TheHackerNews

February 16, 2024 A Chinese-speaking threat actor codenamed GoldFactory has been attributed to the development of highly sophisticated banking trojans, including a previously undocumented iOS malware called GoldPickaxe that’s capable of harvesting identity documents, facial recognition data, and intercepting SMS. “The GoldPickaxe family is available for both iOS and Android platforms,” Article posted by: https://thehackernews.com/2024/02/chinese-hackers-using-deepfakes-in.html ——————————————————————————————————————– Infocerts, …

Chinese Hackers Using Deepfakes in Advanced Mobile Banking Malware Attacks Read More »

February 16, 2024 With many of the highly publicized 2023 cyber attacks revolving around one or more SaaS applications, SaaS has become a cause for genuine concern in many boardroom discussions. More so than ever, considering that GenAI applications are, in fact, SaaS applications. Wing Security (Wing), a SaaS security company, conducted an analysis of …

How Nation-State Actors Target Your Business: New Research Exposes Major SaaS Vulnerabilities Read More »

February 16, 2024 Microsoft on Wednesday acknowledged that a newly disclosed critical security flaw in Exchange Server has been actively exploited in the wild, a day after it released fixes for the vulnerability as part of its Patch Tuesday updates. Tracked as CVE-2024-21410 (CVSS score: 9.8), the issue has been described as a case of privilege escalation impacting …

Critical Exchange Server Flaw (CVE-2024-21410) Under Active Exploitation Read More »

February 15, 2024 Cybersecurity researchers have found that it’s possible for threat actors to exploit a well-known utility called command-not-found to recommend their own rogue packages and compromise systems running Ubuntu operating system. “While ‘command-not-found’ serves as a convenient tool for suggesting installations for uninstalled commands, it can be inadvertently manipulated by attackers through the …

Ubuntu ‘command-not-found’ Tool Could Trick Users into Installing Rogue Packages Read More »

February 15, 2024 Nation-state actors associated with Russia, North Korea, Iran, and China are experimenting with artificial intelligence (AI) and large language models (LLMs) to complement their ongoing cyber attack operations. The findings come from a report published by Microsoft in collaboration with OpenAI, both of which said they disrupted efforts made by five state-affiliated actors that …

Microsoft, OpenAI Warn of Nation-State Hackers Weaponizing AI for Cyberattacks Read More »

February 15, 2024 The infamous malware loader and initial access broker known as Bumblebee has resurfaced after a four-month absence as part of a new phishing campaign observed in February 2024. Enterprise security firm Proofpoint said the activity targets organizations in the U.S. with voicemail-themed lures containing links to OneDrive URLs. “The URLs led to a Word …

Bumblebee Malware Returns with New Tricks, Targeting U.S. Businesses Read More »

February 15, 2024 The landscape of cybersecurity in financial services is undergoing a rapid transformation. Cybercriminals are exploiting advanced technologies and methodologies, making traditional security measures obsolete. The challenges are compounded for community banks that must safeguard sensitive financial data against the same level of sophisticated threats as larger institutions, but often with more Article …

Cybersecurity Tactics FinServ Institutions Can Bank On in 2024 Read More »

February 15, 2024 Microsoft has released patches to address 73 security flaws spanning its software lineup as part of its Patch Tuesday updates for February 2024, including two zero-days that have come under active exploitation. Of the 73 vulnerabilities, 5 are rated Critical, 65 are rated Important, and three and rated Moderate in severity. This is in …

Microsoft Rolls Out Patches for 73 Flaws, Including 2 Windows Zero-Days Read More »

February 15, 2024 A newly disclosed security flaw in the Microsoft Defender SmartScreen has been exploited as a zero-day by an advanced persistent threat actor called Water Hydra (aka DarkCasino) targeting financial market traders. Trend Micro, which began tracking the campaign in late December 2023, said it entails the exploitation of CVE-2024-21412, a security bypass vulnerability related …

DarkMe Malware Targets Traders Using Microsoft SmartScreen Zero-Day Vulnerability Read More »

February 14, 2024 The threat actors behind the PikaBot malware have made significant changes to the malware in what has been described as a case of “devolution.” “Although it appears to be in a new development cycle and testing phase, the developers have reduced the complexity of the code by removing advanced obfuscation techniques and …

PikaBot Resurfaces with Streamlined Code and Deceptive Tactics Read More »