSS scale, and if left unpatched, could allow remote attackers to leak sensitive data.

Learn more: https://thehackernews.com/2025/01/researcher-uncovers-critical-flaws-in.html

🚨 New phishing campaigns are using hidden code in images to deploy VIP Keylogger and 0bj3ctivity Stealer.

From the email to a PowerShell script to a .NET loader—everything is designed to bypass defenses.

🔗 Find out more about this rising threat: https://thehackernews.com/2025/01/hackers-hide-malware-in-images-to.html

🔒 A new flaw (CVE-2024-7344) in UEFI systems has been discovered, letting attackers run unsigned code during system boot—even with Secure Boot enabled.

Read more ➡️ https://thehackernews.com/2025/01/new-uefi-secure-boot-vulnerability.html

🔴 NTLMv1 Not Dead Yet!

Researchers uncover that a misconfiguration in on-premise apps can easily bypass Active Directory’s Group Policy meant to disable NTLMv1 authentication.

Learn How: https://thehackernews.com/2025/01/researchers-find-exploit-allowing.html

🔑 Stolen credentials are responsible for 80% of web app breaches in 2023-2024!

⤷ Infostealer malware is fueling this rise, with credentials being sold for as little as $10.
⤷ Even large companies with high security budgets are falling victim.

Learn how to tackle stolen credentials before they destroy your organization’s security.

🔗 Full article here: https://thehackernews.com/2025/01/the-10-cyber-threat-responsible-for.html

🚨 Traditional trust management is failing in today’s digital world. As IoT devices explode, certificates pile up, and compliance rules tighten, how are you keeping up?

🔑 The solution? DigiCert ONE!
⤷ Centralized trust management for devices, users, and workloads
⤷ Automated security for hybrid environments
⤷ Stress-free compliance

💡Why it matters: The speed of digital transformation means old solutions just won’t cut it anymore. You need real-time, automated security.

📅 Want to see how it works? Register for our free webinar now: https://thehackernews.com/2025/01/ready-to-simplify-trust-management-join.html

⚡ A major shift in attack tactics – Star Blizzard, previously known as SEABORGIUM, is now exploiting WhatsApp accounts through a spear-phishing campaign.

⤷ Primary targets: Diplomats, Ukraine supporters, and defense officials.
⤷ Once clicked, hackers gain access to WhatsApp messages and data.

Learn more: https://thehackernews.com/2025/01/russian-star-blizzard-shifts-tactics-to.html

🛑 Alert : TikTok, SHEIN, AliExpress, and others accused of violating EU data laws by sending user data to China.

Privacy Group noyb demands suspension of data flows.

Find out more: https://thehackernews.com/2025/01/european-privacy-group-sues-tiktok-and.html

🛡️ The U.S. Treasury just sanctioned 2 individuals and 4 entities tied to North Korea’s illicit IT worker network—a major blow to funding its WMD and missile programs.

👉 Read More: https://thehackernews.com/2025/01/us-sanctions-north-korean-it-worker.html

🛑 New Adversary-in-the-Middle Phishing Kit Alert!

A powerful new phishing kit called Sneaky 2FA has been discovered, designed to steal your credentials and bypass 2FA.

⤷ Sold as a service via Telegram, offering an easy path for cybercriminals
⤷ Built to outsmart anti-bot systems and Cloudflare challenges

👉 Learn how: https://thehackernews.com/2025/01/new-sneaky-2fa-phishing-kit-targets.html

🚨 Most companies are still relying on outdated security models for guest Wi-Fi.

It’s time to move beyond traditional security models and adopt Zero Trust for tighter control and constant verification.

⤷ Prevent lateral movement
⤷ Continuous verification
⤷ Granular access control

👉 Explore how: https://thehackernews.com/2025/01/how-to-bring-zero-trust-to-wi-fi.html

🚨 Researchers discovered 3 vulnerabilities in WGS-804HPT switches used in automation systems—exploitable to execute remote code.

⤷ CVE-2024-52320 & CVE-2024-48871: Critical 9.8 scores!
⤷ Attackers can execute remote code with just a malicious HTTP request.

Read the full report: https://thehackernews.com/2025/01/critical-flaws-in-wgs-804hpt-switches.html

🛑 The U.S. Treasury has sanctioned a Chinese cybersecurity firm and a Shanghai-based actor linked to the Salt Typhoon hacking group. This follows a recent breach of U.S. Treasury IT systems.

Read the full story: https://thehackernews.com/2025/01/us-sanctions-chinese-cybersecurity-firm.html

🚨 Warning to Developers: Malicious Solana-related npm and PyPI packages are designed to steal #Solana private keys, drain wallets, and even delete your files.

Learn more: https://thehackernews.com/2025/01/hackers-deploy-malicious-npm-packages.html